[SECURITY] [DSA 5605-1] thunderbird security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5605-1] thunderbird security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Wed, 24 Jan 2024 18:52:53 +0000
Message-id: <[🔎] ZbFchXnAulieI0EB@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5605-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
January 24, 2024                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : thunderbird
CVE ID         : CVE-2024-0741 CVE-2024-0742 CVE-2024-0746 CVE-2024-0747 
                 CVE-2024-0749 CVE-2024-0750 CVE-2024-0751 CVE-2024-0753 
                 CVE-2024-0755

Multiple security issues were discovered in Thunderbird, which could
result in denial of service or the execution of arbitrary code.

For the oldstable distribution (bullseye), these problems have been fixed
in version 1:115.7.0-1~deb11u1.

For the stable distribution (bookworm), these problems have been fixed in
version 1:115.7.0-1~deb12u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=8Bax
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5604-1] openjdk-11 security update
Next by Date: [SECURITY] [DSA 5606-1] firefox-esr security update
Previous by thread: [SECURITY] [DSA 5604-1] openjdk-11 security update
Next by thread: [SECURITY] [DSA 5606-1] firefox-esr security update
Index(es):
- Date
- Thread