Ubuntu
mozilla-thunderbird package

Please update mozilla-thunderbird

Bug #76682 reported by Louis
256
Affects Status Importance Assigned to Milestone
mozilla-thunderbird (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: mozilla-thunderbird

Please update mozilla-thunderbird from 1.5.0.8 to 1.5.0.9, thanks.

Revision history for this message
Marco Paulo Martins Sousa (marcomsousa) wrote :

What's new in Thunderbird 1.5.0.9:
Improvements to product stability
Several security fixes -> http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird1.5.0.9

Changed in mozilla-thunderbird:
status: Unconfirmed → Confirmed
Revision history for this message
Louis (louisdk) wrote : Re: [Bug 76682] Re: Please update mozilla-thunderbird

Security fixes. That's the new. So please update mozilla-thunderbird so
the package it's security updated.

--
Mvh. Louis
Hjemmeside: www.louis.dk
Mail: <email address hidden>
MSN: <email address hidden>
Jabber: <email address hidden> (ikke en mailadresse)
Registeret Linuxbruger nr.: 405248

Revision history for this message
Matti Lindell (mlind) wrote :

mozilla-thunderbird (1.5.0.9-0ubuntu1) feisty; urgency=low
 .
   * New upstream security update:
     - CVE-2006-6505, MFSA 2006-74: Mail header processing heap overflows.
     - CVE-2006-6503, MFSA 2006-72: XSS by setting img.src to javascript: URI.
     - CVE-2006-6502, MFSA 2006-71: LiveConnect crash finalizing JS objects.
     - CVE-2006-6501, MFSA 2006-70: Privilege escallation using watch point.
     - CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, MFSA 2006-68: Crashes
       with evidence of memory corruption.
   * Upstream security updates from 1.5.0.8:
     - CVE-2006-5463, MFSA 2006-67: Running Script can be recompiled.
     - CVE-2006-5462, MFSA 2006-66: RSA signature forgery (variant).
     - CVE-2006-5464, CVE-2006-5747, CVE-2006-5748, MFSA 2006-65: Crashes with
       evidence of memory corruption.

Changed in mozilla-thunderbird:
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.