-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4585-1 security@xxxxxxxxxx https://www.debian.org/security/ Moritz Muehlenhoff December 15, 2019 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : thunderbird CVE ID : CVE-2019-17005 CVE-2019-17008 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 Debian Bug : 946588 Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code. For the oldstable distribution (stretch), these problems have been fixed in version 1:68.3.0-2~deb9u1. For the stable distribution (buster), these problems have been fixed in version 1:68.3.0-2~deb10u1. We recommend that you upgrade your thunderbird packages. For the detailed security status of thunderbird please refer to its security tracker page at: https://security-tracker.debian.org/tracker/thunderbird Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl32cZIACgkQEMKTtsN8 TjYynQ//exX5RkE39ULzLp87G1mYENpJFyBo3wKDFzCKqSsnyvK/G3OrG4JaMmzO fXmjJ8saKzsx1L8uyGLvF049Gv8WPUINqL+CkFLFX0IPr8rNCsPr3zXlJHnhKD0S eiqcnelt21Mb1U5ze3rV6DGmdvEeVD2UolByNAngE8BeQO7cg9oLTaNKmbcbp594 Bj8lKVYEr/S9nruT5RINhopG3BNTDO0/4pjxyhIHYNG8/4Y5wBbizdpovVcczKsv ELmx6MZDvof1wdqotLG6mU1xiO3+dT+3Cw0bJieI6JX7scGDnLWhxAKEgk6LOOJy tdmm+UBxfzfJAII6TZ1mO7chOZUMBfDEVIAd0QXkPaJGTkx9XJng3SLqc3Db9gc8 NzuFS2IlVOXIPjkIYolmxbjMlWNq4OVBS3GO6Wx6GWat+vdt/dKKhMS1cNoVR0W0 /PogVSm1FxShQz5TK3vviRDGrIfsQe4qoaQar0M9rV4peMX6xiSNK0+nFroplk+u ssul7KNK1K0gffIuAvRO8SZod6iM6gpNrBjkT7ekcW/Cus6NAMSl4b9UbOQyVR8x nJHgvDpwGNSiKgZ1rwE5WQbpCT7tldr+JoCUo7cVHAwnL5/OKpeG+0wRif1LeE2H JdqcQ7vWyEKZSiM3gYNgAJhhN1W/i1hs6vQ/N06oOXTDiPVdPKQ= =sjXR -----END PGP SIGNATURE-----