-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4625-1 security@xxxxxxxxxx https://www.debian.org/security/ Moritz Muehlenhoff February 15, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : thunderbird CVE ID : CVE-2020-6792 CVE-2020-6793 CVE-2020-6794 CVE-2020-6795 CVE-2020-6798 CVE-2020-6800 Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code or denial of service. For the oldstable distribution (stretch), these problems have been fixed in version 1:68.5.0-1~deb9u1. For the stable distribution (buster), these problems have been fixed in version 1:68.5.0-1~deb10u1. We recommend that you upgrade your thunderbird packages. For the detailed security status of thunderbird please refer to its security tracker page at: https://security-tracker.debian.org/tracker/thunderbird Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl5IW7cACgkQEMKTtsN8 TjYEPRAAjU8NzP7fII9LInSChvqED9nT7hgsJ6VMt2E+S7zMyjBI3WLC+QM79694 JGKwr83SZbFnMxzDxhgMsy7gi5qBfX20I+bzuJsJcMm9QbWOgkhiN0d10fIrY0P3 5gypNLNfCouG/7roG/aEz/uLb7AcbKrJpsM+BzSxSBMY91lMMR9MsomMVPeFp86n 4e84UJtxxvSLEpf1LPNnbvN2v3fu4+d5eDXZnjbNiJLbA07dx+MtDHmWDQeb4wu4 XZvEzxBgkRmljDbnGngVph3b8hvR90TFVx2ysPTs/Lzg7Qc15+9hpMm7+Jv7BT2J RPVDjeRhSaWaqkCusHdqOHcg8rQszUJh3Dbch9FkOCcLD4rTNwDfivfpQ+VOkxuf z65amJ+T7rqDf8nfbJ9TAMEdefzL4dULKjV6+LKGkl/w5TB8XYPH3X0/Yqx+0Fnp 55MAgw31d0jdl7Cd4FHL6UYAGbnqKDL/wqRSF9z9Ek0Zz1V/mUZIfD4YPdhfyWfc 595CbwOlsXyoTU1SJq/A5xHBYAUzW2mwkbM8X72WuqqFXZhGaSv+6XqMAri1JAry ioXaLict4fuHgMs/9orflzhBkPsJF0U3hYB7wSIsp9yKyPTMnr04I/Z7S/333LuA RvxLwy8kKvsWXixUJZWeNx8YujX8fkdNuXU6XAPPA4iJJYzR+8E= =OQBJ -----END PGP SIGNATURE-----