What Are You Looking For?

Sign Up

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3324-1                   security@debian.org
https://www.debian.org/security/                       Alessandro Ghedini
August 01, 2015                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : icedove
CVE ID         : CVE-2015-2721 CVE-2015-2724 CVE-2015-2734 CVE-2015-2735 
                 CVE-2015-2736 CVE-2015-2737 CVE-2015-2738 CVE-2015-2739 
                 CVE-2015-2740 CVE-2015-4000

Multiple security issues have been found in Icedove, Debian's version
of the Mozilla Thunderbird mail client:  multiple memory safety errors,
use-after-frees and other implementation errors may lead to the
execution of arbitrary code or denial of service. This update also
addresses a vulnerability in DHE key processing commonly known as
the "LogJam" vulnerability.

For the oldstable distribution (wheezy), these problems have been fixed
in version 31.8.0-1~deb7u1.

For the stable distribution (jessie), these problems have been fixed in
version 31.8.0-1~deb8u1.

For the unstable distribution (sid), these problems will be fixed
shortly.

We recommend that you upgrade your icedove packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org

Debian: DSA-3324-1: icedove security update

August 1, 2015
Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail client: multiple memory safety errors, use-after-frees and other implementatio...

Summary

For the oldstable distribution (wheezy), these problems have been fixed
in version 31.8.0-1~deb7u1.

For the stable distribution (jessie), these problems have been fixed in
version 31.8.0-1~deb8u1.

For the unstable distribution (sid), these problems will be fixed
shortly.

We recommend that you upgrade your icedove packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org

Severity
Multiple security issues have been found in Icedove, Debian's version
of the Mozilla Thunderbird mail client: multiple memory safety errors,
use-after-frees and other implementation errors may lead to the
execution of arbitrary code or denial of service. This update also
addresses a vulnerability in DHE key processing commonly known as
the "LogJam" vulnerability.

Related News

Linux version of Qilin ransomware focuses on VMware ESXi

Dec 4, 2023

Krasue RAT Malware Hides on Linux Servers Using Embedded Rootkits

Dec 7, 2023

Kali Linux 2023.4 Released With New Hacking Tools

Dec 6, 2023

Linus Torvalds on the State of Linux Today and How AI Figures in Its Future

Dec 6, 2023

News

Advisories

HOWTOs

Features

Password Guessing as an Attack Vector
Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management

About Us

Powered By

Footer Logo