Debian: DSA-3832-1: icedove security update

    Date20 Apr 2017
    CategoryDebian
    83
    Posted ByLinuxSecurity Advisories
    Multiple security issues have been found in Thunderbird, which may may lead to the execution of arbitrary code or information leaks. With this update, the Icedove packages are de-branded back to the official
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA256
    
    - -------------------------------------------------------------------------
    Debian Security Advisory DSA-3832-1                   This email address is being protected from spambots. You need JavaScript enabled to view it.
    	
    https://www.debian.org/security/                       Moritz Muehlenhoff
    April 20, 2017                        https://www.debian.org/security/faq
    - -------------------------------------------------------------------------
    
    Package        : icedove
    CVE ID         : CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 
                     CVE-2017-5380 CVE-2017-5383 CVE-2017-5390 CVE-2017-5396 
                     CVE-2017-5398 CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 
                     CVE-2017-5404 CVE-2017-5405 CVE-2017-5407 CVE-2017-5408 
                     CVE-2017-5410
    
    Multiple security issues have been found in Thunderbird, which may may
    lead to the execution of arbitrary code or information leaks.
    
    With this update, the Icedove packages are de-branded back to the official
    Mozilla branding. With the removing of the Debian branding the packages
    are also renamed back to the official names used by Mozilla.
    
    The Thunderbird package is using a different default profile folder,
    the default profile folder is now '$(HOME)/.thunderbird'.
    The users profile folder, that was used in Icedove, will get migrated
    to the new profile folder on the first start, that can take a little bit
    more time.
    
    Please read README.Debian for getting more information about the
    changes.
    
    For the stable distribution (jessie), these problems have been fixed in
    version 1:45.8.0-3~deb8u1.
    
    We recommend that you upgrade your icedove packages.
    
    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/
    
    Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"37","type":"x","order":"1","pct":51.39,"resources":[]},{"id":"88","title":"Should be more technical","votes":"10","type":"x","order":"2","pct":13.89,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"25","type":"x","order":"3","pct":34.72,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.