Submit a story to LinuxSecurity!

Thanks very much for your interest in sharing your story with us. Our site is driven by users like you.

Post anonymously

Please also feel free to using our GPG key (found on our About page) or email us at This email address is being protected from spambots. You need JavaScript enabled to view it.

 

    Back

    Debian: DSA-3832-1: icedove security update

    Date20 Apr 2017
    CategoryDebian
    83
    Posted ByLinuxSecurity Advisories
    Multiple security issues have been found in Thunderbird, which may may lead to the execution of arbitrary code or information leaks. With this update, the Icedove packages are de-branded back to the official 
    -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3832-1                   This email address is being protected from spambots. You need JavaScript enabled to view it.
	
https://www.debian.org/security/                       Moritz Muehlenhoff
April 20, 2017                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : icedove
CVE ID         : CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 
                 CVE-2017-5380 CVE-2017-5383 CVE-2017-5390 CVE-2017-5396 
                 CVE-2017-5398 CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 
                 CVE-2017-5404 CVE-2017-5405 CVE-2017-5407 CVE-2017-5408 
                 CVE-2017-5410

Multiple security issues have been found in Thunderbird, which may may
lead to the execution of arbitrary code or information leaks.

With this update, the Icedove packages are de-branded back to the official
Mozilla branding. With the removing of the Debian branding the packages
are also renamed back to the official names used by Mozilla.

The Thunderbird package is using a different default profile folder,
the default profile folder is now '$(HOME)/.thunderbird'.
The users profile folder, that was used in Icedove, will get migrated
to the new profile folder on the first start, that can take a little bit
more time.

Please read README.Debian for getting more information about the
changes.

For the stable distribution (jessie), these problems have been fixed in
version 1:45.8.0-3~deb8u1.

We recommend that you upgrade your icedove packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.

    Related News

    Ring Doorbells Had Security Bug That Exposed Wi-Fi Passwords To Hackers
    Ring Doorbells Had Security Bug That Exposed Wi-Fi Passwords To Hackers
    Intel, Mozilla, Red Hat, and Fastly partner to make WebAssembly a cross-platform runtime
    Intel, Mozilla, Red Hat, and Fastly partner to make WebAssembly a cross-platform runtime
    Fooling Voice Assistants with Lasers
    Fooling Voice Assistants with Lasers
    Virtual(ly) Private Network: NordVPN’s Breach and the Limitations of VPNs
    Virtual(ly) Private Network: NordVPN’s Breach and the Limitations of VPNs
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"37","type":"x","order":"1","pct":51.39,"resources":[]},{"id":"88","title":"Should be more technical","votes":"10","type":"x","order":"2","pct":13.89,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"25","type":"x","order":"3","pct":34.72,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    Advisories

    Debian LTS: DLA-1991-1: libssh2 security update
    Date13 Nov 2019 @ 10:24
    RedHat: RHSA-2019-3871:01 Important: kernel security update
    Date13 Nov 2019 @ 06:54
    RedHat: RHSA-2019-3870:01 Important: kernel-rt security update
    Date13 Nov 2019 @ 06:38
    Ubuntu 4189-1: DPDK vulnerability
    Date13 Nov 2019 @ 04:11

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

    Learn More