Submit a story to LinuxSecurity!

Thanks very much for your interest in sharing your story with us. Our site is driven by users like you.

Post anonymously

Please also feel free to using our GPG key (found on our About page) or email us at This email address is being protected from spambots. You need JavaScript enabled to view it.

 

    Back

    Debian: DSA-3832-1: icedove security update

    Date20 Apr 2017
    CategoryDebian
    65
    Posted ByLinuxSecurity Advisories
    Multiple security issues have been found in Thunderbird, which may may lead to the execution of arbitrary code or information leaks. With this update, the Icedove packages are de-branded back to the official 
    -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3832-1                   This email address is being protected from spambots. You need JavaScript enabled to view it.
https://www.debian.org/security/                       Moritz Muehlenhoff
April 20, 2017                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : icedove
CVE ID         : CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 
                 CVE-2017-5380 CVE-2017-5383 CVE-2017-5390 CVE-2017-5396 
                 CVE-2017-5398 CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 
                 CVE-2017-5404 CVE-2017-5405 CVE-2017-5407 CVE-2017-5408 
                 CVE-2017-5410

Multiple security issues have been found in Thunderbird, which may may
lead to the execution of arbitrary code or information leaks.

With this update, the Icedove packages are de-branded back to the official
Mozilla branding. With the removing of the Debian branding the packages
are also renamed back to the official names used by Mozilla.

The Thunderbird package is using a different default profile folder,
the default profile folder is now '$(HOME)/.thunderbird'.
The users profile folder, that was used in Icedove, will get migrated
to the new profile folder on the first start, that can take a little bit
more time.

Please read README.Debian for getting more information about the
changes.

For the stable distribution (jessie), these problems have been fixed in
version 1:45.8.0-3~deb8u1.

We recommend that you upgrade your icedove packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.

    Related News

    An introduction to bpftrace for Linux
    An introduction to bpftrace for Linux
    The Dangers of Open-Source Vulnerabilities, and What You Can Do About It
    The Dangers of Open-Source Vulnerabilities, and What You Can Do About It
    61 impacted versions of Apache Struts left off security advisories
    61 impacted versions of Apache Struts left off security advisories
    Multiple HTTP/2 DoS flaws found by Netflix
    Multiple HTTP/2 DoS flaws found by Netflix
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"5","type":"x","order":"1","pct":55.56,"resources":[]},{"id":"88","title":"Should be more technical","votes":"3","type":"x","order":"2","pct":33.33,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"1","type":"x","order":"3","pct":11.11,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    Advisories

    Debian LTS: DLA-1892-1: flask security update
    Date20 Aug 2019 @ 07:33
    Ubuntu 4105-1: CUPS vulnerabilities
    Date20 Aug 2019 @ 06:49
    Ubuntu 4104-1: Nova vulnerability
    Date19 Aug 2019 @ 15:20
    SUSE: 2019:2180-1 important: python-Django
    Date19 Aug 2019 @ 13:12

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

    Learn More