Several security issues were fixed in Thunderbird.
Software Description:
- thunderbird: Mozilla Open Source mail and newsgroup client
Details:
USN-4995-1 fixed vulnerabilities in Thunderbird. This update provides
the corresponding updates for Ubuntu 18.04 LTS.
Original advisory details:
Multiple security issues were discovered in Thunderbird. If a user were
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, spoof the UI, bypass security restrictions,
or execute arbitrary code. (CVE-2021-23961, CVE-2021-23981,
CVE-2021-23982, CVE-2021-23987, CVE-2021-23994, CVE-2021-23998,
CVE-2021-23999, CVE-2021-29945, CVE-2021-29946, CVE-2021-29967)
It was discovered that extensions could open popup windows with control
of the window title in some circumstances. If a user were tricked into
installing a specially crafted extension, an at...
The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: thunderbird 1:78.11.0+build1-0ubuntu0.18.04.2 After a standard system update you need to restart Thunderbird to make all the necessary changes.
https://ubuntu.com/security/notices/USN-4995-2
https://ubuntu.com/security/notices/USN-4995-1
CVE-2021-23961, CVE-2021-23981, CVE-2021-23982, CVE-2021-23984,
CVE-2021-23987, CVE-2021-23991, CVE-2021-23992, CVE-2021-23993,
CVE-2021-23994, CVE-2021-23995, CVE-2021-23998, CVE-2021-23999,
CVE-2021-24002, CVE-2021-29945, CVE-2021-29946, CVE-2021-29948,
CVE-2021-29949, CVE-2021-29956, CVE-2021-29957, CVE-2021-29967
Get the latest Linux and open source security news straight to your inbox.