From a24567fbc43f221b14e805f9bc0b7c6d16911c46 Mon Sep 17 00:00:00 2001 From: Alex Legler Date: Sun, 8 Mar 2015 22:02:38 +0100 Subject: Import existing advisories --- glsa-200610-01.xml | 85 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 85 insertions(+) create mode 100644 glsa-200610-01.xml (limited to 'glsa-200610-01.xml') diff --git a/glsa-200610-01.xml b/glsa-200610-01.xml new file mode 100644 index 00000000..a336c0b1 --- /dev/null +++ b/glsa-200610-01.xml @@ -0,0 +1,85 @@ + + + + + + + Mozilla Thunderbird: Multiple vulnerabilities + + The Mozilla Foundation has reported multiple security vulnerabilities + related to Mozilla Thunderbird. + + thunderbird + October 04, 2006 + October 04, 2006: 01 + 147653 + remote + + + 1.5.0.7 + 1.5.0.7 + + + 1.5.0.7 + 1.5.0.7 + + + +

+ The Mozilla Thunderbird mail client is a redesign of the Mozilla Mail + component. +

+
+ +

+ A number of vulnerabilities have been found and fixed in Mozilla + Thunderbird. For details please consult the references below. +

+
+ +

+ The most severe vulnerabilities might lead to the execution of + arbitrary code with the rights of the user running the application. + Other vulnerabilities include program crashes and the acceptance of + forged certificates. +

+
+ +

+ There is no known workaround at this time. +

+
+ +

+ All Mozilla Thunderbird users should upgrade to the latest version: +

+ + # emerge --sync + # emerge --ask --oneshot --verbose ">=mail-client/mozilla-thunderbird-1.5.0.7" +

+ All Mozilla Thunderbird binary users should upgrade to the latest + version: +

+ + # emerge --sync + # emerge --ask --oneshot --verbose ">=mail-client/mozilla-thunderbird-bin-1.5.0.7" +
+ + CVE-2006-4253 + CVE-2006-4340 + CVE-2006-4565 + CVE-2006-4566 + CVE-2006-4567 + CVE-2006-4570 + CVE-2006-4571 + + + vorlon078 + + + vorlon078 + + + vorlon078 + +
-- cgit v1.2.3-65-gdbad