Mozilla Thunderbird: Multiple vulnerabilities

Mozilla Thunderbird: Multiple vulnerabilities Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code. thunderbird 2020-05-12 2020-05-12 721324 remote 68.8.0 68.8.0 68.8.0 68.8.0

Mozilla Thunderbird is a popular open-source email client from the Mozilla project.

Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details.

A remote attacker may be able to execute arbitrary code, cause a Denial of Service condition or spoof sender email address.

There is no known workaround at this time.

All Mozilla Thunderbird users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-68.8.0"

All Mozilla Thunderbird binary users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=mail-client/thunderbird-bin-68.8.0"

CVE-2020-12387 CVE-2020-12392 CVE-2020-12395 CVE-2020-12397 CVE-2020-6831 MFSA-2020-18 sam_c sam_c