#14887: thunderbird-78.9.1
-------------------------+-----------------------
Reporter: renodr | Owner: timtas
Type: enhancement | Status: assigned
Priority: normal | Milestone: 10.2
Component: BOOK | Version: SVN
Severity: normal | Resolution:
Keywords: |
-------------------------+-----------------------
Changes (by timtas):
* owner: blfs-book => timtas
* status: new => assigned
Comment:
What’s New
- Support recipient aliases for OpenPGP encryption. Documentation can be
found here.
Fixes
- The key and signature parts of the message security popup on a received
message could not be selected for copy/paste.
- Various UX and theme improvements
- Various security fixes
Mozilla Foundation Security Advisory 2021-13
Security Vulnerabilities fixed in Thunderbird 78.9.1
- CVE-2021-23991: An attacker may use Thunderbird's OpenPGP key refresh
mechanism to poison an existing key
- MOZ-2021-23992: A crafted OpenPGP key with an invalid user ID could be
used to confuse the user
- CVE-2021-23993: Inability to send encrypted OpenPGP email after
importing a crafted OpenPGP key
--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/14887#comment:1>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
--
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
