-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2479-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ Emilio Pozuelo Monfort December 04, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : thunderbird Version : 1:78.5.1-1~deb9u1 CVE ID : CVE-2020-26970 Chiaki Ishikawa discovered a stack overflow in SMTP server status handling which could potentially result in the execution of arbitrary code. For Debian 9 stretch, this problem has been fixed in version 1:78.5.1-1~deb9u1. We recommend that you upgrade your thunderbird packages. For the detailed security status of thunderbird please refer to its security tracker page at: https://security-tracker.debian.org/tracker/thunderbird Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAl/KGlwACgkQnUbEiOQ2 gwIVTw/+K79o945orQvkdv49vWpXdP0m64wuQcbECdNApXpTL0DNc27JMHpgoR2d v9j2TFdF+24aIrOngs00DCvyazTVyCdcop1W7fBjDPk+prvSgP5sN2NJSnM78STF OW8xYUecSXQmq7g7EKojvJks+K9ZRBIFTyS41GYdQB3AfbyoLITKrqhD/Hb0CRnQ tsRvl5KBQFNSNLG0qonrzNNz3gZmgylYVaUTqhJdcyuEjTnl2n4BZYrCx4XMnzq1 YyApqDoSfLnqMrB7to5C4oxE1WgZ8BaIHrtl7Vm4FQ/YDE1nhMYSWLJlaNXG9igI 3L1gOJ939UpuJflPZWUZtPaXKyn4neETGXy1RA0htymxRjBCdqKAUXe/hg0ClfCt zAt9R+hYts5Le3X+d+YMYwBu9zuPa3toHvnMK34zRjHPQf73KCg+VkWleuag7XlQ vf13GuGjfqesdHHIWLCgSzTV8IFfOK7MEGrHUWNQG0DpJPgCUJ2SZ4ojmCQbYDK1 FSCUf0sCr0pYSyF7yqy5zicBECtwVYQzB6qIIQlCZJxn/KlatJ6VP/gIa2TDlBYg LcpSAuuFK1/d4R0+fGlJsnd0/GTGNp4c5DNsqBTU0QiAMdnzKyRLV8rvdeBTh+go UfWpiRs+2bMV5fa353IorQmTqoE+fT4pZy3YweAJ78Mwm3HmYA8= =/MBt -----END PGP SIGNATURE-----