The changelog of mozilla-thunderbird in dapper indicates version
1.5.0.4.
mozilla-thunderbird (1.5.0.4-0ubuntu6.06) dapper-security; urgency=low
* New upstream incremental security and bugfix release:
- MFSA 2006-42, CVE-2006-2783: Web site XSS using BOM on UTF-8
pages
- MFSA 2006-40, CVE-2006-2781: Double-free on malformed VCard
- MFSA 2006-38, CVE-2006-2778: Buffer overflow in
crypto.signText()
- MFSA 2006-37, CVE-2006-2776: Remote compromise via
content-defined setter on object prototypes
- MFSA 2006-35, CVE-2006-2775: Privilege escalation through XUL
persist
- MFSA 2006-33, CVE-2006-2786: HTTP response smuggling
- MFSA 2006-32, CVE-2006-2779, CVE-2006-2780: Fixes for crashes with
potential memory corruption
- MFSA 2006-31, CVE-2006-2787: EvalInSandbox escape (Proxy
Autoconfig, Greasemonkey)
-- Martin Pitt <[EMAIL PROTECTED]> Mon, 12 Jun 2006 14:03:35
+0200
--
New upstream version available
https://launchpad.net/bugs/53718
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
