Mozilla Thunderbird: Multiple vulnerabilities

Mozilla Thunderbird: Multiple vulnerabilities Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. thunderbird 2017-02-20 2017-02-20 607310 remote 45.7.0 45.7.0 45.7.0 45.7.0

Mozilla Thunderbird is a popular open-source email client from the Mozilla project.

Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details.

A remote attacker, by enticing a user to open a specially crafted email or web page, could possibly execute arbitrary code with the privileges of the process or cause a Denial of Service condition.

There is no known workaround at this time.

All Mozilla Thunderbird users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-45.7.0"

All Mozilla Thunderbird binary users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=mail-client/thunderbird-bin-45.7.0"

CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 CVE-2017-5380 CVE-2017-5383 CVE-2017-5390 CVE-2017-5396 Mozilla Foundation Security Advisory 2017-03 whissi whissi