-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4897-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
April 22, 2021                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : thunderbird
CVE ID         : CVE-2021-23961 CVE-2021-23991 CVE-2021-23992 CVE-2021-23993 
                 CVE-2021-23994 CVE-2021-23995 CVE-2021-23998 CVE-2021-23999 
                 CVE-2021-24002 CVE-2021-29945 CVE-2021-29946 CVE-2021-29948 
                 CVE-2021-29949

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code or information disclosure.
In adddition a number of security issues were addressed in the OpenPGP
support.

For the stable distribution (buster), these problems have been fixed in
version 1:78.10.0-1~deb10u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=wI4A
-----END PGP SIGNATURE-----