-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5094-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff March 08, 2022 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : thunderbird CVE ID : CVE-2022-26485 CVE-2022-26486 Two security issues were discovered in Thunderbird, which could result in the execution of arbitrary code. For the oldstable distribution (buster), these problems have been fixed in version 1:91.6.2-1~deb10u1. For the stable distribution (bullseye), these problems have been fixed in version 1:91.6.2-1~deb11u1. We recommend that you upgrade your thunderbird packages. For the detailed security status of thunderbird please refer to its security tracker page at: https://security-tracker.debian.org/tracker/thunderbird Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmIns5EACgkQEMKTtsN8 TjYk7Q//TbjN5eMikatP3+BzZC+K9YL8KD03GWd1qFpNXNyVF3nIBKalkW/zEJFF 0xcMyUqwDRJevySXRAck+kOa0mr+avT62NBx96Du8d4w6q1G62pCqCMwvwvzyCis 5b/+vOKFROHs9RGmcl3NVa5MLAOiJ2CldHIhxhaE9nNfanfj0YpDVt9th7vtzKD/ U8sIHztPqKy4nWfqL4BP7Y2Ks53X8vuX05duue6hbif/lCKc0dTedpfNJtBLa6No +EDl1GCF56Pdfu2EbX0TDqADmkJJrGxEcci/Vxlst28QF0yWGbXWzV84PY5nOQzc Cyp3KsPY0fJ0SMf9oqWZcxUwdtjuiSag+I01jz0dPaxi533Aj3DBynj0othBCys6 YA6ZVy/vEeqHZqel4CRLFdgV3rjizTn7LwbKYq5DlFHxC/+CH5ssgzyRg5C/BuLm xvBS6Iug3mG4HucLCQIYDgrVeRPXSc8Nnf/5u2ZOJT+Xio3djBqSqyTeY81fZJMz BEoc2psW2KcMr8UCcNw4ognIEQLoMBCi9VzY2+ATmrFbRocmt9E+qLv8cP6QkQqn H23gtrjj4hpiuu7HlOXodnoYd+Editx6CgCL3czb/Ag56YtpJqiny87yxndkvbO/ 0+3ryh94zGXZdit4emn7rqSVgSIkFGVirCXCNN/Jcl9XfCi+BHI= =bCjb -----END PGP SIGNATURE-----