=========================================================== Ubuntu Security Notice USN-701-1 January 06, 2009 thunderbird vulnerabilities CVE-2008-5500, CVE-2008-5503, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5510, CVE-2008-5511, CVE-2008-5512 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 7.10: thunderbird 2.0.0.19+nobinonly-0ubuntu0.7.10.1 Ubuntu 8.04 LTS: thunderbird 2.0.0.19+nobinonly-0ubuntu0.8.04.1 Ubuntu 8.10: thunderbird 2.0.0.19+nobinonly-0ubuntu0.8.10.1 After a standard system upgrade you need to restart Thunderbird to effect the necessary changes. Details follow: Several flaws were discovered in the browser engine. If a user had Javascript enabled, these problems could allow an attacker to crash Thunderbird and possibly execute arbitrary code with user privileges. (CVE-2008-5500) Boris Zbarsky discovered that the same-origin check in Thunderbird could be bypassed by utilizing XBL-bindings. If a user had Javascript enabled, an attacker could exploit this to read data from other domains. (CVE-2008-5503) Marius Schilder discovered that Thunderbird did not properly handle redirects to an outside domain when an XMLHttpRequest was made to a same-origin resource. When Javascript is enabled, it's possible that sensitive information could be revealed in the XMLHttpRequest response. (CVE-2008-5506) Chris Evans discovered that Thunderbird did not properly protect a user's data when accessing a same-domain Javascript URL that is redirected to an unparsable Javascript off-site resource. If a user were tricked into opening a malicious website and had Javascript enabled, an attacker may be able to steal a limited amount of private data. (CVE-2008-5507) Chip Salzenberg, Justin Schuh, Tom Cross, and Peter William discovered Thunderbird did not properly parse URLs when processing certain control characters. (CVE-2008-5508) Kojima Hajime discovered that Thunderbird did not properly handle an escaped null character. An attacker may be able to exploit this flaw to bypass script sanitization. (CVE-2008-5510) Several flaws were discovered in the Javascript engine. If a user were tricked into opening a malicious website and had Javascript enabled, an attacker could exploit this to execute arbitrary Javascript code within the context of another website or with chrome privileges. (CVE-2008-5511, CVE-2008-5512) Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1.diff.gz Size/MD5: 125751 295c96e93f293e2b6e750ce7c40e5d54 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1.dsc Size/MD5: 1683 91959458598f0953fa4c81ceb61c6216 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly.orig.tar.gz Size/MD5: 40350774 e28d81325c073baf1bb7a77e342d74ff Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/mozilla-thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.7.10.1_all.deb Size/MD5: 60200 ca3121034c2abad22f664891f1e5e2c8 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/mozilla-thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1_all.deb Size/MD5: 60186 ed4fbdb2b07db6c04453f46c67faca57 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 3778360 b45367fb0c80075f46270c6ed7478eaa http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 85370 3a400c668b9da9216863be4a6630a96e http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 12429548 069f7cdcc8ba893fb7e3f126d45153c6 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 3766622 bad0e1549e66122e16d3b89d64968ffe http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 80714 714dbb475a909fe9d5afe500a1128a6f http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 11000200 67a82135268a9e9939442eaf59d904fa lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 3764286 4ee913f7366d01ae7d0cb4ebb40e9723 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 80442 9a4c87009be2c1fcb0a2a744a73d6c46 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 10840772 044f69eb8620275f0b2600f1266f9261 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 3782204 5426bd24bc9939d1d9c842991fc28d04 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 83746 b115a7a8548b555ce6ccc365ca8cd8cd http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 12274654 eb44ee29adc48b66f0b76e67ee396ed3 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.7.10.1_sparc.deb Size/MD5: 3764334 081ea4f34ef577559494b63f78e4fd7a http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.7.10.1_sparc.deb Size/MD5: 80150 5da23472cb09b42ce716fe90e1e0ee9a http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.7.10.1_sparc.deb Size/MD5: 11269388 c56ae47e2c90fd4b31add863ef3c8170 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1.diff.gz Size/MD5: 129303 2329ce6357dc550bc8b50c55d39115fe http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1.dsc Size/MD5: 1681 c52d1bf4c454e88154ab0095c6e8fcbd http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly.orig.tar.gz Size/MD5: 40350774 e28d81325c073baf1bb7a77e342d74ff Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/mozilla-thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 60490 ef703556822dd1d42bc111c4d4932e98 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/mozilla-thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 60478 d5055cf0260e822778c9dabbdaac0290 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 3779546 93c857b7e424b4ef32f3529c97d45645 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 85384 0a018f64edc1019750fa6d8d8b20c445 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 12413968 206878158152a3ec0e45a0b7e32b03d9 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 3766930 a338b4b1584d6d9752665d0905958642 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 80782 74b360869e8798f545989815a176d25d http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 10982858 dbb94dd72692de58a3ac4474b275006a lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 3764652 78b89b93c5e115a09c8dd0af0344c72d http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 80530 94b47edb17b4820e90332961ab99c328 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 10831682 a2426c576ed067307897c37e8ccebab7 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 3783238 e5745effd460c7bbb61f2d845dca5883 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 83768 527c9aa50b2369f8093264a54bb1bb12 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 12257040 c8ea7370647e43df601de2ec158d7610 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.04.1_sparc.deb Size/MD5: 3765166 34532aed9c87eeb5a6df99fc7fabfe4e http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.04.1_sparc.deb Size/MD5: 80236 59f5df0f4b378a280e6e86a1b2993558 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.04.1_sparc.deb Size/MD5: 11259474 4f03dd8f34b495ed5a3ae265aaebd90c Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1.diff.gz Size/MD5: 130103 b31f16122e92660486fd5a51f67e586a http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1.dsc Size/MD5: 1663 2d73e2af8c2bbbb34a3637aa1fcd1af7 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly.orig.tar.gz Size/MD5: 40350774 e28d81325c073baf1bb7a77e342d74ff Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/mozilla-thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 60830 514443d4829b4fe56f1837ace920a4bb http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/mozilla-thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 60820 a093a0e799904ea33d66e27eed40a859 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 3737222 118e8bba338794d2a2ec2929f11e169e http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 85582 6888cef1a0c67611444769818bddb7dd http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 12435266 afd08db88cbdf657df90444d0934159e i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 3721732 31a6b27e02fe3fae7f71da0527991099 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 81162 b0f2ba3990fc45202d1aae14bd613275 http://security.ubuntu.com/ubuntu/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 11041488 dd9292b3beecae4eabbf139f00eff890 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 3718346 1ebbb7108b584d3c519070508b3b8296 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 80872 2e4d7b7f18f6bf93605dfbc18463b926 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 10862250 807dd5718af4ccb6cab4fd89c71f5814 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 3736058 b76e8216923784632d5c449a326ec58f http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 84048 c1d081ab1342b80f4e09bfae790466a6 http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 12213534 f94a2d60504cb13dc78ba0bad6f621e0 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-dev_2.0.0.19+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 3724202 96ec9c4744d807f84b348a3ec38e22ad http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird-gnome-support_2.0.0.19+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 80892 dee7d086e2761b337f04821eb7ee98ac http://ports.ubuntu.com/pool/main/t/thunderbird/thunderbird_2.0.0.19+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 11190180 efdbb89130ce75d2959b400bdda1ba6c