Information on source package thunderbird

Available versions

ReleaseVersion
wheezy (security)1:52.5.2-1~deb7u1
jessie (security)1:52.5.2-2~deb8u1
stretch1:52.4.0-1~deb9u1
stretch (security)1:52.5.2-2~deb9u1
buster1:52.4.0-1
sid1:52.5.2-2

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-7848fixedfixedfixedvulnerablefixed
CVE-2017-7847fixedfixedfixedvulnerablefixed
CVE-2017-7846fixedfixedfixedvulnerablefixed
CVE-2017-7830fixedfixedfixedvulnerablefixed
CVE-2017-7829fixedfixedfixedvulnerablefixed
CVE-2017-7828fixedfixedfixedvulnerablefixed
CVE-2017-7826fixedfixedfixedvulnerablefixed

Resolved issues

BugDescription
CVE-2017-7845
CVE-2017-7824
CVE-2017-7823
CVE-2017-7819
CVE-2017-7818
CVE-2017-7814
CVE-2017-7810
CVE-2017-7805
CVE-2017-7793
CVE-2006-4571Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, ...
CVE-2006-4570Mozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with ...
CVE-2006-4569The popup blocker in Mozilla Firefox before 1.5.0.7 opens the "blocked ...
CVE-2006-4568Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows ...
CVE-2006-4567Mozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it ...
CVE-2006-4566Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and ...
CVE-2006-4565Heap-based buffer overflow in Mozilla Firefox before 1.5.0.7, ...
CVE-2006-4340Mozilla Network Security Service (NSS) library before 3.11.3, as used ...
CVE-2006-4253Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier ...
CVE-2006-3812Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3811Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, ...
CVE-2006-3810Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before ...
CVE-2006-3809Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3808Mozilla Firefox before 1.5.0.5 and SeaMonkey before 1.0.3 allows ...
CVE-2006-3807Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3806Multiple integer overflows in the Javascript engine in Mozilla Firefox ...
CVE-2006-3805The Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird ...
CVE-2006-3804Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and ...
CVE-2006-3803Race condition in the JavaScript garbage collection in Mozilla Firefox ...
CVE-2006-3802Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3801Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 does not ...
CVE-2006-3677Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows ...
CVE-2006-3113Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-2787EvalInSandbox in Mozilla Firefox and Thunderbird before 1.5.0.4 allows ...
CVE-2006-2786HTTP response smuggling vulnerability in Mozilla Firefox and ...
CVE-2006-2783Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode ...
CVE-2006-2781Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird before ...
CVE-2006-2780Integer overflow in Mozilla Firefox and Thunderbird before 1.5.0.4 ...
CVE-2006-2779Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers ...
CVE-2006-2778The crypto.signText function in Mozilla Firefox and Thunderbird before ...
CVE-2006-2776Certain privileged UI code in Mozilla Firefox and Thunderbird before ...
CVE-2006-2775Mozilla Firefox and Thunderbird before 1.5.0.4 associates XUL ...
CVE-2006-1942Mozilla Firefox 1.5.0.2 and possibly other versions before 1.5.0.4, ...
CVE-2006-1790A regression fix in Mozilla Firefox 1.0.7 allows remote attackers to ...
CVE-2006-1742The JavaScript engine in Mozilla Firefox and Thunderbird 1.x before ...
CVE-2006-1741Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite ...
CVE-2006-1740Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite ...
CVE-2006-1739The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1738Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1737Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5 and ...
CVE-2006-1735Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1734Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1733Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1732Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1731Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1730Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 ...
CVE-2006-1728Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1727Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1726Unspecified vulnerability in Firefox and Thunderbird 1.5 before ...
CVE-2006-1724Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1723Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1531Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1530Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1529Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1045The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block ...
CVE-2006-0884The WYSIWYG rendering engine ("rich mail" editor) in Mozilla ...
CVE-2006-0749nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before ...
CVE-2006-0748Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before ...
CVE-2006-0299The E4X implementation in Mozilla Firefox before 1.5.0.1, Thunderbird ...
CVE-2006-0298The XML parser in Mozilla Firefox before 1.5.0.1 and SeaMonkey before ...
CVE-2006-0297Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if ...
CVE-2006-0296The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, ...
CVE-2006-0295Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, ...
CVE-2006-0294Mozilla Firefox before 1.5.0.1, Thunderbird 1.5 if running Javascript ...
CVE-2006-0292The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before ...
CVE-2005-2353run-mozilla.sh in Thunderbird, with debugging enabled, allows local ...

Security announcements

DSA / DLADescription
DSA-4075-1thunderbird - security update
DSA-4075-1thunderbird - security update
DLA-1223-1thunderbird - security update
DSA-4061-1thunderbird - security update
DSA-4061-1thunderbird - security update
DLA-1199-1thunderbird - security update
DSA-4014-1thunderbird - security update
DSA-4014-1thunderbird - security update
DLA-1153-1thunderbird - security update

Search for package or bug name: Reporting problems