SUSE update for MozillaThunderbird - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

SUSE update for MozillaThunderbird

Secunia Advisory:	SA19823
Release Date:	2006-04-26

Critical:	Highly critical
Impact:	Security Bypass Cross Site Scripting Spoofing Manipulation of data Exposure of system information Exposure of sensitive information System access
Where:	From remote
Solution Status:	Vendor Patch

OS:	SUSE Linux 10 SuSE Linux 9.1 SUSE Linux 9.2 SUSE Linux 9.3


CVE reference:	CVE-2004-1316 (Secunia mirror) CVE-2005-0142 (Secunia mirror) CVE-2005-0149 (Secunia mirror) CVE-2005-0230 (Secunia mirror) CVE-2005-0255 (Secunia mirror) CVE-2005-0399 (Secunia mirror) CVE-2005-0587 (Secunia mirror) CVE-2005-0590 (Secunia mirror) CVE-2005-0592 (Secunia mirror) CVE-2005-0989 (Secunia mirror) CVE-2005-1159 (Secunia mirror) CVE-2005-1160 (Secunia mirror) CVE-2005-1532 (Secunia mirror) CVE-2005-2261 (Secunia mirror) CVE-2005-2265 (Secunia mirror) CVE-2005-2266 (Secunia mirror) CVE-2005-2269 (Secunia mirror) CVE-2005-2270 (Secunia mirror) CVE-2005-2706 (Secunia mirror) CVE-2005-2707 (Secunia mirror) CVE-2006-0292 (Secunia mirror) CVE-2006-0296 (Secunia mirror) CVE-2006-0748 (Secunia mirror) CVE-2006-0749 (Secunia mirror) CVE-2006-0884 (Secunia mirror) CVE-2006-1045 (Secunia mirror) CVE-2006-1727 (Secunia mirror) CVE-2006-1728 (Secunia mirror) CVE-2006-1730 (Secunia mirror) CVE-2006-1731 (Secunia mirror) CVE-2006-1732 (Secunia mirror) CVE-2006-1733 (Secunia mirror) CVE-2006-1734 (Secunia mirror) CVE-2006-1735 (Secunia mirror) CVE-2006-1737 (Secunia mirror) CVE-2006-1739 (Secunia mirror) CVE-2006-1741 (Secunia mirror) CVE-2006-1742 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: SUSE has issued an update for MozillaThunderbird. This fixes some vulnerabilities, where the most critical ones can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and spoofing attacks, potentially disclose sensitive information, and compromise a user's system. For more information: SA12956 SA13687 SA14017 SA14407 SA14671 SA14685 SA15907 SA16062 SA18704 Solution: Apply updated packages. -- x86 Platform -- SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/upda...MozillaThunderbird-1.0.8-0.2.i586.rpm 26cf86fce7501020613b5e7aa9d817c0 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/upda...MozillaThunderbird-1.0.8-0.2.i586.rpm cc56fcd7d79bdea6fe3f88fae36013e2 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/upda...MozillaThunderbird-1.0.8-0.2.i586.rpm 1808acacd53e3248ac1b73c3b7d70557 SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/upda...MozillaThunderbird-1.0.8-0.1.i586.rpm c9ba754c65a76f7a7aae082b217b1add -- Power PC Platform -- SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/upda.../MozillaThunderbird-1.0.8-0.2.ppc.rpm 5ae486f9a4b72a632f1cd9bb6f5ae659 x86-64 Platform: SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/upda...zillaThunderbird-1.0.8-0.2.x86_64.rpm d798bd7e1b8c964ac6be1e46be870a34 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/upda...zillaThunderbird-1.0.8-0.2.x86_64.rpm ddf99f2f040e5d559749b789bf2316d2 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/upda...zillaThunderbird-1.0.8-0.2.x86_64.rpm 67e96c7a21aa0bcfdea9ce1e003b02f2 SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/x86_64/up...zillaThunderbird-1.0.8-0.1.x86_64.rpm 6705eb87ba914bfdc40b2af96b89e771 -- Sources -- SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/upda.../MozillaThunderbird-1.0.8-0.2.src.rpm a1d223c8c5baca6a3e156a7f574033f0 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/upda.../MozillaThunderbird-1.0.8-0.2.src.rpm 69aa14a7c43b0bdae68a7777c8e70a94 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/upda.../MozillaThunderbird-1.0.8-0.2.src.rpm d7101dcb24d6686eaaa9d448a61ff49c SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/upda.../MozillaThunderbird-1.0.8-0.1.src.rpm 2ddffcab2830abaac80470d1da121e1c ftp://ftp.suse.com/pub/suse/x86_64/up.../MozillaThunderbird-1.0.8-0.1.src.rpm c26b9d2f04a22a09da5393baa4a8e5e7 Original Advisory: http://www.novell.com/linux/security/advisories/2006_04_25.html Other References: SA12956: http://secunia.com/advisories/12956/ SA13687: http://secunia.com/advisories/13687/ SA14017: http://secunia.com/advisories/14017/ SA14407: http://secunia.com/advisories/14407/ SA14671: http://secunia.com/advisories/14671/ SA14685: http://secunia.com/advisories/14685/ SA15907: http://secunia.com/advisories/15907/ SA16062: http://secunia.com/advisories/16062/ SA18704: http://secunia.com/advisories/18704/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

320 Related Secunia Security Advisories, displaying 10

1. SUSE Update for Multiple Packages

2. SUSE Update for Multiple Packages

3. SUSE update for OpenOffice_org

4. SUSE update for samba

5. SUSE Update for Multiple Packages

6. SUSE update for MozillaFirefox

7. SUSE update for samba

8. SUSE update for kernel

9. SUSE update for pcre

10. SUSE Update for Multiple Packages

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Opera Multiple Vulnerabilities

2.	Microsoft Outlook Express MHTML URL Processing Vulnerability

3.	Folder Lock Weak Password Encryption Security Issue

4.	neon "parse_domain() " Denial of Service Vulnerability

5.	vBulletin Private Message Subject Script Insertion

6.	SunShop Shopping Cart class.ajax.php SQL Injection Vulnerabilities

7.	Short Url & Url Tracker Script "id" SQL Injection Vulnerability

8.	Anzio Web Print Object (WePO) ActiveX Component "mainurl" Buffer Overflow

9.	PluggedOut Blog "index.php" SQL Injection Vulnerabilities

10.	Vanilla Multiple Vulnerabilities