Ubuntu update for thunderbird - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Ubuntu update for thunderbird

Secunia Advisory:	SA31220
Release Date:	2008-07-25

Critical:	Highly critical
Impact:	Security Bypass Cross Site Scripting Spoofing Exposure of system information Exposure of sensitive information DoS System access
Where:	From remote
Solution Status:	Vendor Patch

OS:	Ubuntu Linux 6.06 Ubuntu Linux 7.04 Ubuntu Linux 7.10 Ubuntu Linux 8.04


CVE reference:	CVE-2008-2785 (Secunia mirror) CVE-2008-2798 (Secunia mirror) CVE-2008-2799 (Secunia mirror) CVE-2008-2802 (Secunia mirror) CVE-2008-2803 (Secunia mirror) CVE-2008-2807 (Secunia mirror) CVE-2008-2809 (Secunia mirror) CVE-2008-2811 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system. For more information: SA30761 SA30911 SA30915 Solution: Apply updated packages. -- Ubuntu 6.06 LTS -- Source archives: http://security.ubuntu.com/ubuntu/poo...epatch080614d-0ubuntu0.6.06.1.diff.gz Size/MD5: 457638 73c477206c17445c1fa665cc0ce1f181 http://security.ubuntu.com/ubuntu/poo...5~prepatch080614d-0ubuntu0.6.06.1.dsc Size/MD5: 1680 0fe3944fd3fef91bd428cbd56c230554 http://security.ubuntu.com/ubuntu/poo...+1.5.0.15~prepatch080614d.orig.tar.gz Size/MD5: 37543054 34cc52af5fe915d806dca23003125786 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_amd64.deb Size/MD5: 3593468 b0c4d143fa925281414f0beaf69783e6 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_amd64.deb Size/MD5: 194946 6830ed825a951517d357f6dd85781567 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_amd64.deb Size/MD5: 60194 e162622559d411f31f48ed60daa3ba33 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_amd64.deb Size/MD5: 12117020 39d4685f83426a2d9249cb6a7afa7535 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.6.06.1_i386.deb Size/MD5: 3587088 04ea4b1436ceca0a475f83eca30db7b7 http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.6.06.1_i386.deb Size/MD5: 188372 8e1dfa9caea92df88a7a910b8cc9c744 http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.6.06.1_i386.deb Size/MD5: 55706 7e4c619f43127eeb5a733aa3b5e04b0a http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.6.06.1_i386.deb Size/MD5: 10392340 1d853cc6deaa90dd9e91e2dd929a0214 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.6.06.1_powerpc.deb Size/MD5: 3592254 f91cd633bf5566043982b35204da791d http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.6.06.1_powerpc.deb Size/MD5: 191670 ef767b602edc5ca67821ec6de3088dea http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.6.06.1_powerpc.deb Size/MD5: 59358 b5d81799ce8576bce6a1d73cd9eefd91 http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.6.06.1_powerpc.deb Size/MD5: 11671942 84758b3d1f20a3cf84ab7a0c0d5e9ae9 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_sparc.deb Size/MD5: 3588816 94aee0babf4601a8cc4a272e8bbc6299 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_sparc.deb Size/MD5: 189130 0b2dc3142ad9a9f52b05ed51df002d14 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_sparc.deb Size/MD5: 57196 86959934b9ab079465c99e8ed62cfbda http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.6.06.1_sparc.deb Size/MD5: 10864344 47dedc0c9cc016c043e8f90488bc97eb -- Ubuntu 7.04 -- Source archives: http://security.ubuntu.com/ubuntu/poo...epatch080614d-0ubuntu0.7.04.1.diff.gz Size/MD5: 127581 acb24c37c3d02dd526c9097aa747d7fa http://security.ubuntu.com/ubuntu/poo...5~prepatch080614d-0ubuntu0.7.04.1.dsc Size/MD5: 1680 57ebe6d74158120e68635bfad40c6de9 http://security.ubuntu.com/ubuntu/poo...+1.5.0.15~prepatch080614d.orig.tar.gz Size/MD5: 37543054 34cc52af5fe915d806dca23003125786 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_amd64.deb Size/MD5: 3593698 61f837924231d01685365741382a6ac4 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_amd64.deb Size/MD5: 195584 6313be097a0eb8374269dd1d5127da90 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_amd64.deb Size/MD5: 60706 d0f12e08abe326e34ec8570be8cb6af6 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_amd64.deb Size/MD5: 12213806 edaebf43387b82272be869fb121fb27d i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.7.04.1_i386.deb Size/MD5: 3591126 ed2e1a78d7a21cf2fc04742a7077bc04 http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.7.04.1_i386.deb Size/MD5: 190228 7cc52ef63b5738fb3113cdb4edace2e6 http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.7.04.1_i386.deb Size/MD5: 57310 cb855c7712701da57f834a5d1f321769 http://security.ubuntu.com/ubuntu/poo...patch080614d-0ubuntu0.7.04.1_i386.deb Size/MD5: 10934846 dd16522583152795ae35c3d3aea0179a powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.7.04.1_powerpc.deb Size/MD5: 3594654 383fc983aeae4a693efb69cff4015d1b http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.7.04.1_powerpc.deb Size/MD5: 193700 cf9347e4f73105adc4ebb6efd6d9c5f3 http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.7.04.1_powerpc.deb Size/MD5: 60688 4b4148b1b786112064490b5abe2445bd http://security.ubuntu.com/ubuntu/poo...ch080614d-0ubuntu0.7.04.1_powerpc.deb Size/MD5: 12154310 a2cbe272dcf9d940afedbe08e473e9bd sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_sparc.deb Size/MD5: 3590386 347dc2de7068b9ec4f8cb7c258de4550 http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_sparc.deb Size/MD5: 190034 fcd4a1dd483d3ea1bcfafc49f857db2f http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_sparc.deb Size/MD5: 57744 de26d6aaf140200463a432f9e0b0fafa http://security.ubuntu.com/ubuntu/poo...atch080614d-0ubuntu0.7.04.1_sparc.deb Size/MD5: 11163080 575915c689799019455e5488aaa6e5f5 -- Ubuntu 7.10 -- Source archives: http://security.ubuntu.com/ubuntu/poo....16+nobinonly-0ubuntu0.7.10.1.diff.gz Size/MD5: 125662 c0b6b2aed6618b5f74df32f396a0b64d http://security.ubuntu.com/ubuntu/poo....0.0.16+nobinonly-0ubuntu0.7.10.1.dsc Size/MD5: 2313 4c877877e18115f259011c194314f97d http://security.ubuntu.com/ubuntu/poo...erbird_2.0.0.16+nobinonly.orig.tar.gz Size/MD5: 37848872 685a0603ea0cc9788607db3051585c95 Architecture independent packages: http://security.ubuntu.com/ubuntu/poo....16+nobinonly-0ubuntu0.7.10.1_all.deb Size/MD5: 60282 908487ed5ee6c65a17ce0438bafb8044 http://security.ubuntu.com/ubuntu/poo....16+nobinonly-0ubuntu0.7.10.1_all.deb Size/MD5: 60268 e1f113b9c24358563f1e5de4853dfb71 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 3776470 44b47a6d1fc30b2bf1e0967d2f7e6d5a http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 85456 e74490be6109f247a7588896cc908d06 http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 12422462 85edbea8c87ea6f36628c42fbb7111cd i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/poo...16+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 3764864 5720ca3309420ef466a476099f342c46 http://security.ubuntu.com/ubuntu/poo...16+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 80788 b82715a2517eba24387a3daa37e11c23 http://security.ubuntu.com/ubuntu/poo...16+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 10992746 ca5654c9c456ff81fbcd012bb5e6e2b9 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/t...16+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 3762270 cfc22bb7eceed86b5f4812b294c3d212 http://ports.ubuntu.com/pool/main/t/t...16+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 80478 8df12ac8e92b3363108d500d77ce8fb3 http://ports.ubuntu.com/pool/main/t/t...16+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 10831262 76e8a6df9fcd0af2217d9cceb175e209 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/poo...nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 3780296 181c69adfe5581593563474c5b9afa6a http://security.ubuntu.com/ubuntu/poo...nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 83848 47e0d48c82b856934f8203368ed9f2e1 http://security.ubuntu.com/ubuntu/poo...nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 12267962 1c1b0b2a16c4646ae058c33079a603b6 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.7.10.1_sparc.deb Size/MD5: 3762238 6a1b3ba170e21090519cb5fe968fc2c8 http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.7.10.1_sparc.deb Size/MD5: 80228 ee44b1f994a4dd68164c9ae8b9935e00 http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.7.10.1_sparc.deb Size/MD5: 11262024 b8269b24e6e8871cacfc805ebe3a8f7c -- Ubuntu 8.04 LTS -- Source archives: http://security.ubuntu.com/ubuntu/poo....16+nobinonly-0ubuntu0.8.04.1.diff.gz Size/MD5: 129220 6715132a5a51ec41e5caf7825ea5280b http://security.ubuntu.com/ubuntu/poo....0.0.16+nobinonly-0ubuntu0.8.04.1.dsc Size/MD5: 2311 b9bc842ede114d04e30859784ec0ac8f http://security.ubuntu.com/ubuntu/poo...erbird_2.0.0.16+nobinonly.orig.tar.gz Size/MD5: 37848872 685a0603ea0cc9788607db3051585c95 Architecture independent packages: http://security.ubuntu.com/ubuntu/poo....16+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 60418 5e9e8458e07caf7ac3f70ce458ac03a0 http://security.ubuntu.com/ubuntu/poo....16+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 60406 4bb82dac196e507e3af44810b7f4a7a0 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 3777100 bd2828d3036e93c1f628f535e80d86b9 http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 85294 dcd00b5cf7295d99414e62d3d2f28926 http://security.ubuntu.com/ubuntu/poo...6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 12403016 024d7b93d68505878888fc8bc2a92818 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/poo...16+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 3765088 9f2b5b5420228f12b603f31b447867f0 http://security.ubuntu.com/ubuntu/poo...16+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 80712 6c717ceb8fa8c7980d39f4c05f685411 http://security.ubuntu.com/ubuntu/poo...16+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 10976954 ff23083ceeb1c2b30962ccde4f5dd08b lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/t...16+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 3762860 52d5dd0faa096a1cfb389fc589c46bea http://ports.ubuntu.com/pool/main/t/t...16+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 80438 a8e539ae570a5c501ff16dcdf6863988 http://ports.ubuntu.com/pool/main/t/t...16+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 10821994 15e787453c8868288ba8e63cf4a1f8b1 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/t...nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 3780896 0a45ba96633b2b220895fea1592f55b1 http://ports.ubuntu.com/pool/main/t/t...nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 83694 03359691f2dee29979cc5ed508b9d9f8 http://ports.ubuntu.com/pool/main/t/t...nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 12250278 3a6ed4754c6e63758a743aabdcca6d47 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/t...6+nobinonly-0ubuntu0.8.04.1_sparc.deb Size/MD5: 3762700 7e9a0352360a8b33ab7a20acb733ee05 http://ports.ubuntu.com/pool/main/t/t...6+nobinonly-0ubuntu0.8.04.1_sparc.deb Size/MD5: 80146 c34186f45e9adaf8334cc507095e4610 http://ports.ubuntu.com/pool/main/t/t...6+nobinonly-0ubuntu0.8.04.1_sparc.deb Size/MD5: 11248406 50a69b5092528dd02fd51a92be7cd4c0 Original Advisory: https://lists.ubuntu.com/archives/ubuntu-security-announce/2008-July/000732.html Other References: SA30761: http://secunia.com/advisories/30761/ SA30911: http://secunia.com/advisories/30911/ SA30915: http://secunia.com/advisories/30915/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

310 Related Secunia Security Advisories, displaying 10

1. Ubuntu update for postfix

2. Ubuntu update for xine-lib

3. Ubuntu update for python

4. Ubuntu update for OpenLDAP

5. Ubuntu update for libxslt

6. Ubuntu update for firefox and xulrunner

7. Ubuntu update for ffmpeg

8. Ubuntu update for poppler

9. Ubuntu update for php

10. Ubuntu update for dnsmasq

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Opera Multiple Vulnerabilities

2.	Sun Solaris NFSv4 Client Kernel Module Denial of Service

3.	Avaya CMS Solaris namefs Kernel Module Privilege Escalation

4.	Banner Management "id" SQL Injection Vulnerability

5.	Avaya CMS Solaris "snoop" Multiple Vulnerabilities

6.	Active PHP Bookmarks "id" SQL Injection Vulnerability

7.	Avaya CMS Solaris "picld" Denial of Service

8.	Subdreamer Light Global Variables SQL Injection Vulnerability

9.	Ubuntu update for postfix

10.	WS_FTP Home / Professional Format String Vulnerability