MDVSA-2009:217-1 -- Mandriva mozilla-thunderbirdID: oval:org.secpod.oval:def:300558 | Date: (C)2012-01-07 (M)2024-02-29 |
Class: PATCH | Family: unix |
A number of security vulnerabilities have been discovered in Mozilla Thunderbird: Security issues in thunderbird could lead to a man-in-the-middle attack via a spoofed X.509 certificate . A vulnerability was found in xmltok_impl.c that with specially crafted XML could be exploited and lead to a denial of service attack. Related to CVE-2009-2625. This update provides the latest version of Thunderbird which are not vulnerable to these issues. Update: The mozilla-thunderbird-moztraybiff packages had the wrong release which prevented it to be upgraded . The new packages addresses this problem.
Platform: |
Mandriva Linux 2009.1 |
Product: |
mozilla-thunderbird |