Fedora Core 5 : thunderbird-1.5.0.10-1.fc5 (2007-309)

high Nessus Plugin ID 24769

Synopsis

The remote Fedora Core host is missing a security update.

Description

- Thu Mar 1 2007 Martin Stransky <stransky at redhat.com> 1.5.0.10-1

- Update to 1.5.0.10

- Tue Dec 19 2006 Matthias Clasen <mclasen at redhat.com> 1.5.0.9-2

- Add a Requires: launchmail (#219884)

- Tue Dec 19 2006 Christopher Aillon <caillon at redhat.com> 1.5.0.9-1

- Update to 1.5.0.9

- Take firefox's pango fixes

- Don't offer to import...nothing.

- Tue Nov 7 2006 Christopher Aillon <caillon at redhat.com> 1.5.0.8-1

- Update to 1.5.0.8

- Allow choosing of download directory

- Take the user to the correct directory from the Download Manager.

- Patch to add support for printing via pango from Behdad.

- Sun Oct 8 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.7-4

- Default to use of system colors

- Wed Oct 4 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.7-3

- Bring the invisible character to parity with GTK+

- Wed Sep 27 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.7-2

- Fix crash when changing gtk key theme

- Prevent UI freezes while changing GNOME theme

- Remove verbiage about pango; no longer required by upstream.

- Wed Sep 13 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.7-1

- Update to 1.5.0.7

- Thu Sep 7 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.5-8

- Shuffle order of the install phase around

- Thu Sep 7 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.5-7

- Let there be art for Alt+Tab again

- s/tbdir/mozappdir/g

- Wed Sep 6 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.5-6

- Fix for cursor position in editor widgets by tagoh and behdad (#198759)

- Tue Sep 5 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.5-5

- Update nopangoxft.patch

- Fix rendering of MathML thanks to Behdad Esfahbod.

- Update start page text to reflect the MathML fixes.

- Enable pango by default on all locales

- Build using -rpath

- Re-enable GCC visibility

- Thu Aug 3 2006 Kai Engert <kengert at redhat.com> - 1.5.0.5-4

- Fix a build failure in mailnews mime code.

- Tue Aug 1 2006 Matthias Clasen <mclasen at redhat.com>
- 1.5.0.5-3

- Rebuild

- Thu Jul 27 2006 Christopher Aillon <caillon at redhat.com> - 1.5.0.5-2

- Update to 1.5.0.5

- Wed Jul 12 2006 Jesse Keating <jkeating at redhat.com>
- 1.5.0.4-2.1

- rebuild

- Mon Jun 12 2006 Kai Engert <kengert at redhat.com> - 1.5.0.4-2

- Update to 1.5.0.4

- Fix desktop-file-utils requires

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected thunderbird and / or thunderbird-debuginfo packages.

See Also

http://www.nessus.org/u?8e20333a

Plugin Details

Severity: High

ID: 24769

File Name: fedora_2007-309.nasl

Version: 1.15

Type: local

Agent: unix

Published: 3/6/2007

Updated: 1/11/2021

Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: High

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:thunderbird, p-cpe:/a:fedoraproject:fedora:thunderbird-debuginfo, cpe:/o:fedoraproject:fedora_core:5

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 3/5/2007

Vulnerability Publication Date: 2/26/2007

Reference Information

CVE: CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0776, CVE-2007-0777, CVE-2007-1282, CVE-2007-2867, CVE-2007-2868

CWE: 119, 189, 94

FEDORA: 2007-309