GLSA-200701-03 : Mozilla Thunderbird: Multiple vulnerabilities
High Nessus Plugin ID 23992
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200701-03 (Mozilla Thunderbird: Multiple vulnerabilities)
Georgi Guninski and David Bienvenu discovered buffer overflows in the processing of long 'Content-Type:' and long non-ASCII MIME headers.
There are no known workarounds for all the issues at this time.
SolutionAll Mozilla Thunderbird users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=mail-client/mozilla-thunderbird-22.214.171.124' All Mozilla Thunderbird binary release users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=mail-client/mozilla-thunderbird-bin-126.96.36.199'