openSUSE 10 Security Update : MozillaThunderbird (MozillaThunderbird-2734)
High Nessus Plugin ID 27129
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update brings Mozilla Thunderbird to version 184.108.40.206. It contains stability fixes and some security fixes :
- MFSA 2007-06: CVE-2007-0008: SSL clients such as Firefox and Thunderbird can suffer a buffer overflow if a malicious server presents a certificate with a public key that is too small to encrypt the entire 'Master Secret'. Exploiting this overflow appears to be unreliable but possible if the SSLv2 protocol is enabled.
SolutionUpdate the affected MozillaThunderbird packages.