Note to readers

This publication does not currently meet the Government of Canada's Web Standards. The information remains valid.

Mozilla ThunderBird security update

Number: AV17-015
Date: 27 January 2017

Purpose

The purpose of this advisory is to raise awareness of multiple vulnerabilities in Thunderbird for which updates are now available.

Assessment

Mozilla released security updates to address 8 vulnerabilities in Thunderbird. The severity of these issues ranges from moderate to critical.

Version affected:
Thunderbird version prior to 45.7

CVE References: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5390, CVE-2017-5396

Suggested action

CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.

References

https://www.mozilla.org/en-US/security/advisories/mfsa2017-03/

Date modified: