Accepted mozilla-thunderbird 1.5.0.9-0ubuntu1 (source)

Kees Cook kees at ubuntu.com
Tue Jan 2 22:45:11 GMT 2007 

Accepted:
 OK: mozilla-thunderbird_1.5.0.9-0ubuntu1.dsc
     -> Component: main Section: mail
 OK: mozilla-thunderbird_1.5.0.9.orig.tar.gz
 OK: mozilla-thunderbird_1.5.0.9-0ubuntu1.diff.gz

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue,  2 Jan 2007 12:59:39 -0800
Source: mozilla-thunderbird
Binary: mozilla-thunderbird-dev mozilla-thunderbird-inspector mozilla-thunderbird mozilla-thunderbird-typeaheadfind
Architecture: source
Version: 1.5.0.9-0ubuntu1
Distribution: feisty
Urgency: low
Maintainer: Alexander Sack <asac at debian.org>
Changed-By: Kees Cook <kees at ubuntu.com>
Description: 
 mozilla-thunderbird - Mozilla Thunderbird standalone mail client
 mozilla-thunderbird-dev - mozilla thunderbird development files
 mozilla-thunderbird-inspector - mozilla thunderbird dom inspector extension
 mozilla-thunderbird-typeaheadfind - mozilla thunderbird typeaheadfind extension
Changes: 
 mozilla-thunderbird (1.5.0.9-0ubuntu1) feisty; urgency=low
 .
   * New upstream security update:
     - CVE-2006-6505, MFSA 2006-74: Mail header processing heap overflows.
     - CVE-2006-6503, MFSA 2006-72: XSS by setting img.src to javascript: URI.
     - CVE-2006-6502, MFSA 2006-71: LiveConnect crash finalizing JS objects.
     - CVE-2006-6501, MFSA 2006-70: Privilege escallation using watch point.
     - CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, MFSA 2006-68: Crashes
       with evidence of memory corruption.
   * Upstream security updates from 1.5.0.8:
     - CVE-2006-5463, MFSA 2006-67: Running Script can be recompiled.
     - CVE-2006-5462, MFSA 2006-66: RSA signature forgery (variant).
     - CVE-2006-5464, CVE-2006-5747, CVE-2006-5748, MFSA 2006-65: Crashes with
       evidence of memory corruption.
Files: 
 96af1d8225047f4d07b4d93015eec4ca 950 mail optional mozilla-thunderbird_1.5.0.9-0ubuntu1.dsc
 511100300f92ef07dc733c5f0a8aadf6 35610990 mail optional mozilla-thunderbird_1.5.0.9.orig.tar.gz
 d99b2b2c4ce7858d7ee99cff8b559097 455132 mail optional mozilla-thunderbird_1.5.0.9-0ubuntu1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFmtmiH/9LqRcGPm0RAm3DAJ4v3SdEsBWNRtTL7kP94jCEWqTWJQCeJhMf
FPJql1qwCAeK2LzM/6cdS/Q=
=yQ2E
-----END PGP SIGNATURE-----

More information about the feisty-changes mailing list