USN-6750-1: Thunderbird vulnerabilities

Releases

• Ubuntu 23.10
• Ubuntu 22.04 LTS
• Ubuntu 20.04 LTS

Packages

• thunderbird - Mozilla Open Source mail and newsgroup client

Details

Multiple security issues were discovered in Thunderbird. If a user were
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass security restrictions, cross-site
tracing, or execute arbitrary code. (CVE-2024-2609, CVE-2024-3852,
CVE-2024-3864)

Bartek Nowotarski discovered that Thunderbird did not properly limit HTTP/2
CONTINUATION frames. An attacker could potentially exploit this issue to
cause a denial of service. (CVE-2024-3302)

Lukas Bernhard discovered that Thunderbird did not properly manage memory
during JIT optimisations, leading to an out-of-bounds read vulnerability.
An attacker could possibly use this issue to cause a denial of service or
expose sensitive information. (CVE-2024-3854)

Lukas Bernhard discovered that Thunderbird did not properly manage memory
when handling JIT created code during garbage collection. An attacker
could potentially exploit this issue to cause a denial of service, or
execute arbitrary code. (CVE-2024-3857)

Ronald Crane discovered that Thunderbird did not properly manage memory in
the OpenType sanitizer on 32-bit devices, leading to an out-of-bounds read
vulnerability. An attacker could possibly use this issue to cause a denial
of service or expose sensitive information. (CVE-2024-3859)

Ronald Crane discovered that Thunderbird did not properly manage memory
when handling an AlignedBuffer. An attacker could potentially exploit this
issue to cause denial of service, or execute arbitrary code. (CVE-2024-3861)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 23.10

• thunderbird - 1:115.10.1+build1-0ubuntu0.23.10.1

Ubuntu 22.04

• thunderbird - 1:115.10.1+build1-0ubuntu0.22.04.1

Ubuntu 20.04

• thunderbird - 1:115.10.1+build1-0ubuntu0.20.04.1

In general, a standard system update will make all the necessary changes.

References

• CVE-2024-3861
• CVE-2024-3859
• CVE-2024-2609
• CVE-2024-3864
• CVE-2024-3854
• CVE-2024-3302
• CVE-2024-3852
• CVE-2024-3857

Related notices

• USN-6747-1: firefox-locale-an, firefox-locale-hu, firefox-locale-mk, firefox-locale-or, firefox-locale-sv, firefox-locale-zh-hans, firefox-locale-zu, firefox-locale-it, firefox-locale-ia, firefox-locale-ta, firefox-mozsymbols, firefox-locale-ga, firefox, firefox-locale-pl, firefox-locale-nl, firefox-locale-ko, firefox-locale-ja, firefox-locale-hsb, firefox-locale-br, firefox-locale-ca, firefox-locale-es, firefox-locale-xh, firefox-locale-mn, firefox-locale-kk, firefox-locale-lt, firefox-locale-lv, firefox-locale-af, firefox-locale-cak, firefox-locale-gd, firefox-locale-ur, firefox-locale-mai, firefox-locale-ru, firefox-locale-oc, firefox-locale-hi, firefox-locale-da, firefox-locale-ast, firefox-locale-fr, firefox-locale-uz, firefox-locale-ne, firefox-locale-is, firefox-locale-fa, firefox-locale-ar, firefox-locale-my, firefox-locale-et, firefox-locale-th, firefox-locale-lg, firefox-locale-ku, firefox-locale-csb, firefox-locale-km, firefox-locale-hy, firefox-geckodriver, firefox-dev, firefox-locale-el, firefox-locale-zh-hant, firefox-locale-gu, firefox-locale-ml, firefox-locale-eu, firefox-locale-fy, firefox-locale-sl, firefox-locale-tg, firefox-locale-cy, firefox-locale-vi, firefox-locale-de, firefox-locale-pt, firefox-locale-ka, firefox-locale-kab, firefox-locale-si, firefox-locale-be, firefox-locale-nb, firefox-locale-te, firefox-locale-tr, firefox-locale-mr, firefox-locale-az, firefox-locale-sq, firefox-locale-id, firefox-locale-hr, firefox-locale-sr, firefox-locale-bn, firefox-locale-ro, firefox-locale-eo, firefox-locale-uk, firefox-locale-nn, firefox-locale-kn, firefox-locale-he, firefox-locale-cs, firefox-locale-en, firefox-locale-bg, firefox-locale-szl, firefox-locale-pa, firefox-locale-as, firefox-locale-bs, firefox-locale-fi, firefox-locale-gn, firefox-locale-sk, firefox-locale-nso, firefox-locale-ms, firefox-locale-gl, firefox-locale-sw
• USN-6703-1: firefox-locale-an, firefox-locale-hu, firefox-locale-mk, firefox-locale-or, firefox-locale-sv, firefox-locale-zh-hans, firefox-locale-zu, firefox-locale-it, firefox-locale-ia, firefox-locale-ta, firefox-mozsymbols, firefox-locale-ga, firefox, firefox-locale-pl, firefox-locale-nl, firefox-locale-ko, firefox-locale-ja, firefox-locale-hsb, firefox-locale-br, firefox-locale-ca, firefox-locale-es, firefox-locale-xh, firefox-locale-mn, firefox-locale-kk, firefox-locale-lt, firefox-locale-lv, firefox-locale-af, firefox-locale-cak, firefox-locale-gd, firefox-locale-ur, firefox-locale-mai, firefox-locale-ru, firefox-locale-oc, firefox-locale-hi, firefox-locale-da, firefox-locale-ast, firefox-locale-fr, firefox-locale-uz, firefox-locale-ne, firefox-locale-is, firefox-locale-fa, firefox-locale-ar, firefox-locale-my, firefox-locale-et, firefox-locale-th, firefox-locale-lg, firefox-locale-ku, firefox-locale-csb, firefox-locale-km, firefox-locale-hy, firefox-geckodriver, firefox-dev, firefox-locale-el, firefox-locale-zh-hant, firefox-locale-gu, firefox-locale-ml, firefox-locale-eu, firefox-locale-fy, firefox-locale-sl, firefox-locale-tg, firefox-locale-cy, firefox-locale-vi, firefox-locale-de, firefox-locale-pt, firefox-locale-ka, firefox-locale-kab, firefox-locale-si, firefox-locale-be, firefox-locale-nb, firefox-locale-te, firefox-locale-tr, firefox-locale-mr, firefox-locale-az, firefox-locale-sq, firefox-locale-id, firefox-locale-hr, firefox-locale-sr, firefox-locale-bn, firefox-locale-ro, firefox-locale-eo, firefox-locale-uk, firefox-locale-nn, firefox-locale-kn, firefox-locale-he, firefox-locale-cs, firefox-locale-en, firefox-locale-bg, firefox-locale-szl, firefox-locale-pa, firefox-locale-as, firefox-locale-bs, firefox-locale-fi, firefox-locale-gn, firefox-locale-sk, firefox-locale-nso, firefox-locale-ms, firefox-locale-gl, firefox-locale-sw