SECURINFOS.INFO - Bulletins de sécurité informatique, Alertes et Protection Référence Secunia : SA19941 Risque : Critique. Niveau 4 sur 5.  Impact : Contournement de la Sécurité, Cross Site Scripting, Spoofing, Exposition d'informations systèmes, Exposition de données sensibles, DoS, Accès au système Lieu : A distance Solutions : Correctif de l'éditeur OS : Debian GNU/Linux 3.1 Debian GNU/Linux instable alias sid Référence CVE : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2353 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4134 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0292 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0293 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0296 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0748 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0749 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0884 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1045 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1529 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1530 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1531 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1723 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1724 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1727 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1728 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1729 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1730 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1731 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1733 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1734 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1735 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1736 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1737 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1738 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1739 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1740 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1741 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1742 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1790 Description : Debian a réalisé une mise à jour pour mozilla-thunderbird. Cela corrige quelques vulnérabilités et une faiblesse, qui pourraient être exploitées par des personnes malintentionnées pour passer outre certaines restrictions de sécurité, conduire des attaques cross-site scripting et des attaques par phishing, potentiellement divulguer des informations sensibles, causer un Déni de Service (DoS), et potentiellement compromettre le système d'un utilisateur. Solutions : Appliquez les paquetages mis à jour. -- Debian GNU/Linux 3.1 alias sarge -- Archives sources : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8.dsc Taille/checksum MD5: 997 0327b5d56178e6045be49e9b78c60b76 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8.diff.gz Taille/checksum MD5: 329931 4dab3c7b21e40d055b95d74c35bedb58 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2.orig.tar.gz Taille/checksum MD5: 33288906 806175393a226670aa66060452d31df4 Architecture Alpha : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_alpha.deb Taille/checksum MD5: 12838168 bda025fdf3b077045cc21bab3a89e257 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_alpha.deb Taille/checksum MD5: 3276290 6a1a40cacc0bf38e951acc448ef29db0 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_alpha.deb Taille/checksum MD5: 150442 fca6c3f049cdf068da21a4edec3974e2 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_alpha.deb Taille/checksum MD5: 31886 f9f96e466c0bef3a0255c9eedded7bb3 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_alpha.deb Taille/checksum MD5: 87722 1280bc887809f52e77ea9f1b53739189 Architecture AMD64 : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_amd64.deb Taille/checksum MD5: 12246434 286f415370cea50e1db9e3cd42d2e4c2 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_amd64.deb Taille/checksum MD5: 3277348 757202c4103104bbf82ce17ff93de6ad http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_amd64.deb Taille/checksum MD5: 149416 9f727c74782a27cbc31ba9c3cc05e365 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_amd64.deb Taille/checksum MD5: 31884 451a6095a65939e5c5fa01cbcce3f399 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_amd64.deb Taille/checksum MD5: 87560 1b4e74ca5a206c0028c7385a37c9d72c Architecture ARM : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_arm.deb Taille/checksum MD5: 10336960 226d96bb928a8a5f1169e8e8f22cb94c http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_arm.deb Taille/checksum MD5: 3268838 d6df5cef8606a925ab2e0f6d4759e2bf http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_arm.deb Taille/checksum MD5: 141526 fb78403f901f5a3551864aae8677855b http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_arm.deb Taille/checksum MD5: 31904 5e442a325862851a1ddcdf098f602488 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_arm.deb Taille/checksum MD5: 79556 d93846c81f778cdc8089f594edcdee29 Architecture Intel IA-32 : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_i386.deb Taille/checksum MD5: 11560136 b0e311d92acdc0c7e8b14b67bbf87a63 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_i386.deb Taille/checksum MD5: 3503954 c76b1c2003373abb489d55fbc1cf8e9b http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_i386.deb Taille/checksum MD5: 145070 42bfc6d7e45c85a328c974e0dbf33a2d http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_i386.deb Taille/checksum MD5: 31882 6699d265d72be8d47e29607c19233ea5 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_i386.deb Taille/checksum MD5: 86338 f71fa003bb6cbd5e073791c02215f55f Architecture Intel IA-64 : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_ia64.deb Taille/checksum MD5: 14613050 4ebeb5db1064173aa1c0f4f63debe1a4 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_ia64.deb Taille/checksum MD5: 3289384 28b78ccc68aa644a6e7ccfe1da7ed6c2 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_ia64.deb Taille/checksum MD5: 153794 3d08e3ca8da7aab4d18325018f089cf1 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_ia64.deb Taille/checksum MD5: 31886 5a51526eac30e965016709c84e5789cc http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_ia64.deb Taille/checksum MD5: 105440 bbf8174130d63df6a84a181e6f8f77d4 Architecture HP Precision : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_hppa.deb Taille/checksum MD5: 13558548 62fa53905105857b25039b360f5ed165 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_hppa.deb Taille/checksum MD5: 3282030 5c8f3bc938f0d9ee87588cbfb2cf79fb http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_hppa.deb Taille/checksum MD5: 151644 0a2894a49adc27f41dbc34ae850998cb http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_hppa.deb Taille/checksum MD5: 31886 06078286e5baa9703eecac8678c6259a http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_hppa.deb Taille/checksum MD5: 95646 82233c3c9d614801a19d6e07031a7e0a Architecture Motorola 680x0 : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_m68k.deb Taille/checksum MD5: 10782388 f59c564e46e44dcbe7e045635a500253 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_m68k.deb Taille/checksum MD5: 3267578 646924bd2241dd7c4c61be86ed52f66e http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_m68k.deb Taille/checksum MD5: 143414 2ceb5e38365ba6488c0e0bbda2c16de2 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_m68k.deb Taille/checksum MD5: 31924 c79717feb3366b475a181fb94666a308 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_m68k.deb Taille/checksum MD5: 80832 52d33e4efd5d53f0d88a45b560348fc5 Architecture Big endian MIPS : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_mips.deb Taille/checksum MD5: 11940252 693556d436d10d0dfc0df428967bc054 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_mips.deb Taille/checksum MD5: 3275664 eeaff88720b28b8624e4e2683deb8156 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_mips.deb Taille/checksum MD5: 146354 84e79291c3a085c9315140b01d00620c http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_mips.deb Taille/checksum MD5: 31894 ca7b49008df0913a853614cc1e1f58d0 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_mips.deb Taille/checksum MD5: 83106 297bef79199e69cd7eed64aba0472de1 Architecture Little endian MIPS : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_mipsel.deb Taille/checksum MD5: 11801596 bbf40fdabbe94838a63d689263b13dfc http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_mipsel.deb Taille/checksum MD5: 3276522 56b8c3fbf4dfe10c11219f722dee243f http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_mipsel.deb Taille/checksum MD5: 145920 55354ff3950db25f7a43d7dd643bdc0c http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_mipsel.deb Taille/checksum MD5: 31902 7792444ecceba497bbea95aa79bfd541 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_mipsel.deb Taille/checksum MD5: 82932 a618ae0dc3fa628c9b942bc19a9e041b Architecture PowerPC : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_powerpc.deb Taille/checksum MD5: 10900888 5a4bfd9854a2402b57a0f7fbeebc69e4 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_powerpc.deb Taille/checksum MD5: 3266966 2f9dfc8d97dfbc136d3d4a409d86080c http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_powerpc.deb Taille/checksum MD5: 143398 f1ed2509f11198cc79350ec34a8d169f http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_powerpc.deb Taille/checksum MD5: 31892 555cd49ac0135b6cca34e346b1730916 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_powerpc.deb Taille/checksum MD5: 79634 55a53bdc25f21625e6a5bf7409a79a60 Architecture IBM S/390 : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_s390.deb Taille/checksum MD5: 12694418 cb417029c1f1403fd85ad62696ba9a6a http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_s390.deb Taille/checksum MD5: 3277050 c9e56aa35a7ee4b3efb70aac8d1fb2b4 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_s390.deb Taille/checksum MD5: 149736 ddb248089886f5377167866e098276ee http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_s390.deb Taille/checksum MD5: 31894 757eabc20b4c623116efbfa6514f8674 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_s390.deb Taille/checksum MD5: 87580 a78dce29c87b7e57f30eb4ab566474b2 Architecture Sun Sparc : http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8_sparc.deb Taille/checksum MD5: 11164666 54d3682c2946c7a1a1a2f4d5632c5a9e http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8_sparc.deb Taille/checksum MD5: 3271818 eec83ea3565d2a6137a077a0ac7bd0bf http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8_sparc.deb Taille/checksum MD5: 143070 513f4ab787b0d0b680b562cb6e63fa18 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8_sparc.deb Taille/checksum MD5: 31898 92244cdf10019877a52c4be13ec1fcdf http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8_sparc.deb Taille/checksum MD5: 81430 041e86b0c9ea28c4f28973b9e1be627d -- Debian GNU/Linux instable alias sid -- Fixé en version 1.5.0.2-1 of thunderbird. Référence : http://www.us.debian.org/security/2006/dsa-1051 Autres références : SA17934: http://secunia.com/advisories/17934/ SA18703: http://secunia.com/advisories/18703/ SA18704: http://secunia.com/advisories/18704/ Veuillez noter : L'information, sur laquelle est basé ce bulletin Secunia, provient d'un tiers sans mention du contraire. Les noms, marques et enseignes cités sur ce site sont la propriété de leurs déposants respectifs. |
SECURINFOS