Multiple vulnerabilities have been found in Mozilla Thunderbird and Firefox, the worst of which could lead to the execution of arbitrary code.
Package | mail-client/thunderbird on all architectures |
---|---|
Affected versions | < 60.6.1 |
Unaffected versions | >= 60.6.1 |
Package | mail-client/thunderbird-bin on all architectures |
---|---|
Affected versions | < 60.6.1 |
Unaffected versions | >= 60.6.1 |
Package | www-client/firefox on all architectures |
---|---|
Affected versions | < 60.6.1 |
Unaffected versions | >= 60.6.1 |
Package | www-client/firefox-bin on all architectures |
---|---|
Affected versions | < 60.6.1 |
Unaffected versions | >= 60.6.1 |
Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Mozilla Firefox is a popular open-source web browser from the Mozilla Project.
Multiple vulnerabilities have been discovered in Mozilla Thunderbird and Firefox. Please review the referenced Mozilla Foundation Security Advisories and CVE identifiers below for details.
Please review the referenced Mozilla Foundation Security Advisories and CVE identifiers below for details.
There is no known workaround at this time.
All Thunderbird users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-60.6.1"
All Thunderbird bin users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-bin-60.6.1"
All Firefox users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-client/firefox-60.6.1"
All Firefox bin users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-60.6.1"