Debian-LTS alert DLA-572-1 (icedove)


From:
    	       Guido Günther <agx@sigxcpu.org> 
To:
    	       debian-lts-announce@lists.debian.org 
Subject:
    	       [SECURITY] [DLA 572-1] icedove security update 
Date:
    	       Sat, 30 Jul 2016 14:52:53 +0200
Message-ID:
    	       <20160730125253.GA18203@bogon.m.sigxcpu.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : icedove
Version        : 1:45.2.0-2~deb7u1
CVE ID         : CVE-2016-2818

Multiple security issues have been found in Icedove, Debian's version of
the Mozilla Thunderbird mail client: Multiple memory safety errors may
lead to the execution of arbitrary code or denial of service.

For Debian 7 "Wheezy", these problems have been fixed in version
1:45.2.0-2~deb7u1.

We recommend that you upgrade your icedove packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIcBAEBCAAGBQJXnKMiAAoJEAe4t7DqmBILtAEP/jZm68fXK/CrkU12aONeEFw7
je+IcmoqegdTmgKARJ8ngDfwLF63Irol5kFVn8CFaia7y6aQtpVlgvSlZMCXAO/e
hrbGZ+qDELb8ck0RHXwb68CxKoD6iI4BNHwNFJJXV8YuaRXWO3oqwg6ZUS0pwN+/
g+neybKf0m+m9jv5+pnuIDwdFEvC+mAdudGILyagtwwOyyb88xLiAMxSDGuOcpDE
kBouXzJrf8vUuAulmzGzD2v7if2dmRNT+ftxj/owddv6n0HChVt3AhnuLGxBq/ou
j83enEoknzSFNbGLPKrddIZDfWciKe5mnQ/S7ZAohsWohMA9pygvEGWiOh+LKLDv
3lhrytjOuojamqxvYPa6ryYvz5aibAPI1MiHkp2Az9sZQUcFHsl3fz4o+CPED1qW
aF5He03HHNTITgYSQhfBgpeZ6qaDljlOoLj+g18Fx3dH+fxVtHwa+so8p8E2WPFR
iKh0xNX7c9yJ2uH2kW1LxV2nCZrIsqb3VOaSMcSuhpEH9o4fJEruBa7WHc5gjbyx
QvEikUMPBp4L9yWbreJ7WgzEug2wCJGDg+22NGLJ1zFIEBLOGQ6iKD9H4y3ockF/
3FSzL/940CbEl1H4CaNxFnTFosrVhyl5hwy/a+5e9vKHPGXiLixfX8llLd/6NdbA
9DfL50KKWlKTtU0FjHJf
=kWIZ
-----END PGP SIGNATURE-----

From:		Guido Günther <agx@sigxcpu.org>
To:		debian-lts-announce@lists.debian.org
Subject:		[SECURITY] [DLA 572-1] icedove security update
Date:		Sat, 30 Jul 2016 14:52:53 +0200
Message-ID:		<20160730125253.GA18203@bogon.m.sigxcpu.org>