Advisories:rPSA-2008-0093

From rPath Wiki

rPath Security Advisory 2008-0093-1

Published: 2008-02-29

Products

• rPath Linux 1

Rating

Major

Exposure Level Classification

Indirect User Deterministic Unauthorized Access

Updated Versions

• thunderbird=conary.rpath.com@rpl:1/2.0.0.12-0.1-1

rPath Issue Tracking System

• RPL-1995

References

• CVE-2007-5959
• CVE-2007-5960
• CVE-2007-5947
• CVE-2008-0412
• CVE-2008-0415
• CVE-2008-0413
• CVE-2008-0418
• CVE-2008-0419
• CVE-2008-0591
• http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird2.0.0.12

Description

Previous versions of the thunderbird package are vulnerable to several

types of attacks, some of which are understood to allow compromised or

malicious sites to run arbitrary code as the user running thunderbird.

Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html