Mozilla fixes security vulnerabilities in Thunderbird 78.9.1

Mozilla fixes security vulnerabilities in Thunderbird 78.9.1

Hello everyone,

Mozilla has fixed few security vulnerabilities in Thunderbird 78.9.1. These vulnerabilities are 'Moderate' in severity. The details of the vulnerabilities fixed are as follows:

 

CVE ID

Vulnerability

Severity

CVE-2021-23991

An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key

Moderate

MOZ-2021-23992

A crafted OpenPGP key with an invalid user ID could be used to confuse the user

Moderate

CVE-2021- 23993

Inability to send encrypted OpenPGP email after importing a crafted OpenPGP key

Moderate

 

To install these updates using Patch Manager Plus, initiate a sync between the Central Patch Repository and the Patch Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

 

Patch ID

Bulletin ID

Patch Description

319077

TU-028

Mozilla Thunderbird (78.9.1)

319078

TU-028

Mozilla Thunderbird (x64) (78.9.1)

 

Cheers,

The ManageEngine Team