Thunderbird 52.6.0 security update

[German]Mozilla developers have released version 52.6.0 of the Thunderbird email client. Thunderbird users should update promptly as the client is vulnerable to multiple vulnerabilities.

I just got the update request to Thunderbird to version 52.6.0 a day ago, see the following screen shot.

Thunderbird 52.6.0

According to the release notes the mail client is available for

• Window: Windows XP, Windows Server 2003 or later
• Mac: Mac OS X 10.9 or later
• Linux: GTK+ 3.4 or higher

Critical security vulnerabilities closed

This Advisory lists several critical vulnerabilities, that has been closed in Thunderbird Version 52.6.0:

Generally, however, these vulnerabilities cannot be exploited by email in the Thunderbird product because scripts are disabled when reading email. However, these vulnerabilities are potentially risky in browser or browser-like contexts.

Other fixes

The changelog enlists the following additional fixes.

  • Searching message bodies of messages in local folders, including filter and quick filter operations, not working reliably: Content not found in base64-encode message parts, non-ASCII text not found and false positives found.

  • Defective messages (without at least one expected header) not shown in IMAP folders but shown on mobile devices.

  • Calendar: Unintended task deletion if numlock is enable.

I updated my Thunderbird portable without issues.

This entry was posted in Update and tagged , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).