Alert GCSA-23111 - Aggiornamento di sicurezza per Mozilla Thunderbird

Alert GCSA-23111 - Aggiornamento di sicurezza per Mozilla Thunderbird

******************************************************************

Alert ID: GCSA-23111
Data: 5 Settembre 2023
Titolo: Aggiornamento di sicurezza per Mozilla Thunderbird

******************************************************************

:: Descrizione del problema

Mozilla ha rilasciato una nuova versione di Thunderbird,
con la quale risolve vulnerabilita' multiple.

Maggiori informazioni sono disponibili alla sezione "Riferimenti".

:: Software interessato

Thunderbird versioni precedenti alla 115.2

::Impatto

Remote Code Execution
Security Restriction Bypass
Denial of Service
Spoofing
Information Disclosure

:: Soluzioni

Aggiornare Thunderbird alla versione piu' recente:

https://support.mozilla.org/it/kb/aggiornamento-di-thunderbird
https://www.mozilla.org/it/thunderbird/
https://www.thunderbird.net/en-US/thunderbird/all/

:: Riferimenti

Mozilla Foundation Security Advisory
https://www.mozilla.org/en-US/security/advisories/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-38/

Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4051
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4053
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4573
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4574
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4575
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4576
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4577
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4578
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4580
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4581
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4582
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4583
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4584
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4585

GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----

iD8DBQFk9uYcwZxMk2USYEIRCF+0AJ0Uk7xR8jumrTuCh89Z4zT+pGK6XwCdFZ2O
udzwTTpgjPRgeIHQcFhg2nI=
=Hf7e
-----END PGP SIGNATURE-----