DSA 2025-1: New icedove packages fix several vulnerabilities  

Posted by Daniela Mehler

"-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-2025-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 31, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package : icedove
Vulnerability : several vulnerabilities
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2009-2408 CVE-2009-2404 CVE-2009-2463
CVE-2009-3072 CVE-2009-3075 CVE-2010-0163

Several remote vulnerabilities have been discovered in the Icedove
mail client, an unbranded version of the Thunderbird mail client. The
Common Vulnerabilities and Exposures project identifies the following
problems:

CVE-2009-2408

Dan Kaminsky and Moxie Marlinspike discovered that icedove does not
properly handle a '

Hawkwind and Hadouken! to play GuilFestDSA 2021-1: New spamass-milter packages fix remote command execution

This entry was posted on 4:09 PM .