漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
Multiple security issues were discovered in Thunderbird.
漏洞危害
If a user were tricked in to opening a specially crafted website in a browsing-like context, an attacker could potentially exploit these to bypass same-origin restrictions, cause a denial of service via application crash, or execute arbitrary code. (CVE-2017-7826, CVE-2017-7828, CVE-2017-7830)
解决方案
Refer to Ubuntu advisory USN-3490-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3490-1: 16.04 (Xenial) on src (thunderbird)
USN-3490-1: 17.10 (artful) on src (thunderbird)
0daybank
文章评论