CVE-2016-5290 Ubuntu Security Notification for Thunderbird Vulnerabilities (USN-3141-1)

Multiple memory safety issues in Thunderbird.

A same-origin policy bypass was discovered with local HTML files in some circumstances.

A heap buffer-overflow was discovered in Cairo when processing SVG content.

An error was discovered in argument length checking in Javascript.

A buffer overflow was discovered in nsScriptLoadHandler.

A use-after-free was discovered in SVG animations.

If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5290)

An attacker could potentially exploit this to obtain sensitive information. (CVE-2016-5291)

If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5296)

If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5297)

If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9066)

If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9079)

N/A

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3141-1: 12.04 (Precise) on src (thunderbird)

USN-3141-1: 14.04 (Kylin) on src (thunderbird)

USN-3141-1: 16.04 (Xenial) on src (thunderbird)

USN-3141-1: 16.10 (Yakkety) on src (thunderbird)