Thunderbird 102.1.0 fixes 4 safety points within the e-mail consumer

Thunderbird 102.1.0 is now accessible. The brand new secure model of the e-mail consumer patches 4 safety points within the utility and makes some minor modifications subsequent to that.

picture credit score: Thunderbird

Thunderbird 102.1.0 is already accessible. Current Thunderbird installations will set up the replace mechanically, offered that model 102.x is put in already. The Thunderbird 102.x launch is a contemporary one and updates from the earlier essential model, Thunderbird 92.x, will not be but supported.

Thunderbird customers could velocity up the set up by deciding on Assist > About Thunderbird from the menu. If the menu shouldn’t be displayed, press the Alt-key on the keyboard to show it.

The window that opens shows the present model and a verify for updates is run. Thunderbird 92.x customers who wish to improve to model 102 have to obtain the installer from the official mission web site as a substitute to take action.

Thunderbird 102.1.0: safety replace

thunderbird 102.1.0

The official safety advisories web page lists 4 safety vulnerabilities that have an effect on earlier variations of the Thunderbird e-mail consumer. The best severity ranking is excessive, the second-highest after crucial.

Thunderbird shares its code base with Firefox, and a number of other of the vulnerabilities don’t have an effect on Thunderbird as a lot as they do Firefox.

Typically, these flaws can’t be exploited by way of e-mail within the Thunderbird product as a result of scripting is disabled when studying mail, however are doubtlessly dangers in browser or browser-like contexts.

Right here is the checklist of vulnerabilities:

  • CVE-2022-2505: Reminiscence security bugs fastened in Thunderbird 102.1 (HIGH)
  • CVE-2022-36314: Opening native .lnk information may trigger surprising community masses
  • CVE-2022-36318: Listing indexes for bundled sources mirrored URL parameters
  • CVE-2022-36319: Mouse Place spoofing with CSS transforms
See also  Microsoft Edge 106 is out with safety fixes

Not one of the safety vulnerabilities are exploited actively.

Thunderbird 102.1.0 makes the next non-security modifications:

  • POP message downloads weren’t displayed by the Exercise Supervisor.
  • Mail Folder Properties dialog show concern that minimize off content material.
  • Information messages that expired didn’t present an error message.
  • The column picker of the Calendar closed prematurely “after deciding on/deselecting a single column”.
  • Varied unspecified person interface enhancements.

Thunderbird customers could wish to improve the e-mail consumer as early as attainable to deal with the safety points.

Now You: do you run Thunderbird? In that case, which model?

Commercial