14 DAY TRIAL // Canonical published details about the Thunderbird vulnerabilities in its Ubuntu 14.04 LTS and Ubuntu 12.04 LTS operating systems, and a new version is now available for users.
The Thunderbird email client received a hefty update and now the release has been pushed in the repositories. We described the new features in Thunderbird 31 in the original report, but the developers have also fixed a number of vulnerabilities.
For example, “Christian Holler, David Keeler and Byron Campen discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird,” reads the announcement.
For a more detailed description of the problems, you can see Canonical's security notification.
The flaws can be fixed if you upgrade your system(s) to the latest Thunderbird package specific to each distribution. To apply the patch, run the Update Manager application.
You can also upgrade your system from the terminal. Just enter these two commands (you will need to be root for this to work):
sudo apt-get dist-upgrade
You can also download Mozilla Thunderbird 31 right now from Softpedia.