[Secure-testing-team] Bug#682403: icedove: New upstream (14)/3 missing (security related) updates

markus markus-no-spam at gmx.de
Sun Jul 22 13:14:41 UTC 2012 

Package: icedove
Version: 11.0-1
Severity: grave
Tags: security
Justification: user security hole

Dear Maintainer,

there are 3 missing updates in experimental. The current experimental version
in debian is 11.0. The current thunderbird version is 14.0.
Mozilla published a list of known vulnerabilties (this is why I choose grave, I
hope this is ok):
https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
I think a lot of users use experimental since it's the only non-ESR version.
It would be awesome if you could publish a new version.

Thank you.



-- System Information:
Debian Release: wheezy/sid
  APT prefers testing
  APT policy: (700, 'testing'), (650, 'unstable'), (600, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 3.2.0-3-686-pae (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages icedove depends on:
ii  debianutils               4.3.2
ii  fontconfig                2.9.0-6
ii  libasound2                1.0.25-3
ii  libatk1.0-0               2.4.0-2
ii  libc6                     2.13-33
ii  libcairo2                 1.12.2-2
ii  libdbus-1-3               1.6.0-1
ii  libdbus-glib-1-2          0.100-1
ii  libevent-2.0-5            2.0.19-stable-3
ii  libffi5                   3.0.10-3
ii  libfontconfig1            2.9.0-6
ii  libfreetype6              2.4.9-1
ii  libgcc1                   1:4.7.1-2
ii  libgdk-pixbuf2.0-0        2.26.1-1
ii  libglib2.0-0              2.32.3-1
ii  libgtk2.0-0               2.24.10-1
ii  libhunspell-1.3-0         1.3.2-4
ii  libjpeg8                  8d-1
ii  libnspr4-0d               2:4.9.1-1
ii  libnss3-1d                2:3.13.5-1
ii  libpango1.0-0             1.30.0-1
ii  libpixman-1-0             0.26.0-3
ii  libsqlite3-0              3.7.13-1
ii  libstartup-notification0  0.12-1
ii  libstdc++6                4.7.1-2
ii  libvpx1                   1.1.0-1
ii  libx11-6                  2:1.5.0-1
ii  libxext6                  2:1.3.1-2
ii  libxrender1               1:0.9.7-1
ii  libxt6                    1:1.1.3-1
ii  psmisc                    22.19-1
ii  zlib1g                    1:1.2.7.dfsg-13

Versions of packages icedove recommends:
ii  myspell-en-us [myspell-dictionary]  1:3.3.0-3

Versions of packages icedove suggests:
ii  gconf-service     3.2.5-1
ii  libgconf-2-4      3.2.5-1
ii  libgssapi-krb5-2  1.10.1+dfsg-1
ii  libnotify4        0.7.5-1
ii  ttf-lyx           2.0.3-3

-- no debconf information

More information about the Secure-testing-team mailing list