14 DAY TRIAL // Canonical published details about the Thunderbird vulnerabilities in its Ubuntu 14.04 LTS, Ubuntu 13.10, and Ubuntu 12.04 LTS operating systems, and upgraded the client to a new version.
The Thunderbird email client received a small patch and the Ubuntu repositories now also have the new version. It's not a big update, but users should upgrade nonetheless.
As usual, a lot of vulnerabilities have been patched. For example, “Abhishek Arya discovered multiple use-after-free and out-of-bounds read issues in Thunderbird. If a user had enabled scripting, an attacker could potentially exploit these to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking Thunderbird,” reads the notification.
For a more detailed description of the problems, you can see Canonical's security notification.
The flaws can be fixed if you upgrade your system(s) to the latest Thunderbird package specific to each distribution. To apply the patch, run the Update Manager application.
You can also upgrade your system from the terminal. Just enter these two commands (you will need to be root for this to work): sudo apt-get update sudo apt-get dist-upgrade In general, a standard system update will make all the necessary changes. A restart of the application will be necessary in order to implement them.