[funsec] Time to update Mozilla Thunderbird too

Juha-Matti Laurio juha-matti.laurio at netti.fi
Sat Sep 27 17:06:58 CDT 2008

In case you missed this:

Heap overflow when canceling newsgroup message

"Georgi Guninski reported a buffer overflow in the handling of cancelled newsgroup messages. The error was caused by too small a heap buffer being allocated to store message header information. This buffer could be overrun by an attacker using a specially crafted message which could crash the mail reader and potentially be used to run arbitrary code on the victim's computer."

Update to Thunderbird version at


More information about the funsec mailing list