[nzlug] [Fwd: FW: CCIP EXTERNAL ADVISORY REDISTRIBUTION ~ Ubuntu
update for mozilla-thunderbird unclassified]
Mark Foster
blakjak at blakjak.net
Thu Jul 27 09:16:58 NZST 2006
I know it isn't really the place, but I just thought i'd acknowledge the
fact that CCIP (Centre for Critical Infrastructure Protection; a
department of the NZ Government Communications Security Bureau) are
picking up on this sort of thing in the Open Source environment as well as
the usual commercial suspects. Kudos.
Beyond that, people running Ubuntu probably need to note the content.
Mark.
PS: I even screwed with the inline mail addresses, out of respect.
-----Original Message-----
From: CCIP ALERTS [mailto:alerts at ccip.govt.newzealand]
Sent: Thursday, 27 July 2006 8:29 a.m.
Subject: CCIP EXTERNAL ADVISORY REDISTRIBUTION ~ Ubuntu update for
mozilla-thunderbird
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
CCIP EXTERNAL ADVISORY REDISTRIBUTION
==================================Ubuntu update for mozilla-thunderbird -
-------------------------------------
DESCRIPTION:
Ubuntu has issued an update for mozilla-thunderbird. This fixes some
vulnerabilities, which can be exploited by malicious people to bypass
certain security restrictions, conduct cross-site scripting and HTTP
response smuggling attacks, and potentially compromise a user's system.
SOLUTION:
Apply updated packages.
For more information on this alert, please refer to the following: SECUNIA
ADVISORY:
http://secunia.com/advisories/21210/
ORIGINAL ADVISORY:
http://www.ubuntu.com/usn/usn-297-3
==================================================================CCIP
does not accept any responsibility for errors or omissions. CCIP will not
be liable for any loss or damage howsoever caused, arising from or in
connection with the use of information contained in this report.
Reference in this report in any manner to any commercial product,
process or service does not constitute or imply its endorsement or
recommendation by CCIP. Views and opinions expressed herein may not be
used for advertising or product endorsement purposes.
Please refer to the CCIP web site (www.ccip.govt.nz) for a complete list
of recent alerts and advisories.
Issued by:
Watch Centre
Centre for Critical Infrastructure Protection P O Box 12-209,
Wellington.
Internet: www.ccip.govt.nz
E-mail: info at ccip.govt.newzealand
Tel: +64 4 498 7654
Fax: +64 4 498 7655
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.1 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFEx9CJ29Rs3jdGtI8RAu3PAJ0Sx0rDZcryisgg+ruJQ2V5MsQUSwCgkwuS
1NoqY4CFnnQeGpPUTBwHo7k=LlB9
-----END PGP SIGNATURE-----
---
This e-mail contains official New Zealand Government information, which is
intended for the use of addressees only. If you have received this e-mail
in error, please notify the sender immediately and delete.
You should not further disseminate, distribute or copy this e-mail in any
way.
---
More information about the NZLUG
mailing list