After the Firefox browser, the Thunderbird email program is also receiving its first security update in the new year. The Seamonkey team has also updated its web suite.

With the update to the new Thunderbird version 128.6.0esr, the Mozilla subsidiary MZLA Technologies has closed several security holes in its email program. The developers have also eliminated several bugs, but there are no new functions. The small Seamonkey team has also released an update to its web suite, which brings numerous small changes.

Update for Thunderbird

According to Mozilla's according security report, the developers in Thunderbird have eliminated several medium-risk holes. They have also closed some high-risk vulnerabilities inherited from Firefox that could be exploited to execute injected code. However, such attacks are not yet known for either Firefox or Thunderbird.

The long-term version 128 (ESR: Extended Service Release), which will receive security updates until September, is currently the only current version of the mail client intended for productive use. However, MZLA is working on another version, which, like Firefox, will receive new features every month, not just bug fixes. The version number corresponds to that of Firefox. But Thunderbird 134 is expressly only offered for testing purposes (bug detection) and not for everyday use.

Unlike Firefox, there is no Thunderbird version that is still maintained with security updates for the operating systems Windows 7/8.1 and macOS 10.12 to 10.14, which are no longer maintained with updates. Thunderbird 115.18.0esr from December 11, 2024 is officially the last version that still runs on these platforms.

More here.

Seamonkey 2.53.20

The Seamonkey web suite, which emerged from the Mozilla Suite that was discontinued at the end of 2005, is still maintained and modestly developed by a small team of dedicated developers in their free time. However, the step of converting the code of the current Mozilla programs Firefox and Thunderbird directly into a modern Seamonkey version currently seems to be several steps too big for the small group of volunteers.

Seamonkey 2.53.20 from January 7th is still based on the code base of Firefox ESR 60.8 and Thunderbird 60.8. The developers then port the code fixes from the Mozilla programmers to close security gaps. The according release notes state that security fixes and improvements from Firefox ESR 115.19 and Thunderbird 115.19 ESR (sic!) have been integrated.

Backup recommended

The developers recommend a full backup of your profile before upgrading from a version earlier than SeaMonkey 2.53.1, as this version of SeaMonkey makes changes to your profile that can't be reverted.

More here.