Thunderbird update fixes dangerous vulnerabilities

Mozilla updates the popular email program with the new version 60.7.2.

Last week Mozilla released two updates for its web browser Firefox and fixed two vulnerabilities. The e-mail client Thunderbird was also affected by these vulnerabilities. Now a security update for Thunderbird is available for download.

The update to version 60.7.2 patches the critical vulnerability CVE-2019-11707, which could use JavaScript code to provoke a memory error and potentially cause a system crash. The update also fixes the critical CVE-2019-11708 vulnerability. It allowed attackers to break out of a sandbox environment and allow execution of code on the system.

Thunderbird users should install the to version 60.7.2. You can find the installed version in Settings -> Help -> About Mozilla Thunderbird, if you have not received the update via the automatic update feature.

Users can download the new version from UpdateStar or from the official website.

Thunderbird on UpdateStar | Download