AllInfo

Thunderbird 102.6.0: Mozilla fixes issues and closes security holes

Mozilla fixes numerous problems in its free email client Thunderbird and also closes a total of seven security vulnerabilities with the update to the latest version 102.6.0, four of which have a risk rating of “High”. were. Corrections have been made to OpenPGP and the synchronization of vCards.

Product care for Thunderbird

With the latest version, the Mozilla Foundation fixes seven known issues affecting OpenPGP, a data format for encrypted and digitally signed data, the digital business cards (“vCards”), the RSS feed, and the user interface and experience (“UI/UX”). ).

The official release notes of Thunderbird 102.6.0 for Windows 7, Windows 10 and Windows 11 as well as macOS and Linux read as follows:

< figure class="text-width">Optimizations and bug fixes

  • Import of OpenPGP secret keys failed if a public key with a public subkey already existed.

    • < li>Message index files were erroneously deleted when too many folders were open.

  • Thunderbird sometimes incorrectly formatted synced vCards.
  • Recurring events stopped showing after a certain number of repetitions.
  • Cookies that were deleted in the “Show cookies” dialog were not actually deleted.
  • Paused RSS feeds did not actually have their updates paused.
  • Various visual and UX improvements.

Security updates for Thunderbird

In addition, the developers were able to close a total of seven security vulnerabilities, which are detailed in the current Mozilla Foundation Security Advisory 2022-53 and no longer appear in version 102.6.0.

Among other things, the following vulnerabilities in the email client were closed :

  • CVE-2022-46880: Use-after-free in WebGL [High]
  • CVE-2022-46881: Memory corruption in WebGL [ High]
  • CVE-2022-46882: Use-after-free in WebGL [High]
  • CVE-2022-46878: Memory safety bugs fixed in Thunderbird 102.6 [High]
  • CVE-2022-46872: Arbitrary file read from a compromised content process [Medium]
  • CVE-2022-46874: Drag and Dropped Filenames could have been truncated to malicious extensions [Medium]< /li>
  • CVE-2022-46875: Download Protections were bypassed by .atloc and .ftploc files on Mac OS [Medium]

A corresponding update is already available via the integrated Thunderbird update function rolled out.

Download on ComputerBase

As usual, Thunderbird 102.6.0 can be downloaded from the ComputerBase download area directly below this message. As an alternative, Betterbird, a fork of the e-mail client, is available for download. Corresponding beta versions are also available for particularly experienced users.

Downloads


  • Betterbird Download

    4.0 stars

    Betterbird is an email client which may be an improved version of Mozilla Thunderbird.

    • Version 102.6.0 German

  • Mozilla Thunderbird Download

    4.7 stars

    Mozilla Thunderbird is an email and newsgroup client with a sophisticated spam and phishing filter.

    • Version 102.6.0 German
    • Version 108.0 Beta 3 German

Posted

in

by

admin

Tags: