14 DAY TRIAL // Details about a number of Thunderbird vulnerabilities in Ubuntu 15.04, Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS operating systems have been published by Canonical.
The Thunderbird email client received has been updated once more and the Ubuntu maintainers of this package have finally pushed the latest version into the repositories. The latest version of the email client brings only security fixes, so don't expect any major changes.
For example, "Ucha Gobejishvili discovered a buffer overflow when parsing compressed XML content. If a user were tricked into opening a specially crafted message with scripting enabled, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird," reads the announcement.
Also, "if a user were tricked into opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause a denial of service," is also noted in the official announcement.
For a more detailed description of the problems, you can see Canonical's security notification.
How to get the latest Mozilla Thunderbird on your Ubuntu system
The flaws can be fixed if you upgrade your system(s) to the latest Thunderbird package specific to each distribution. To apply the patch, run the Update Manager application.
You can also upgrade your system from the terminal. Just enter these two commands (you will need to be root for this to work):
sudo apt-get dist-upgrade
You can also download Mozilla Thunderbird 31.7.0 right now from Softpedia, but this is not an installable version of the application. You can run it just like any other binary, but the only way of installing it is by compiling, which is not recommended if you want to stay updated.