Mozilla issues a critical security update to its popular Thunderbird email client. The latest Thunderbird 52.5.2 version released last week fixes the vulnerabilities. The most serious of the fixes is a critical buffer overflow bug (CVE-2017-7845) The bug is present when drawing and validating elements with angle library using Direct 3D 9, according to Mozilla. The same bug was reported and patched earlier this month in Mozilla s Firefox web browser. Earlier this year Mozilla said it would update Thunderbird UI, code and align it more closely with Firefox by phasing out support for legacy add-ons.
Source: https://threatpost.com/mozilla-patches-critical-bug-in-thunderbird/129244/

