Thunderbird 52.8.0 is a new version of the popular cross-platform email client that fixes several security vulnerabilities in the email client.
Existing Thunderbird users can run a check for updates from within the client; to do that, tap on the Alt-key on the keyboard and select Help > About Thunderbird.
The update check should pick up the new version 52.8.0 so that it is downloaded to the local system and installed.
Thunderbird 52.8.0 is available as a standalone download from the official project website as well. You may use the installer to upgrade existing installations of the email client or install it anew on a supported system.
The release notes highlight changes and issues. Thunderbird 52.8.0 is a security update for the email client that fixes several security issues. Several security issues received the highest impact rating of critical.
Thunderbird 52.8.0 protects emails against some exploits of EFAIL, a recently disclosed attack against OpenPGP and S/Mime. Attackers may use EFAIL attacks to retrieve the actual text of encrypted messages provided that they managed to get hold of the encrypted email and that the target runs a vulnerable client.
The team plans to publish Thunderbird 52.8.1 to fix the issue completely in Thunderbird. Check out the descriptions for the vulnerabilities CVE-2018-5184 and CVE-2018-5162 for additional details.
The following issues are fixed in the new Thunderbird version:
Thunderbird 52.8.0 is a security update for the email client that addresses two critical security issues and several rated as high. Thunderbird users should consider upgrading the client to the new version as soon as possible.
Those who use OpenPGP or S/Mime should install the patch asap; it is still recommended to block remote content in Thunderbird to block attacks.
Now You: Which email software do you run?
Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.
We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.
If you like our content, and would like to help, please consider making a contribution:
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.