thunderbird is vulnerable to denial of service (DoS) attacks. The vulnerability exists through multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html
lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
www.debian.org/security/2014/dsa-3090
www.debian.org/security/2014/dsa-3092
www.mozilla.org/security/announce/2014/mfsa2014-83.html
www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
www.securityfocus.com/bid/71391
access.redhat.com/articles/1284233
access.redhat.com/security/updates/classification/#important
bugzilla.mozilla.org/show_bug.cgi?id=1042567
bugzilla.mozilla.org/show_bug.cgi?id=1072847
bugzilla.mozilla.org/show_bug.cgi?id=1079729
bugzilla.mozilla.org/show_bug.cgi?id=1080312
bugzilla.mozilla.org/show_bug.cgi?id=1089207
rhn.redhat.com/errata/RHSA-2014-1924.html
security.gentoo.org/glsa/201504-01
www.mozilla.org/security/known-vulnerabilities/thunderbird.html#thunderbird31.3