Live distribution geared towards anonymity Tails has presented Your 7.8 version with a clear focus on security and how it manages some of its key applications. This update, which has arrived a month after the previous 7.7It brings relevant changes both to the system and to the set of programs included by default, which will especially affect those who use email from this environment.
Among the most notable decisions, Thunderbird no longer comes pre-installed and is now offered only as optional add-on software. At the same time, the new version fixes several Linux kernel vulnerabilities and updates essential components such as Tor Browser, maintaining Tails as a leading tool for connecting to the internet through the Tor network without leaving a trace on the computer used.
Thunderbird is no longer included in the default applications set in Tails 7.8
With Tails 7.8, the developers have confirmed a move they had already hinted at in previous versions: The Thunderbird email client is no longer part of the base systemUntil now, the program came pre-installed along with the rest of the pre-configured applications, but from this edition onwards it will only be available as an additional package for those who really need it.
The change had already been announced with the Tails 7.5 release, when the development team announced that, for security reasons, Thunderbird would be managed as complementary softwareThe idea is to move away from the Tails release cycle and allow for faster updates, reducing the time users could be exposed to known security vulnerabilities in the email client.
Manual installation via persistent storage
Starting with this version, users who wish to continue using the email client will need to activate it manually. To do so, It is necessary to configure Tails persistent storage and select the corresponding options within this data system that survive between reboots.
Specifically, the user has to enable the functions “Additional Software” and “Thunderbird Email Client” in the persistent storage settings. Once done, every time Tails starts, the system will automatically reinstall Thunderbird from that persistent space, so the program is available without having to repeat the manual installation process on each boot. For more details on managing additional packages, see Notes from previous versions.
To facilitate the transition, the team has incorporated a help dialog called “Thunderbird Migration”This wizard appears after completing the installation from persistent storage. It is designed to simplify the transition from a previously installed Thunderbird to this new management method, guiding the user through the process of adapting their configuration and data.
Security reasons behind the change
The main reason for this decision is related to the release schedule. Tails usually releases new versions shortly after each new release of FirefoxThis meant that the Thunderbird email client, which shares much of its technological base with Firefox, sometimes became outdated very quickly compared to its latest version.
This discrepancy meant that, shortly after a new image of Tails was releasedThunderbird could accumulate vulnerabilities that were patched in the official branch but still present in the version included by default in the distribution. Given its focus on privacy, the existence of known flaws in such a sensitive component as email was particularly problematic.
By making Thunderbird an add-on package managed from persistent storage, The program can be updated more quickly. And regardless of new Tails ISO or USB images. This way, the email client is downloaded and installed in its latest available version when needed, reducing the window of exposure to potential security risks.
Kernel vulnerability fixes in Tails 7.8
In addition to changes in application management, Tails 7.8 It incorporates patches for several Linux kernel vulnerabilities. that had been recently discovered. This update comes after an emergency release, Tails 7.7.3, which focused on fixing the DirtyFrag vulnerability, a privilege escalation flaw that could allow an attacker to gain more control over the system.
The new edition also addresses other issues, such as the vulnerability known as Fragenesis (CVE-2026-46300)It has been rated with a CVSS score of 7,8 and is considered high risk. If left uncorrected, these types of vulnerabilities can be used to compromise system integrity or breach the isolation that Tails attempts to guarantee for users performing sensitive tasks.
Along with these fixes, the update Blocks potential sandbox evasion in Flatpak applications They used Yelp, the help viewer for the GNOME environment. By closing this escape vector, the confinement of applications packaged as Flatpak is reinforced, an important element in maintaining control over what each program can do within the system.
Tor Browser update and Firefox ESR base
The browser is another critical pillar in Tails, and in version 7.8 Tor Browser is included in version 15.0.14This browser, which channels traffic through the Tor network to preserve anonymity, is based on Firefox ESR, the extended support branch of Mozilla's browser designed for environments where stability and security updates are prioritized.
This time, Tor Browser 15.0.14 is built on Firefox ESR 140.11This base includes multiple patches that address various vulnerabilities detected in the browser, ranging from issues that could allow arbitrary code execution to flaws in the information being leaked through web content. By integrating this version, Tails benefits from all these improvements and reduces the chances of a malicious site exploiting errors in the browser engine.
Using Firefox ESR as a reference allows us to Security updates are integrated in a more controlled mannerThis is especially relevant in an environment like Tails, where the browser is the main way to interact with the outside world and, therefore, one of the most frequent targets for targeted attacks.
Images for USB, DVD and virtual machines
The distribution continues to be offered as bootable image from USB drives, DVDs or virtual machinesThis allows it to be used on other people's computers without needing to install anything on the hard drive. This feature is especially useful for people who need to connect from public, shared, or otherwise uncontrolled computers.
When running as a live system, Tails is designed to leave no relevant local traces Once the computer is shut down or restarted, provided persistent storage has not been configured for certain data. This approach makes it easy to carry a complete privacy- and censorship-evading environment on a USB drive, ready to boot on virtually any compatible computer.
The project continues to publish a specific image designed for use in virtual machinesThis is useful in testing, security research, or training contexts. However, in scenarios where the physical privacy of the host machine could be compromised, it is still advisable to pay attention to the virtualization configuration and the potential exchange of data between the host and the physical machine.
With all these changes, Tails 7.8 presents itself as an evolution that prioritizes the correction of vulnerabilities and the reduction of risks associated with key software such as Thunderbird and the browser, maintaining its focus on anonymous browsing through the Tor network and reinforcing its position as a specialized tool for those who need a more controlled environment than a conventional operating system.
