Lucene search

Https://packages.altlinux.org/en/sisyphus/security/42FB964BF0AE18BA9D7498973CE0DA75

HistoryMay 05, 2020 - 12:00 a.m.

Security fix for the ALT Linux 10 package thunderbird version 68.8.0-alt1

2020-05-0500:00:00

https://packages.altlinux.org/en/sisyphus/security/

packages.altlinux.org

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

82.6%

JSON

May 5, 2020 Andrey Cherepanov 68.8.0-alt1

- New version (68.8.0).
- Fixes:
  + CVE-2020-12397 Sender Email Address Spoofing using encoded Unicode characters
  + CVE-2020-12387 Use-after-free during worker shutdown
  + CVE-2020-6831 Buffer overflow in SCTP chunk input validation
  + CVE-2020-12392 Arbitrary local file access with 'Copy as cURL'
  + CVE-2020-12393 Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection
  + CVE-2020-12395 Memory safety bugs fixed in Thunderbird 68.8.0

OSVersionArchitecturePackageVersionFilename
ALT Linux10srcthunderbird-102.9.0-alt1.src.rpm< 68.8.0-alt1thunderbird-102.9.0-alt1.src.rpm
ALT Linux10x86_64rpm-build-thunderbird-102.9.0-alt1.x86_64.rpm< 68.8.0-alt1rpm-build-thunderbird-102.9.0-alt1.x86_64.rpm
ALT Linux10x86_64thunderbird-102.9.0-alt1.x86_64.rpm< 68.8.0-alt1thunderbird-102.9.0-alt1.x86_64.rpm
ALT Linux10x86_64thunderbird-wayland-102.9.0-alt1.x86_64.rpm< 68.8.0-alt1thunderbird-wayland-102.9.0-alt1.x86_64.rpm
ALT Linux10i586rpm-build-thunderbird-102.9.0-alt1.i586.rpm< 68.8.0-alt1rpm-build-thunderbird-102.9.0-alt1.i586.rpm
ALT Linux10i586thunderbird-102.9.0-alt1.i586.rpm< 68.8.0-alt1thunderbird-102.9.0-alt1.i586.rpm
ALT Linux10i586thunderbird-wayland-102.9.0-alt1.i586.rpm< 68.8.0-alt1thunderbird-wayland-102.9.0-alt1.i586.rpm
ALT Linux10aarch64rpm-build-thunderbird-102.9.0-alt1.aarch64.rpm< 68.8.0-alt1rpm-build-thunderbird-102.9.0-alt1.aarch64.rpm
ALT Linux10aarch64thunderbird-102.9.0-alt1.aarch64.rpm< 68.8.0-alt1thunderbird-102.9.0-alt1.aarch64.rpm
ALT Linux10aarch64thunderbird-wayland-102.9.0-alt1.aarch64.rpm< 68.8.0-alt1thunderbird-wayland-102.9.0-alt1.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
ALT Linux	10	src	thunderbird-102.9.0-alt1.src.rpm	< 68.8.0-alt1	thunderbird-102.9.0-alt1.src.rpm
ALT Linux	10	x86_64	rpm-build-thunderbird-102.9.0-alt1.x86_64.rpm	< 68.8.0-alt1	rpm-build-thunderbird-102.9.0-alt1.x86_64.rpm
ALT Linux	10	x86_64	thunderbird-102.9.0-alt1.x86_64.rpm	< 68.8.0-alt1	thunderbird-102.9.0-alt1.x86_64.rpm
ALT Linux	10	x86_64	thunderbird-wayland-102.9.0-alt1.x86_64.rpm	< 68.8.0-alt1	thunderbird-wayland-102.9.0-alt1.x86_64.rpm
ALT Linux	10	i586	rpm-build-thunderbird-102.9.0-alt1.i586.rpm	< 68.8.0-alt1	rpm-build-thunderbird-102.9.0-alt1.i586.rpm
ALT Linux	10	i586	thunderbird-102.9.0-alt1.i586.rpm	< 68.8.0-alt1	thunderbird-102.9.0-alt1.i586.rpm
ALT Linux	10	i586	thunderbird-wayland-102.9.0-alt1.i586.rpm	< 68.8.0-alt1	thunderbird-wayland-102.9.0-alt1.i586.rpm
ALT Linux	10	aarch64	rpm-build-thunderbird-102.9.0-alt1.aarch64.rpm	< 68.8.0-alt1	rpm-build-thunderbird-102.9.0-alt1.aarch64.rpm
ALT Linux	10	aarch64	thunderbird-102.9.0-alt1.aarch64.rpm	< 68.8.0-alt1	thunderbird-102.9.0-alt1.aarch64.rpm
ALT Linux	10	aarch64	thunderbird-wayland-102.9.0-alt1.aarch64.rpm	< 68.8.0-alt1	thunderbird-wayland-102.9.0-alt1.aarch64.rpm