Updated thunderbird packages fix security vulnerability

🗓️ 05 Dec 2020 19:46:49Reported by Gentoo FoundationType

mageia

mageia🔗 advisories.mageia.org👁 32 Views

Updated Thunderbird packages fix stack corruption vulnerabilit

Reporter	Title	Published	Views	Family All 79
AlpineLinux	CVE-2020-26970	9 Dec 202000:26	–	alpinelinux
ArchLinux	[ASA-202012-23] thunderbird: multiple issues	16 Dec 202000:00	–	archlinux
BDU FSTEC	The vulnerability of the Thunderbird email client, related to writing beyond the buffer in memory, allows a hacker to execute arbitrary code.	1 Apr 202100:00	–	bdu_fstec
ALT Linux	Security fix for the ALT Linux 10 package thunderbird version 78.5.1-alt1	2 Dec 202000:00	–	altlinux
Tenable Nessus	CentOS 8 : thunderbird (CESA-2020:5398)	1 Feb 202100:00	–	nessus
Tenable Nessus	CentOS 7 : thunderbird (RHSA-2020:5400)	9 Oct 202400:00	–	nessus
Tenable Nessus	Debian DLA-2479-1 : thunderbird security update	7 Dec 202000:00	–	nessus
Tenable Nessus	Debian DSA-4802-1 : thunderbird - security update	7 Dec 202000:00	–	nessus
Tenable Nessus	GLSA-202012-04 : Mozilla Thunderbird: Multiple vulnerabilities	7 Dec 202000:00	–	nessus
Tenable Nessus	Mozilla Thunderbird < 78.5.1	2 Dec 202000:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	7	any	rootcerts	20201201.00-1	rootcerts-20201201.00-1.noarch.rpm
Mageia	7	any	thunderbird	78.5.1-1	thunderbird-78.5.1-1.noarch.rpm
Mageia	7	any	thunderbird-l10n	78.5.1-1	thunderbird-l10n-78.5.1-1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
mozilla	www.mozilla.org/en-US/security/advisories/mfsa2020-53/
thunderbird	www.thunderbird.net/en-US/thunderbird/78.5.1/releasenotes/

05 Dec 2020 19:46Current

1.7Low risk

Vulners AI Score1.7

CVSS 3.18.8

CVSS 29.3

EPSS0.01227

thunderbird stack corruption vulnerability packages smtp server cve-2020-26970 unix