Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2024-2790-1.NASLHistoryAug 07, 2024 - 12:00 a.m.
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2024:2790-1)
2024-08-0700:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
4
suse linux
sled15
sles15
opensuse
mozillathunderbird
security update
cve-2024-6600
cve-2024-6601
cve-2024-6602
cve-2024-6603
cve-2024-6604
mfsa 2024-31
bsc#1226316
memory corruption
webgl api
race condition
permission assignment
nss
thread creation
thunderbird 128
firefox esr 115.13
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2790-1 advisory.
Update to Mozilla Thunderbird 115.13 (MFSA 2024-31, bsc#1226316):
Security fixes:
- CVE-2024-6600: Memory corruption in WebGL API (bmo#1888340)
- CVE-2024-6601: Race condition in permission assignment (bmo#1890748)
- CVE-2024-6602: Memory corruption in NSS (bmo#1895032)
- CVE-2024-6603: Memory corruption in thread creation (bmo#1895081)
- CVE-2024-6604: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and Thunderbird 115.13 (bmo#1748105, bmo#1837550, bmo#1884266)
Other fixes:
- fixed: After starting Thunderbird, the message list position was sometimes set to an incorrect position (bmo#1896009)
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# SUSE update advisory SUSE-SU-2024:2790-1. The text itself
# is copyright (C) SUSE.
##
include('compat.inc');
if (description)
{
script_id(205125);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/07");
script_cve_id(
"CVE-2024-6600",
"CVE-2024-6601",
"CVE-2024-6602",
"CVE-2024-6603",
"CVE-2024-6604"
);
script_xref(name:"SuSE", value:"SUSE-SU-2024:2790-1");
script_name(english:"SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2024:2790-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are
affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2790-1 advisory.
Update to Mozilla Thunderbird 115.13 (MFSA 2024-31, bsc#1226316):
Security fixes:
- CVE-2024-6600: Memory corruption in WebGL API (bmo#1888340)
- CVE-2024-6601: Race condition in permission assignment (bmo#1890748)
- CVE-2024-6602: Memory corruption in NSS (bmo#1895032)
- CVE-2024-6603: Memory corruption in thread creation (bmo#1895081)
- CVE-2024-6604: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and
Thunderbird 115.13 (bmo#1748105, bmo#1837550, bmo#1884266)
Other fixes:
- fixed: After starting Thunderbird, the message list position was sometimes set to an incorrect position
(bmo#1896009)
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1226316");
script_set_attribute(attribute:"see_also", value:"https://lists.suse.com/pipermail/sle-updates/2024-August/036331.html");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2024-6600");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2024-6601");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2024-6602");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2024-6603");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2024-6604");
script_set_attribute(attribute:"solution", value:
"Update the affected MozillaThunderbird, MozillaThunderbird-translations-common and / or MozillaThunderbird-translations-
other packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-6604");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2024-6602");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/07/09");
script_set_attribute(attribute:"patch_publication_date", value:"2024/08/06");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/08/07");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaThunderbird");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaThunderbird-translations-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaThunderbird-translations-other");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item("Host/SuSE/release");
if (isnull(os_release) || os_release !~ "^(SLED|SLES|SUSE)") audit(AUDIT_OS_NOT, "SUSE / openSUSE");
var os_ver = pregmatch(pattern: "^(SLE(S|D)(?:_SAP)?\d+|SUSE([\d.]+))", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE / openSUSE');
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED15|SLED_SAP15|SLES15|SLES_SAP15|SUSE15\.5|SUSE15\.6)$", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15', 'SUSE / openSUSE (' + os_ver + ')');
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE / openSUSE (' + os_ver + ')', cpu);
var service_pack = get_kb_item("Host/SuSE/patchlevel");
if (isnull(service_pack)) service_pack = "0";
if (os_ver == "SLED15" && (! preg(pattern:"^(5|6)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLED15 SP5/6", os_ver + " SP" + service_pack);
if (os_ver == "SLED_SAP15" && (! preg(pattern:"^(5|6)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLED_SAP15 SP5/6", os_ver + " SP" + service_pack);
if (os_ver == "SLES15" && (! preg(pattern:"^(5|6)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES15 SP5/6", os_ver + " SP" + service_pack);
if (os_ver == "SLES_SAP15" && (! preg(pattern:"^(5|6)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES_SAP15 SP5/6", os_ver + " SP" + service_pack);
var pkgs = [
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLED_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLED_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLED_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLED_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.6']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.6']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLED_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.6']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.6']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLED_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.6']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['SLES_SAP-release-15.6']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['openSUSE-release-15.5']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['openSUSE-release-15.5']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['openSUSE-release-15.5']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'release':'SUSE15.6', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['openSUSE-release-15.6']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'release':'SUSE15.6', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['openSUSE-release-15.6']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'release':'SUSE15.6', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['openSUSE-release-15.6']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.5']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'s390x', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.5']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.5']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'s390x', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.5']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.5']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'s390x', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.5']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.6']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'s390x', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.6']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.6']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'s390x', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.6']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.6']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'s390x', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-module-packagehub-subpackages-release-15.6']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.5', 'sled-release-15.5', 'sles-release-15.5']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.5', 'sled-release-15.5', 'sles-release-15.5']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.5', 'sled-release-15.5', 'sles-release-15.5']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.5', 'sled-release-15.5', 'sles-release-15.5']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.5', 'sled-release-15.5', 'sles-release-15.5']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'5', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.5', 'sled-release-15.5', 'sles-release-15.5']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.6', 'sled-release-15.6', 'sles-release-15.6']},
{'reference':'MozillaThunderbird-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.6', 'sled-release-15.6', 'sles-release-15.6']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.6', 'sled-release-15.6', 'sles-release-15.6']},
{'reference':'MozillaThunderbird-translations-common-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.6', 'sled-release-15.6', 'sles-release-15.6']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.6', 'sled-release-15.6', 'sles-release-15.6']},
{'reference':'MozillaThunderbird-translations-other-115.13.0-150200.8.171.4', 'sp':'6', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE, 'exists_check':['sle-we-release-15.6', 'sled-release-15.6', 'sles-release-15.6']}
];
var ltss_caveat_required = FALSE;
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var exists_check = NULL;
var rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && _release) {
if (exists_check) {
var check_flag = 0;
foreach var check (exists_check) {
if (!rpm_exists(release:_release, rpm:check)) continue;
check_flag++;
}
if (!check_flag) continue;
}
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'MozillaThunderbird / MozillaThunderbird-translations-common / etc');
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6600
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6601
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6602
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6603
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6604
bugzilla.suse.com/1226316
lists.suse.com/pipermail/sle-updates/2024-August/036331.html
www.suse.com/security/cve/CVE-2024-6600
www.suse.com/security/cve/CVE-2024-6601
www.suse.com/security/cve/CVE-2024-6602
www.suse.com/security/cve/CVE-2024-6603
www.suse.com/security/cve/CVE-2024-6604
Related
nessus
nessus
Mozilla Firefox ESR < 115.13
2024-07-09 00:00:00
Mozilla Thunderbird < 115.13
2024-07-16 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2024-07-23 19:09:25
[slackware-security] mozilla-firefox
2024-07-10 17:52:20
redos
redos
ROS-20240920-11
2024-09-20 00:00:00
ROS-20240902-11
2024-09-02 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6903-1)
2024-07-22 00:00:00
Mozilla Firefox ESR Security Update (mfsa_2024-30) - Mac OS X
2024-07-11 00:00:00
Mozilla Thunderbird Security Update (mfsa_2024-31) - Mac OS X
2024-07-19 00:00:00
osv
osv
thunderbird vulnerabilities
2024-07-22 02:59:38
firefox-esr - security update
2024-07-10 00:00:00
thunderbird - security update
2024-07-18 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2024-07-22 00:00:00
Firefox vulnerabilities
2024-07-10 00:00:00
mageia
mageia
Updated nss & firefox packages fix security vulnerabilities
2024-07-16 06:21:38
Updated thunderbird packages fix security vulnerabilities
2024-07-21 05:28:06
redhat
redhat
(RHSA-2024:4718) Important: thunderbird security update
2024-07-23 08:05:48
(RHSA-2024:4670) Important: thunderbird security update
2024-07-22 00:59:19
(RHSA-2024:4671) Important: thunderbird security update
2024-07-22 00:59:21
kaspersky
kaspersky
KLA70479 Multiple vulnerabilities in Mozilla Thunderbird
2024-07-15 00:00:00
KLA70405 Multiple vulnerabilities in Mozilla Firefox ESR
2024-07-09 00:00:00
KLA70478 Multiple vulnerabilities in Mozilla Thunderbird
2024-07-11 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.13 — Mozilla
2024-07-09 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.13 — Mozilla
2024-07-15 00:00:00
Security Vulnerabilities fixed in Thunderbird 128 — Mozilla
2024-07-11 00:00:00
almalinux
almalinux
Important: firefox security update
2024-07-11 00:00:00
Important: thunderbird security update
2024-07-18 00:00:00
Important: thunderbird security update
2024-07-18 00:00:00
rocky
rocky
thunderbird security update
2024-07-26 12:33:59
firefox security update
2024-07-15 12:18:45
thunderbird security update
2024-07-26 12:33:00
oraclelinux
oraclelinux
firefox security update
2024-07-11 00:00:00
firefox security update
2024-07-11 00:00:00
thunderbird security update
2024-07-18 00:00:00
cvelist
cvelist
redhatcve
redhatcve
nvd
nvd
alpinelinux
alpinelinux
wolfi
wolfi
CVE-2024-6602 vulnerabilities
2024-09-19 09:11:50
CVE-2024-6600 vulnerabilities
2024-09-19 09:11:50
CVE-2024-6604 vulnerabilities
2024-09-19 09:11:50
debiancve
debiancve
ubuntucve
ubuntucve
vulnrichment
vulnrichment
cve
cve
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
Related for SUSE_SU-2024-2790-1.NASL