Lucene search
K

16 matches found

OpenVAS
OpenVAS
added 2022/02/01 12:0 a.m.16 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2022:0058-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.2AI score0.01921EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/01/22 12:0 a.m.51 views

Ubuntu 21.10 : Thunderbird vulnerabilities (USN-5246-1)

The remote Ubuntu 21.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5246-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker...

10CVSS7.9AI score0.0202EPSS
Exploits7References26
Tenable Nessus
Tenable Nessus
added 2022/01/13 12:0 a.m.27 views

openSUSE 15 Security Update : MozillaThunderbird (openSUSE-SU-2022:0058-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0058-1 advisory. - When receiving an OpenPGP/MIME signed email message that contains an additional outer MIME message layer, for example a message footer...

9.8CVSS8.1AI score0.01921EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/01/13 12:0 a.m.29 views

SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2022:0058-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0058-1 advisory. - Mozilla Thunderbird 91.4.1 - CVE-2021-4126: OpenPGP signature status doesn't consider additional message...

9.8CVSS7AI score0.01921EPSS
Exploits0References7
OSV
OSV
added 2022/01/12 8:20 a.m.7 views

SUSE-SU-2022:0058-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.4.1 - CVE-2021-4126: OpenPGP signature status doesn't consider additional message content. bsc1194215 - CVE-2021-44538: Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow...

9.8CVSS7.9AI score0.01921EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/01/05 12:0 a.m.27 views

Debian: Security Advisory (DLA-2874-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8AI score0.0383EPSS
Exploits0References4
ALT Linux
ALT Linux
added 2021/12/27 12:0 a.m.21 views

Security fix for the ALT Linux 10 package thunderbird version 91.4.1-alt1

91.4.1-alt1 built Dec. 27, 2021 Andrey Cherepanov in task 292439 Dec. 21, 2021 Andrey Cherepanov - New version. - Security fixes: + CVE-2021-4126 OpenPGP signature status doesn't consider additional message content + CVE-2021-44538 Matrix chat library libolm bundled with Thunderbird vulnerable to...

7.5CVSS8.1AI score0.01921EPSS
Exploits0
Mageia
Mageia
added 2021/12/23 9:1 p.m.37 views

Updated thunderbird packages fix security vulnerability

OpenPGP signature status doesn't consider additional message content. CVE-2021-4126 Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow. CVE-2021-44538...

9.8CVSS3.2AI score0.01921EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/12/20 12:0 a.m.38 views

Mozilla Thunderbird < 91.4.1

The version of Thunderbird installed on the remote Windows host is prior to 91.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-55 advisory. - Thunderbird users who use the Matrix chat protocol were vulnerable to a buffer overflow in libolm, that an attack...

9.8CVSS8AI score0.01921EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/12/20 12:0 a.m.28 views

Mozilla Thunderbird < 91.4.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-55 advisory. - Thunderbird users who use the Matrix chat protocol were vulnerable to a buffer overflow in libolm, that...

9.8CVSS7.9AI score0.01921EPSS
Exploits0References3
OSV
OSV
added 2021/12/19 4:13 p.m.6 views

MGASA-2021-0571 Updated olm packages fix security vulnerability

Updated olm packages fix security vulnerability: The olmsessiondescribe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of t...

9.8CVSS9.7AI score0.01921EPSS
Exploits0References3
Mageia
Mageia
added 2021/12/19 4:13 p.m.35 views

Updated olm packages fix security vulnerability

Updated olm packages fix security vulnerability: The olmsessiondescribe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of t...

9.8CVSS1.6AI score0.01921EPSS
Exploits0References2
Circl
Circl
added 2021/12/14 4:12 p.m.6 views

CVE-2021-44538

creationtimestamp| type| source ---|---|--- 2021-12-14 16:12:55+00:00| seen| https://t.me/cibsecurity/33921...

9.8CVSS8.5AI score0.01921EPSS
Exploits0References1
CVE
CVE
added 2021/12/14 1:26 p.m.141 views

CVE-2021-44538

CVE-2021-44538: The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object state is partially controllable by the remote party; crafted messages can manipulate the receiver’s session so that, for some buffer sizes, a buffer overflow ...

9.8CVSS9.4AI score0.01921EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVE
added 2021/12/14 1:26 p.m.26 views

CVE-2021-44538

The olmsessiondescribe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of the channel. Attackers can construct a crafted...

9.8CVSS9.7AI score0.01921EPSS
Exploits0
CVE
CVE
added 1976/01/01 12:0 a.m.34 views

CVE-2022-44538

CVE-2022-44538 is rejected/not used per the Initial Description; it does not represent an active vulnerability entry.

6.9AI score
Exploits0
Rows per page
Query Builder