2 matches found
MiracleLinux 8 : thunderbird-115.9.0-1.el8_9.ML.1 (AXSA:2024-7670:08)
The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7670:08 advisory. nss: timing attack against RSA decryption CVE-2023-5388 Mozilla: Crash in NSS TLS method CVE-2024-0743 Mozilla: Leaking of encrypted email subjects ...
thunderbird: S/MIME and PGP decryption oracles can be built with HTML emails
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird 52.9...