Lucene search
K

6 matches found

RedHat Linux
RedHat Linux
added 2024/12/02 1:28 a.m.1 views

thunderbird: Potential disclosure of plaintext in OpenPGP encrypted message

The Mozilla Foundation Security Advisory describes this flaw as: Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext...

5.3CVSS7.4AI score0.003EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/04/17 2:15 p.m.3 views

Thunderbird: Hang when processing certain OpenPGP messages

The Mozilla Foundation Security Advisory describes this flaw as: Certain malformed OpenPGP messages could trigger incorrect parsing of PKESK/SKESK packets due to a bug in the Ribose RNP library used by Thunderbird up to version 102.9.1, which would cause the Thunderbird user interface to hang. Th...

5.3CVSS7.3AI score0.00901EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/04/17 2:10 p.m.4 views

Thunderbird: Hang when processing certain OpenPGP messages

The Mozilla Foundation Security Advisory describes this flaw as: Certain malformed OpenPGP messages could trigger incorrect parsing of PKESK/SKESK packets due to a bug in the Ribose RNP library used by Thunderbird up to version 102.9.1, which would cause the Thunderbird user interface to hang. Th...

5.3CVSS7.3AI score0.00901EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.6 views

SUSE CVE-2007-1264

Enigmail 0.94.2 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Enigmail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message...

5CVSS6.9AI score0.04599EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.5 views

SUSE CVE-2007-1269

GNUMail 1.1.2 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents GNUMail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message...

5CVSS6.9AI score0.02745EPSS
Exploits1References3
OSV
OSV
added 2014/06/26 5:36 p.m.5 views

USN-2258-1 gnupg, gnupg2 vulnerability

Jean-René Reinhard, Olivier Levillain and Florian Maury discovered that GnuPG incorrectly handled certain OpenPGP messages. If a user or automated system were tricked into processing a specially-crafted message, GnuPG could consume resources, resulting in a denial of service...

5CVSS6.8AI score0.03305EPSS
Exploits0References2
Rows per page
Query Builder