UBUNTU-CVE-2024-8394

When aborting the verification of an OTR chat session, an attacker could have caused a use-after-free bug leading to a potentially exploitable crash. This vulnerability affects Thunderbird 128.2...

PT-2024-7939 · Mozilla +7 · Thunderbird +7

Name of the Vulnerable Software and Affected Versions: Thunderbird versions prior to 128.2 Description: The issue is related to a use-after-free bug that could be triggered when aborting the verification of an OTR chat session, potentially leading to a crash. This could be exploited by a remote...