Lucene search
+L

16 matches found

OSV
OSV
added 2022/12/22 8:15 p.m.7 views

CVE-2021-4126

When receiving an OpenPGP/MIME signed email message that contains an additional outer MIME message layer, for example a message footer added by a mailing list gateway, Thunderbird only considered the inner signed message for the signature validity. This gave the false impression that the addition...

6.5CVSS9.1AI score
Exploits0References2
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.24 views

CVE-2021-4126

When receiving an OpenPGP/MIME signed email message that contains an additional outer MIME message layer, for example a message footer added by a mailing list gateway, Thunderbird only considered the inner signed message for the signature validity. This gave the false impression that the addition...

7.7AI score0.00432EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.41 views

CVE-2021-4126

When receiving an OpenPGP/MIME signed email message that contains an additional outer MIME message layer, for example a message footer added by a mailing list gateway, Thunderbird only considered the inner signed message for the signature validity. This gave the false impression that the addition...

6.5CVSS6.5AI score0.00432EPSS
Exploits0
CVE
CVE
added 2022/12/22 12:0 a.m.126 views

CVE-2021-4126

The CVE-2021-4126 issue affects Thunderbird: when receiving an OpenPGP/MIME signed email with an outer MIME layer (e.g., mailing list footer), Thunderbird incorrectly treated inner content as signed. The root cause is that the displayed signature status was based on the inner part; since 91.4.1, ...

6.5CVSS7.3AI score0.00432EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2022/02/01 12:0 a.m.16 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2022:0058-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.2AI score0.01921EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5246-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.0202EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2022/01/13 12:0 a.m.27 views

openSUSE 15 Security Update : MozillaThunderbird (openSUSE-SU-2022:0058-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0058-1 advisory. - When receiving an OpenPGP/MIME signed email message that contains an additional outer MIME message layer, for example a message footer...

9.8CVSS8.1AI score0.01921EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/01/13 12:0 a.m.29 views

SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2022:0058-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0058-1 advisory. - Mozilla Thunderbird 91.4.1 - CVE-2021-4126: OpenPGP signature status doesn't consider additional message...

9.8CVSS7AI score0.01921EPSS
Exploits0References7
OSV
OSV
added 2022/01/12 8:20 a.m.8 views

SUSE-SU-2022:0058-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.4.1 - CVE-2021-4126: OpenPGP signature status doesn't consider additional message content. bsc1194215 - CVE-2021-44538: Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow...

9.8CVSS7.9AI score0.01921EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/01/05 12:0 a.m.27 views

Debian: Security Advisory (DLA-2874-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8AI score0.0383EPSS
Exploits0References4
Debian
Debian
added 2022/01/02 5:1 p.m.87 views

[SECURITY] [DSA 5034-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5034-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 02, 2022 https://www.debian.org/security/faq -...

10CVSS9.2AI score0.0383EPSS
Exploits0
ALT Linux
ALT Linux
added 2021/12/27 12:0 a.m.76 views

Security fix for the ALT Linux 10 package thunderbird version 91.4.1-alt1

91.4.1-alt1 built Dec. 27, 2021 Andrey Cherepanov in task 292439 Dec. 21, 2021 Andrey Cherepanov - New version. - Security fixes: + CVE-2021-4126 OpenPGP signature status doesn't consider additional message content + CVE-2021-44538 Matrix chat library libolm bundled with Thunderbird vulnerable to...

7.5CVSS8.1AI score0.01921EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/12/24 12:0 a.m.30 views

CVE-2021-4126

When receiving an OpenPGP/MIME signed email message that contains an additional outer MIME message layer, for example a message footer added by a mailing list gateway, Thunderbird only considered the inner signed message for the signature validity. This gave the false impression that the addition...

6.5CVSS6.8AI score0.00432EPSS
Exploits0References4
Mageia
Mageia
added 2021/12/23 9:1 p.m.38 views

Updated thunderbird packages fix security vulnerability

OpenPGP signature status doesn't consider additional message content. CVE-2021-4126 Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow. CVE-2021-44538...

9.8CVSS3.2AI score0.01921EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/12/20 12:0 a.m.29 views

Mozilla Thunderbird < 91.4.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-55 advisory. - Thunderbird users who use the Matrix chat protocol were vulnerable to a buffer overflow in libolm, that...

9.8CVSS7.9AI score0.01921EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/12/20 12:0 a.m.38 views

Mozilla Thunderbird < 91.4.1

The version of Thunderbird installed on the remote Windows host is prior to 91.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-55 advisory. - Thunderbird users who use the Matrix chat protocol were vulnerable to a buffer overflow in libolm, that an attack...

9.8CVSS8AI score0.01921EPSS
Exploits0References3
Rows per page
Query Builder