2131 matches found
DEBIAN-CVE-2021-29957
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
Design/Logic Flaw
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
CVE-2021-29957
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
CVE-2021-29957
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
CVE-2021-29957
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
Nextcloud: ApiService#fetch serves content as text/html and inline Content-Disposition
https://github.com/nextcloud/text/blame/0bc7c3300607d57ee512dbf61497daec23961a12/lib/Service/ApiService.phpL109-L120 Impact XSS...
Mozilla: Partial protection of inline OpenPGP message not indicated
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
Mozilla: Partial protection of inline OpenPGP message not indicated
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
RLSA-2021:2264 Important: thunderbird security update
Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.11.0. Security Fixes: Mozilla: Memory safety bugs fixed in Firefox 89 and Firefox ESR 78.11 CVE-2021-29967 Mozilla: Thunderbird stored OpenPGP secret keys without master password protecti...
UVI-2021-1000587 btrfs: release path before starting transaction when cloning inline extent
btrfs: release path before starting transaction when cloning inline extent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.42 by commit...
GSD-2021-1000587 btrfs: release path before starting transaction when cloning inline extent
btrfs: release path before starting transaction when cloning inline extent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.42 by commit...
UVI-2021-1000539 btrfs: release path before starting transaction when cloning inline extent
btrfs: release path before starting transaction when cloning inline extent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.9 by commit...
GSD-2021-1000201 btrfs: fix deadlock when cloning inline extents and using qgroups
btrfs: fix deadlock when cloning inline extents and using qgroups This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.5 by commit...
UBUNTU-CVE-2021-29957
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...
CVE-2021-33496
Dutchcoders transfer.sh before 1.2.4 allows XSS via an inline view...
Cross site scripting
Dutchcoders transfer.sh before 1.2.4 allows XSS via an inline view...
CVE-2021-33496
Dutchcoders transfer.sh before 1.2.4 allows XSS via an inline view...
PT-2021-20158 · Dutchcoders · Transfer.Sh
Name of the Vulnerable Software and Affected Versions: Dutchcoders transfer.sh versions prior to 1.2.4 Description: The issue allows cross-site scripting XSS via an inline view. This means an attacker could potentially inject malicious scripts into the website, affecting users who access the...
Dutchcoders transfer.sh 跨站脚本漏洞
transfer.sh is a sh script for Dutchcoders to create shared files. Easily and quickly share files via the command line. This code contains everything needed for the server as well as creating your own instance. Dutchcoders transfer.sh 1.2.4 previously had a security vulnerability that stemmed fro...
Updated thunderbird packages fix security vulnerabilities
The updated packages fix security vulnerabilities: Thunderbird stored OpenPGP secret keys without master password protection CVE-2021-29956. Partial protection of inline OpenPGP message not indicated CVE-2021-29957...