31 matches found
[SECURITY] Fedora 43 Update: rust-sequoia-sqv-1.3.0-5.fc43
A simple OpenPGP signature verification program...
EUVD-2022-34506
Malicious code in bioql PyPI...
thunderbird security update
CentOS Errata and Security Advisory CESA-2024:0027 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
Updated thunderbird thunderbird-l10n packages fix security vulnerabilities
The updated packages fix security vulnerabilities: Truncated signed text was shown with a valid OpenPGP signature. CVE-2023-50762 S/MIME signature accepted despite mismatching message date. CVE-2023-50761 Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver...
MGASA-2024-0006 Updated thunderbird thunderbird-l10n packages fix security vulnerabilities
The updated packages fix security vulnerabilities: Truncated signed text was shown with a valid OpenPGP signature. CVE-2023-50762 S/MIME signature accepted despite mismatching message date. CVE-2023-50761 Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver...
RLSA-2024:0003 Important: thunderbird security update
Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.6.0. Security Fixes: Mozilla: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver CVE-2023-6856 Mozilla: Memory safety bugs fixed in Firefox 121, Firefo...
SUSE-SU-2024:0044-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: Firefox Extended Support Release 115.6.0 ESR bsc1217974: CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver bmo1843782. CVE-2023-6857: Symlinks may resolve to smaller than expected...
Important: Red Hat Security Advisory: thunderbird security update
An update for thunderbird is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
Mozilla: Truncated signed text was shown with a valid OpenPGP signature
The Mozilla Foundation Security Advisory: When processing a PGP/MIME payload that contains digitally signed text, the first paragraph of the text was never shown to the user. This is because the text was interpreted as a MIME message and the first paragraph was always treated as an email header...
Important: Red Hat Security Advisory: thunderbird security update
An update for thunderbird is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
Important: Red Hat Security Advisory: thunderbird security update
An update for thunderbird is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
Important: Red Hat Security Advisory: thunderbird security update
An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
PT-2023-7922 · Mozilla +9 · Thunderbird +9
Name of the Vulnerable Software and Affected Versions: Thunderbird versions prior to 115.6 Description: The issue is related to errors in handling OpenPGP cryptographic signatures. Exploitation of this issue may allow a remote attacker to perform a spoofing attack. When processing a PGP/MIME...
Oracle Linux 8 : evolution (ELSA-2020-1600)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1600 advisory. - Update patch for RH bug 1764563 CVE-2018-15587: Reposition signature bar - Add patch for RH bug 1764563 CVE-2018-15587: Reposition signature bar Tenable has...
Fedora: Security Advisory for rust-sequoia-sqv (FEDORA-2023-1d0d71b6aa)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-2226
An OpenPGP digital signature includes information about the date when the signature was created. When displaying an email that contains a digital signature, the email's date will be shown. If the dates were different, then Thunderbird didn't report the email as having an invalid signature. If an...
DEBIAN-CVE-2022-2226
An OpenPGP digital signature includes information about the date when the signature was created. When displaying an email that contains a digital signature, the email's date will be shown. If the dates were different, then Thunderbird didn't report the email as having an invalid signature. If an...
Ubuntu: Security Advisory (USN-5512-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS 7 : thunderbird (RHSA-2022:5480)
The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:5480 advisory. - If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading to...
USN-5512-1: Thunderbird vulnerabilities
Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, spoof the UI, bypass CSP restrictions, or execute...