3 matches found
CVE-2025-67897
In Sequoia before 2.1.0, aeskeyunwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted message with a crafted PKESK or SKESK packet...
Denial Of Service (DoS)
thunderbird is vulnerable to Denial of Service DoS. The vulnerability exists due to incorrect parsing of PKESK/SKESK packets due to a bug in the Ribose RNP library causing an application hang resulting in an application crash...
Thunderbird: Hang when processing certain OpenPGP messages
The Mozilla Foundation Security Advisory describes this flaw as: Certain malformed OpenPGP messages could trigger incorrect parsing of PKESK/SKESK packets due to a bug in the Ribose RNP library used by Thunderbird up to version 102.9.1, which would cause the Thunderbird user interface to hang. Th...