Security vulnerabilities fixed in Firefox 65.0.1 — Mozilla

A use-after-free vulnerability in the Skia library can occur when creating a path, leading to a potentially exploitable crash. An integer overflow vulnerability in the Skia library can occur after specific transform operations, leading to a potentially exploitable crash. Cross-origin images can b...

Mozilla Firefox ESR < 60.4

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 60.4. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2018-30 advisory. - A potential vulnerability leading to an integer overflow can occur during buffer size calculations for...

Design/Logic Flaw

A vulnerability in the Private Browser of Trend Micro Dr. Safety for Android Consumer versions below 3.0.1478 could allow an remote attacker to bypass the Same Origin Policy SOP and obtain sensitive information via crafted JavaScript code on vulnerable installations...

CVE-2018-18334

A vulnerability in the Private Browser of Trend Micro Dr. Safety for Android Consumer versions below 3.0.1478 could allow an remote attacker to bypass the Same Origin Policy SOP and obtain sensitive information via crafted JavaScript code on vulnerable installations...

CVE-2018-18334

A vulnerability in the Private Browser of Trend Micro Dr. Safety for Android Consumer versions below 3.0.1478 could allow an remote attacker to bypass the Same Origin Policy SOP and obtain sensitive information via crafted JavaScript code on vulnerable installations...

CVE-2018-18334

A vulnerability in the Private Browser of Trend Micro Dr. Safety for Android Consumer versions below 3.0.1478 could allow an remote attacker to bypass the Same Origin Policy SOP and obtain sensitive information via crafted JavaScript code on vulnerable installations...

CentOS 6 : thunderbird (CESA-2019:0159)

An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

CentOS Update for thunderbird CESA-2019:0160 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

thunderbird security update

CentOS Errata and Security Advisory CESA-2019:0159 An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

thunderbird security update

CentOS Errata and Security Advisory CESA-2019:0160 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Google Chrome Insufficient Data Validation Vulnerability

Chrome is a web browsing tool developed by Google. A data validation insufficiency vulnerability exists in IndexedDB in Google Chrome versions prior to 72.0.3626.81. An attacker can exploit this vulnerability to bypass the same source policy via a crafted HTML page...

CVE-2019-5773

Insufficient origin validation in IndexedDB in Google Chrome prior to 72.0.3626.81 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page...

Mozilla Thunderbird < 60.2.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 60.2.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2018-25 advisory. - A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by...

Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20190125)

This update upgrades Thunderbird to version 60.4.0. Security Fixes : - Mozilla: Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4 CVE-2018-12405 - chromium-browser, firefox: Memory corruption in Angle CVE-2018-17466 - Mozilla: Use-after-free with select element CVE-2018-18492 - Mozilla:...

Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20190125)

This update upgrades Thunderbird to version 60.4.0. Security Fixes : - Mozilla: Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4 CVE-2018-12405 - chromium-browser, firefox: Memory corruption in Angle CVE-2018-17466 - Mozilla: Use-after-free with select element CVE-2018-18492 - Mozilla:...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Thunderbird vulnerabilities (USN-3868-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3868-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a...

RHEL 6 : thunderbird (RHSA-2019:0159)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:0159 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.4.0. Security Fixes: Mozilla:...

Oracle Linux 7 : thunderbird (ELSA-2019-0160)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2019-0160 advisory. 60.4.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.4.0-1 - Update to 60.4.0 Tenable has extracted...

Ubuntu: Security Advisory (USN-3868-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Thunderbird Security Advisory (MFSA2018-31) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...