rpm package
suse/MozillaThunderbird&distro=SUSE Linux Enterprise Workstation Extension 15 SP1
pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP1
Vulnerabilities (150)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-11703 | Cri | 9.8 | < 60.7.0-3.36.1 | 60.7.0-3.36.1 | Jul 23, 2019 | A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in parser_get_next_char when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7.1. | |
| CVE-2019-11698 | Med | 5.3 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Jul 23, 2019 | If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data | |
| CVE-2019-11694 | Hig | 7.5 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Jul 23, 2019 | A vulnerability exists in the Windows sandbox where an uninitialized value in memory can be leaked to a renderer from a broker when making a call to access an otherwise unavailable file. This results in the potential leaking of information stored at that memory location. *Note: t | |
| CVE-2019-11693 | Cri | 9.8 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Jul 23, 2019 | The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are un | |
| CVE-2019-11692 | Cri | 9.8 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Jul 23, 2019 | A use-after-free vulnerability can occur when listeners are removed from the event listener manager while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7. | |
| CVE-2019-11691 | Cri | 9.8 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Jul 23, 2019 | A use-after-free vulnerability can occur when working with XMLHttpRequest (XHR) in an event loop, causing the XHR main thread to be called after it has been freed. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Fi | |
| CVE-2019-5798 | Med | 6.5 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | May 23, 2019 | Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. | |
| CVE-2019-9797 | Med | 5.3 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Apr 26, 2019 | Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a canvas element. This vulnerability affects Firefox < 66. | |
| CVE-2018-18511 | Med | 4.3 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Apr 26, 2019 | Cross-origin images can be read from a canvas element in violation of the same-origin policy using the transferFromImageBitmap method. *Note: This only affects Firefox 65. Previous versions are unaffected.*. This vulnerability affects Firefox < 65.0.1. | |
| CVE-2019-7317 | Med | 5.3 | < 60.7.0-3.33.2 | 60.7.0-3.33.2 | Feb 4, 2019 | png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute. |
- affected < 60.7.0-3.36.1fixed 60.7.0-3.36.1
A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in parser_get_next_char when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7.1.
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
A vulnerability exists in the Windows sandbox where an uninitialized value in memory can be leaked to a renderer from a broker when making a call to access an otherwise unavailable file. This results in the potential leaking of information stored at that memory location. *Note: t
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are un
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
A use-after-free vulnerability can occur when listeners are removed from the event listener manager while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
A use-after-free vulnerability can occur when working with XMLHttpRequest (XHR) in an event loop, causing the XHR main thread to be called after it has been freed. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Fi
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a canvas element. This vulnerability affects Firefox < 66.
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
Cross-origin images can be read from a canvas element in violation of the same-origin policy using the transferFromImageBitmap method. *Note: This only affects Firefox 65. Previous versions are unaffected.*. This vulnerability affects Firefox < 65.0.1.
- affected < 60.7.0-3.33.2fixed 60.7.0-3.33.2
png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.
Page 8 of 8