AVG-1440 log
| Package | thunderbird |
| Status | Fixed |
| Severity | Critical |
| Type | arbitrary code execution |
| Affected | 78.6.0-3 |
| Fixed | 78.6.1-1 |
| Current | 128.4.3-1 [extra] |
| Ticket | None |
| Created | Tue Jan 12 10:43:56 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-16044 | Critical | Yes | Arbitrary code execution | A security issue was found in Firefox before 84.0.2, Thunderbird before 78.6.1 and Chromium before 88.0.4324.96. A malicious peer could have modified a... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 12 Jan 2021 | ASA-202101-17 | thunderbird | arbitrary code execution |
| References |
|---|
https://www.mozilla.org/en-US/security/advisories/mfsa2021-02/ |
| Notes |
|---|
In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. |