AVG-1496 log

Package thunderbird
Status Fixed
Severity High
Type multiple issues
Affected 78.6.1-1
Fixed 78.7.0-1
Current 128.5.2-1 [extra-testing]
128.5.1-1 [extra]
Ticket None
Created Tue Jan 26 21:01:47 2021
Issue Severity Remote Type Description
CVE-2021-23964 High Yes Arbitrary code execution
A security issue was found in Firefox before version 85.0 and Thunderbird before version 78.7. Mozilla developers reported memory safety bugs present in...
CVE-2021-23960 Medium Yes Arbitrary code execution
A security issue was found in Firefox before version 85.0 and Thunderbird before version 78.7. Performing garbage collection on re- declared JavaScript...
CVE-2021-23954 High Yes Arbitrary code execution
A security issue was found in Firefox before version 85.0 and Thunderbird before version 78.7. Using the new logical assignment operators in a JavaScript...
CVE-2021-23953 High Yes Information disclosure
A security issue was found in Firefox before version 85.0 and Thunderbird before version 78.7. If a user clicked into a specifically crafted PDF, the PDF...
CVE-2020-26976 Medium Yes Information disclosure
A security issue was found in Firefox before 84.0. When an HTTPS page was embedded in an HTTP page, and there was a service worker registered for the...
CVE-2020-15685 Medium Yes Insufficient validation
A security issue was found in Thunderbird before version 78.7. During the plaintext phase of the STARTTLS connection setup, protocol commands could have...
Date Advisory Package Type
06 Feb 2021 ASA-202102-2 thunderbird multiple issues