AVG-1790 log
| Package | thunderbird |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 78.9.0-1 |
| Fixed | 78.9.1-1 |
| Current |
128.4.4-1 [extra-testing] 128.4.3-1 [extra] |
| Ticket | None |
| Created | Thu Apr 8 19:59:39 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-29949 | Low | No | Arbitrary code execution | A security issue was found in Thunderbird before version 78.9.1. When loading the shared library that provides the OTR protocol implementation, Thunderbird... |
| CVE-2021-23993 | Medium | Yes | Denial of service | A security issue was found in Thunderbird before version 78.9.1. An attacker may perform a denial of service (DoS) attack to prevent a user from sending... |
| CVE-2021-23992 | Medium | Yes | Signature forgery | Thunderbird before version 78.9.1 did not check if the user ID associated with an OpenPGP key has a valid self signature. An attacker may create a crafted... |
| CVE-2021-23991 | Medium | Yes | Denial of service | A security issue was found in Thunderbird before version 78.9.1. If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended... |