AVG-1836 - log back

AVG-1836 edited at 24 Apr 2021 09:29:40
Status
- Vulnerable
+ Fixed
Fixed
+ 78.10.0-1
AVG-1836 edited at 19 Apr 2021 14:27:43
Affected
- 87.0-2
+ 78.9.1-3
AVG-1836 created at 19 Apr 2021 14:20:23
Packages
+ thunderbird
Issues
+ CVE-2021-23961
+ CVE-2021-23994
+ CVE-2021-23995
+ CVE-2021-23998
+ CVE-2021-23999
+ CVE-2021-24002
+ CVE-2021-29946
+ CVE-2021-29948
Status
+ Vulnerable
Severity
+ High
Affected
+ 87.0-2
Fixed
Ticket
Advisory qualified
+ Yes
References
Notes
+ In general, these flaws cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts.