---

AVG-2518 - log back

AVG-2518 created at 03 Nov 2021 16:39:52
Packages	+ thunderbird
Issues	+ CVE-2021-38503 + CVE-2021-38504 + CVE-2021-38506 + CVE-2021-38507 + CVE-2021-38508 + CVE-2021-38509
Status	+ Fixed
Severity	+ High
Affected	+ 91.2.1-1
Fixed	+ 91.3.0-1
Ticket
Advisory qualified	+ Yes
References
Notes	+ In general, these flaws cannot be exploited through email because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. + + There are two further security issues with pending CVE assignments in the advisory (MOZ-2021-0007, MOZ-2021-0008).