---

AVG-2710 - log back

AVG-2710 edited at 14 Oct 2022 18:17:03
Advisory qualified	- Yes + No

AVG-2710 created at 14 May 2022 19:54:17
Packages	+ thunderbird
Issues	+ CVE-2022-1520 + CVE-2022-29909 + CVE-2022-29911 + CVE-2022-29912 + CVE-2022-29913 + CVE-2022-29914 + CVE-2022-29916 + CVE-2022-29917
Status	+ Fixed
Severity	+ High
Affected	+ 91.8.1-1
Fixed	+ 91.9-1
Ticket
Advisory qualified	+ Yes
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2022-18/
Notes	+ "In general, these flaws cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts."