CVE-2022-26387 log

Severity High
Remote Unknown
Type Unknown
When installing an add-on, Thunderbird verified the signature before prompting the user; but while the user was confirming the prompt, the underlying add-on file could have been modified and Thunderbird would not have noticed.
Group Package Affected Fixed Severity Status Ticket
AVG-2714 firefox 97.0.2-1 98.0-1 High Fixed
AVG-2713 thunderbird 91.6.2-1 91.7.0-1 High Fixed