Gentoo update for Mozilla Thunderbird



Published: 2022-08-15 | Updated: 2022-09-25
Risk Critical
Patch available YES
Number of vulnerabilities 97
CVE-ID CVE-2021-29967
CVE-2021-29969
CVE-2021-29970
CVE-2021-29976
CVE-2021-29980
CVE-2021-29984
CVE-2021-29985
CVE-2021-29986
CVE-2021-29988
CVE-2021-29989
CVE-2021-30547
CVE-2021-38492
CVE-2021-38493
CVE-2021-38495
CVE-2021-38503
CVE-2021-38504
CVE-2021-38506
CVE-2021-38507
CVE-2021-38508
CVE-2021-38509
CVE-2021-40529
CVE-2021-4129
CVE-2021-4140
CVE-2021-43528
CVE-2021-43529
CVE-2021-43536
CVE-2021-43537
CVE-2021-43538
CVE-2021-43539
CVE-2021-43541
CVE-2021-43542
CVE-2021-43543
CVE-2021-43545
CVE-2021-43546
CVE-2022-0566
CVE-2022-1196
CVE-2022-1197
CVE-2022-1520
CVE-2022-1529
CVE-2022-1802
CVE-2022-1834
CVE-2022-2200
CVE-2022-2226
CVE-2022-22737
CVE-2022-22738
CVE-2022-22739
CVE-2022-22740
CVE-2022-22741
CVE-2022-22742
CVE-2022-22743
CVE-2022-22745
CVE-2022-22747
CVE-2022-22748
CVE-2022-22751
CVE-2022-22754
CVE-2022-22756
CVE-2022-22759
CVE-2022-22760
CVE-2022-22761
CVE-2022-22763
CVE-2022-22764
CVE-2022-24713
CVE-2022-26381
CVE-2022-26383
CVE-2022-26384
CVE-2022-26386
CVE-2022-26387
CVE-2022-26485
CVE-2022-26486
CVE-2022-28281
CVE-2022-28282
CVE-2022-28285
CVE-2022-28286
CVE-2022-28289
CVE-2022-29909
CVE-2022-29911
CVE-2022-29912
CVE-2022-29913
CVE-2022-29914
CVE-2022-29916
CVE-2022-29917
CVE-2022-31736
CVE-2022-31737
CVE-2022-31738
CVE-2022-31740
CVE-2022-31741
CVE-2022-31742
CVE-2022-31747
CVE-2022-34468
CVE-2022-34470
CVE-2022-34472
CVE-2022-34478
CVE-2022-34479
CVE-2022-34481
CVE-2022-34484
CVE-2022-36318
CVE-2022-36319
CWE-ID CWE-119
CWE-77
CWE-416
CWE-125
CWE-787
CWE-20
CWE-254
CWE-357
CWE-1021
CWE-327
CWE-200
CWE-704
CWE-451
CWE-835
CWE-94
CWE-347
CWE-122
CWE-264
CWE-664
CWE-400
CWE-284
CWE-367
CWE-399
CWE-457
CWE-388
CWE-939
CWE-190
CWE-79
Exploitation vector Network
Public exploit Public exploit code for vulnerability #7 is available.
Public exploit code for vulnerability #40 is available.
Vulnerability #68 is being exploited in the wild.
Vulnerability #69 is being exploited in the wild.
Public exploit code for vulnerability #70 is available.
Public exploit code for vulnerability #71 is available.
Vulnerable software
Subscribe
Gentoo Linux
Operating systems & Components / Operating system

mail-client/thunderbird-bin
Operating systems & Components / Operating system package or component

mail-client/thunderbird
Operating systems & Components / Operating system package or component

Vendor Gentoo

Security Bulletin

This security bulletin contains information about 97 vulnerabilities.

1) Buffer overflow

EUVDB-ID: #VU53707

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29967

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted webpage, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Command Injection

EUVDB-ID: #VU54829

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-29969

CWE-ID: CWE-77 - Command injection

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary commands.

The vulnerability exists in the way Thunderbird handles IMAP server responses sent prior to STARTTLS process. A remote attacker with ability to perform MitM attack can send arbitrary IMAP commands before the STARTTLS handshake and execute them after the handshake is complete.

This could have resulted in Thunderbird showing incorrect information, for example the attacker could have tricked Thunderbird to show folders that didn't exist on the IMAP server.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

3) Use-after-free

EUVDB-ID: #VU54678

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29970

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in accessibility features when processing HTML content. A remote attacker can track the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

4) Buffer overflow

EUVDB-ID: #VU54679

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29976

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

5) Memory corruption

EUVDB-ID: #VU55683

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29980

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in a canvas object. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

6) Buffer overflow

EUVDB-ID: #VU55682

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29984

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when performing JIT optimization. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

7) Use-after-free

EUVDB-ID: #VU55684

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29985

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a use-after-free error in media channels within the MediaCacheStream::NotifyDataReceived method. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

8) Buffer overflow

EUVDB-ID: #VU55678

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29986

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a race condition in getaddrinfowhen resolving DNS names. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Note, the vulnerability affects Linux systems only.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

9) Out-of-bounds read

EUVDB-ID: #VU55680

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29988

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a boundary condition when treating inline list-item element as a block element. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger an out-of-bounds read error and execute arbitrary code on the system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

10) Buffer overflow

EUVDB-ID: #VU55685

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29989

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

11) Out-of-bounds write

EUVDB-ID: #VU54002

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30547

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing untrusted HTML content in ANGLE. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

12) Input validation error

EUVDB-ID: #VU56373

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-38492

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to insufficient validation of user-supplied input when delegating navigations to the operating system. Firefox accept the mk scheme, which allows a remote attacker to launch pages and execute scripts in Internet Explorer in unprivileged mode.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

13) Buffer overflow

EUVDB-ID: #VU56374

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38493

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

14) Buffer overflow

EUVDB-ID: #VU56376

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38495

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

15) Security features bypass

EUVDB-ID: #VU57876

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38503

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the iframe sandbox rules were not correctly applied to XSLT stylesheets. A remote attacker can load use an iframe to bypass restrictions such as executing scripts or navigating the top-level frame.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

16) Use-after-free

EUVDB-ID: #VU57878

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38504

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when interacting with an HTML input element's file picker dialog with webkitdirectory set. A remote attacker can trick the victim to open a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

17) Insufficient UI Warning of Dangerous Operations

EUVDB-ID: #VU57880

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-38506

CWE-ID: CWE-357 - Insufficient UI Warning of Dangerous Operations

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attacks.

The vulnerability exists due to Firefox could have entered fullscreen mode without notification or warning to the user. A remote attacker can perform spoofing attacks on the browser UI.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

18) Security features bypass

EUVDB-ID: #VU57881

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-38507

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists in the Opportunistic Encryption feature of HTTP2, which allows a connection to be transparently upgraded to TLS while retaining the visual properties of an HTTP connection, including being same-origin with unencrypted connections on port 80. However, if a second encrypted port on the same IP address (e.g. port 8443) did not opt-in to opportunistic encryption; a network attacker could forward a connection from the browser from port 443 to port 8443, causing the browser to treat the content of port 8443 as same-origin with HTTP. As a result, a remote attacker can bypass Same-Origin-Policy on services hosted on other ports.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

19) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU57882

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-38508

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to Firefox displays the form validity message in the correct location at the same time as a permission prompt (such as for geolocation). The validity message could have obscured the prompt, resulting in the user potentially being tricked into granting the permission.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

20) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU57883

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-38509

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of an unusual sequence of attacker-controlled events. A remote attacker can display a Javascript alert() dialog with arbitrary (although unstyled) contents over top of arbitrary webpage of the attacker's choosing.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

21) Use of a broken or risky cryptographic algorithm

EUVDB-ID: #VU66482

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-40529

CWE-ID: CWE-327 - Use of a Broken or Risky Cryptographic Algorithm

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to incorrect ElGamal implementation in Botan, which allows plaintext recovery. A remote attacker can perform a cross-configuration attack against OpenPGP and recover encrypted data.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

22) Buffer overflow

EUVDB-ID: #VU58617

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-4129

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

23) Security features bypass

EUVDB-ID: #VU59373

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-4140

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error in iframe sandbox implementation when processing XSLT markup. A remote attacker can bypass iframe sandbox and execute arbitrary JavaScript code in context of arbitrary window.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

24) Security features bypass

EUVDB-ID: #VU58618

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43528

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to Thunderbird unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

25) Buffer overflow

EUVDB-ID: #VU59147

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-43529

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when handling DER-encoded DSA or RSA-PSS signatures within Mozilla NSS library, as used in Mozilla Thunderbird. A remote attacker can send specially crafted emails with signatures encoded within CMS, S/MIME, PKCS #7, or PKCS #12, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Note, this vulnerability is described separately from #VU58477 (CVE-2021-43527), as Mozilla has decided to issue different patches for Thunderbird and NSS library.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

26) Information disclosure

EUVDB-ID: #VU58585

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43536

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to URL leakage when executing asynchronous functions. A remote attacker can trick the victim to open a specially crafted web page and reveal the URL of the page that is being visited afterwards.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

27) Type conversion

EUVDB-ID: #VU58586

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-43537

CWE-ID: CWE-704 - Incorrect Type Conversion or Cast (Type Conversion)

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a type conversion error when processing sizes from 64bit to 32bit integers when using structured clone. A remote attacker can trick the victim to visit a specially crafted web page, trigger a heap-based buffer overflow and execute arbitrary code on the system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

28) Spoofing attack

EUVDB-ID: #VU58607

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-43538

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to a race in notification code. A remote attacker can hide the notification for pages that had received full screen and pointer lock access. Successful exploitation of the vulnerability may allow an attacker to perform spoofing attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

29) Use-after-free

EUVDB-ID: #VU58608

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-43539

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in GC rooting when calling wasm instance methods. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

30) Input validation error

EUVDB-ID: #VU58611

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43541

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to insufficient validation of user-supplied input when handling spaces in URLS with external protocol handlers. A remote attacker can trick the victim to click on a specially crafted link and pass unescaped input to a third-party application via URI handler.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

31) Information disclosure

EUVDB-ID: #VU58612

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43542

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the way Firefox handles XMLHttpRequest requests. A remote attacker can initiate a XMLHttpRequest and identify installed applications by probing error messages for loading external protocols.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

32) Security features bypass

EUVDB-ID: #VU58613

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-43543

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error when handling CSP policies. Documents loaded with the CSP sandbox directive can escape the sandbox's script restriction by embedding additional content.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

33) Infinite loop

EUVDB-ID: #VU58615

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43545

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop when using Location API. A remote attacker can consume all available system resources and cause denial of service conditions.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

34) Spoofing attack

EUVDB-ID: #VU58616

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43546

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data, when native cursor is zoomed. A remote attacker can perform cursor spoofing attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

35) Out-of-bounds write

EUVDB-ID: #VU60628

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-0566

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing email messages. A remote attacker can send a specially crafted email to the victim, trigger an out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

36) Use-after-free

EUVDB-ID: #VU61894

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-1196

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing HTML content after the VR Process is destroyed. A remote attacker can trick the victim to visit a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

37) Security features bypass

EUVDB-ID: #VU61943

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-1197

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists in OpenPGP revocation mechanisms, related to compromised keys. When importing a revoked key that specified key compromise as the revocation reason, Thunderbird did not update the existing copy of the key that was not yet revoked, and the existing key was kept as non-revoked. A remote attacker can sign messages with the revoked key and these messages will be displayed as valid and genuine.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

38) Spoofing attack

EUVDB-ID: #VU62808

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-1520

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data when processing signed and encrypted attached messages. If an email contains 2 attached messages, Thunderbird displays security status of the first opened attached message for the second attached message. As a result an attacker can spoof security status of the second attached message.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

39) Input validation error

EUVDB-ID: #VU63502

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-1529

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to insufficient validation of user-supplied input within the NotificationsDB module. A remote attacker can trick the victim to visit a specially crafted web page, which passes malicious messages to the parent process where the contents is used to double-index into a JavaScript object. As a result, an attacker can perform prototype pollution and execute arbitrary JavaScript code in the privileged parent process.

Successful exploitation of the vulnerability may allow an attacker to compromise the affected system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

40) Code Injection

EUVDB-ID: #VU63501

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-1802

CWE-ID: CWE-94 - Improper Control of Generation of Code ('Code Injection')

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to prototype pollution in Top-Level Await implementation. A remote attacker can trick the victim to visit a specially crafted website, corrupt the methods of an Array object in JavaScript via prototype pollution and execute arbitrary JavaScript code in a privileged context.

Successful exploitation of the vulnerability may allow an attacker to compromise the affected system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

41) Spoofing attack

EUVDB-ID: #VU63886

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-1834

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of multiple Braille Pattern Blank space characters, which results in displaying every space character. A remote attacker can spoof the email address of the sender.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

42) Code Injection

EUVDB-ID: #VU64762

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-2200

CWE-ID: CWE-94 - Improper Control of Generation of Code ('Code Injection')

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary JavaScript code.

The vulnerability exists due to improper input validation when handling JavaScript attributes. A remote attacker can pass undesired attributes to JavaScript object and perform prototype pollution and execute arbitrary JavaScript code in the browser.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

43) Improper Verification of Cryptographic Signature

EUVDB-ID: #VU64769

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-2226

CWE-ID: CWE-347 - Improper Verification of Cryptographic Signature

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to improper validation of digital signatures. When displaying an email that contains a digital signature, the email's date will be shown. If the dates were different, then Thunderbird didn't report the email as having an invalid signature. If an attacker performed a replay attack, in which an old email with old contents are resent at a later time, it could lead the victim to believe that the statements in the email are current.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

44) Use-after-free

EUVDB-ID: #VU59372

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22737

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a race condition playing audio files. A remote attacker can construct a specially crafted audio skin, trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

45) Heap-based buffer overflow

EUVDB-ID: #VU59371

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22738

CWE-ID: CWE-122 - Heap-based Buffer Overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in blendGaussianBlur when applying CSS filter. A remote attacker can trick the victim to open a specially crafted web page, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

46) Security features bypass

EUVDB-ID: #VU59381

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22739

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to missing throttling on external protocol launch dialog. A malicious websites can trick users into accepting launching a program to handle an external URL protocol.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

47) Use-after-free

EUVDB-ID: #VU59370

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22740

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in ChannelEventQueue::mOwner when releasing a network request handle. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

48) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU59369

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22741

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error resizing a popup while requesting fullscreen access. A remote attacker can trick the victim to open a specially crafted web page,  and make the browser unable to leave fullscreen mode.

Successful exploitation of the vulnerability may allow an attacker to perform spoofing attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

49) Out-of-bounds write

EUVDB-ID: #VU59368

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22742

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing untrusted input, when inserting text while in edit mode. A remote attacker can create a specially crafted website, trick the victim into opening it and insert specially crafted input in the edit mode, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

50) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU59367

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22743

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error when navigating from inside an iframe while requesting fullscreen access. A remote attacker can trick the victim to open a specially crafted web page,  and make the browser unable to leave fullscreen mode.

Successful exploitation of the vulnerability may allow an attacker to perform spoofing attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

51) Information disclosure

EUVDB-ID: #VU59377

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22745

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to Securitypolicyviolation events leak cross-origin information for frame-ancestors violations. A remote attacker can gain access to sensitive data.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

52) Input validation error

EUVDB-ID: #VU59379

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22747

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of empty pkcs7 sequence, passed as part of the certificate data. A remote attacker can pass specially crafted certificate to the application and perform a denial of service (DoS) attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

53) Spoofing attack

EUVDB-ID: #VU59376

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22748

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data. Malicious websites could have confused Firefox into showing the wrong origin when asking to launch a program and handling an external URL protocol.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

54) Buffer overflow

EUVDB-ID: #VU59382

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22751

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

55) Security restrictions bypass

EUVDB-ID: #VU60395

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22754

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists in the way Firefox handles extensions updates. A remote attacker can trick the victim to install a browser extension of a particular type and during auto-update bypass the prompt which grants the new version the new requested permissions. As a result an extension with limited permissions can be used to compromise the system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

56) Insufficient UI Warning of Dangerous Operations

EUVDB-ID: #VU60398

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22756

CWE-ID: CWE-357 - Insufficient UI Warning of Dangerous Operations

Exploit availability: No

Description

The vulnerability allows a remote attacker execute arbitrary code.

The vulnerability exists due to browser fails to properly identify a malicious file during drag and drop operations. A remote attacker can trick the victim to drag and drop an image to their desktop or other folder and change the resulting object into an executable script which will be executed after the user clicked on it.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

57) Sandbox restrictions bypass

EUVDB-ID: #VU60406

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22759

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the way iframes are handled by the browser. If a document created a sandboxed iframe without allow-scripts, and subsequently appended an element to the iframe's document that e.g. had a JavaScript event handler - the event handler would have run despite the iframe's sandbox.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

58) Information disclosure

EUVDB-ID: #VU60409

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22760

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the way Firefox displays error messages in cross-origin responses, when importing resources using Web Workers. A remote attacker can distinguish the difference between application/javascript responses and non-script responses and learn information cross-origin.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

59) Security features bypass

EUVDB-ID: #VU60411

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22761

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform unauthorized actions.

The vulnerability exists due to frame-ancestors Content Security Policy directive was not enforced for framed extension pages (pages with a moz-extension:// scheme). A remote attacker perform unauthorized actions.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

60) Improper control of a resource through its lifetime

EUVDB-ID: #VU60414

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22763

CWE-ID: CWE-664 - Improper control of a resource through its lifetime

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error when handling script execution during invalid object state. A remote attacker can cause a script to run late in the lifecycle, at a point after where it should not be possible.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

61) Buffer overflow

EUVDB-ID: #VU60413

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22764

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

62) Resource exhaustion

EUVDB-ID: #VU61895

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-24713

CWE-ID: CWE-400 - Resource exhaustion

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (ReDoS) attack.

The vulnerability exists due regex for Rust does not properly control consumption of internal resources when parsing untrusted input. A remote attacker can pass specially crafted data to the application and perform a regular expression denial of service (ReDoS) attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

63) Use-after-free

EUVDB-ID: #VU61105

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-26381

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing HTML content A remote attacker can trigger a use-after-free by forcing a text reflow in an SVG object and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

64) Insufficient UI Warning of Dangerous Operations

EUVDB-ID: #VU61102

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-26383

CWE-ID: CWE-357 - Insufficient UI Warning of Dangerous Operations

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error when resizing a popup after requesting fullscreen access. The popup would not display the fullscreen notification, which allows a remote attacker to perform spoofing attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

65) Security restrictions bypass

EUVDB-ID: #VU61103

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-26384

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to a logic error when processing iframes. If an attacker can control the contents of an iframe sandboxed with allow-popups but not allow-scripts, it is possible to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

66) Improper access control

EUVDB-ID: #VU61109

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-26386

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a local user to gain access to victim's downloads.

The vulnerability exists due to browser stores files in the /tmp folder, which is accessible by all local users. A local user can read files from this folder and gain access to potentially sensitive information.

Note, the vulnerability affects Firefox ESR on macOS and Linux.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

67) Time-of-check Time-of-use (TOCTOU) Race Condition

EUVDB-ID: #VU61104

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-26387

CWE-ID: CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to a race condition when verifying signatures during Firefox add-on installation. A remote attacker can replace the underlying add-on file while the user was confirming the prompt and install a malicious add-on on the system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

68) Use-after-free

EUVDB-ID: #VU61032

Risk: Critical

CVSSv3.1:

CVE-ID: CVE-2022-26485

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing XSLT parameter. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Note, the vulnerability is being actively exploited in the wild.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

69) Use-after-free

EUVDB-ID: #VU61033

Risk: Critical

CVSSv3.1:

CVE-ID: CVE-2022-26486

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing messages in the WebGPU IPC framework. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Note, the vulnerability is being actively exploited in the wild.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

70) Out-of-bounds write

EUVDB-ID: #VU61885

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-28281

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when handling an unexpected number of WebAuthN Extensions in a Register command to the parent process. A remote attacker can create a specially crafted web page, trick the victim into opening it using the affected software, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

71) Use-after-free

EUVDB-ID: #VU61886

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-28282

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing links with rel="localization". A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

72) Resource management error

EUVDB-ID: #VU61889

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-28285

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to usage of incorrect AliasSet when generating the assembly code for MLoadTypedArrayElementHole. A remote attacker can abuse this along with another vulnerability to perform an out-of-bounds read.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

73) Spoofing attack

EUVDB-ID: #VU61890

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-28286

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data. Due to a layout change, iframe contents can be rendered outside of its border.  A remote attacker can spoof page content.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

74) Buffer overflow

EUVDB-ID: #VU61892

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-28289

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

75) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU62757

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-29909

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due improper management of permissions within the application. Documents in deeply-nested cross-origin browsing contexts can obtain permissions granted to the top-level origin. A remote attacker can create a web page that bypasses the existing browser prompt and wrongfully inherits the top-level permissions.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

76) Security features bypass

EUVDB-ID: #VU62759

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-29911

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to improper protection for the top-level navigation for an iframe sandbox with a policy relaxed through a keyword like allow-top-navigation-by-user-activation. A remote attacker can abuse this to bypass implemented sandboxing restrictions of loaded iframes.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

77) Security features bypass

EUVDB-ID: #VU62760

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-29912

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to requests initiated through reader mode did not properly omit cookies with a SameSite attribute. A remote attacker can intercept cookies with SameSite attribute set.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

78) Resource management error

EUVDB-ID: #VU62809

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-29913

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to improper management of internal resources when handling Speech Synthesis feature. The parent process does not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child process.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

79) Insufficient UI warning of dangerous operations

EUVDB-ID: #VU62756

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-29914

CWE-ID: CWE-357 - Insufficient UI Warning of Dangerous Operations

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error when reusing existing popups. A remote attacker can trick the victim to visit a specially crated website and abuse the popups to cover the fullscreen notification UI, which can allow browser spoofing attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

80) Information disclosure

EUVDB-ID: #VU62758

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-29916

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to browsers behaves differently when loading CSS from known resources involving CSS variables. A remote attacker can monitor browser behavior to guess which websites were previously visited and are stored in browser history.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

81) Buffer overflow

EUVDB-ID: #VU62763

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-29917

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

82) Information disclosure

EUVDB-ID: #VU63872

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-31736

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error when processing HTTP requests. A malicious website can obtain the size of a cross-origin resource that supported Range requests.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

83) Out-of-bounds write

EUVDB-ID: #VU63873

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-31737

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error in WebGL when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it using the affected software, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

84) Spoofing attack

EUVDB-ID: #VU63874

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-31738

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error when exiting fullscreen mode. A remote attacker can use an iframe to confused the browser about the current state of fullscreen and perform spoofing attack.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

85) Buffer overflow

EUVDB-ID: #VU63876

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-31740

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error related to register allocation problem in WASM on arm64. A remote attacker can create a specially crafted webpage, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

86) Use of Uninitialized Variable

EUVDB-ID: #VU63877

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-31741

CWE-ID: CWE-457 - Use of Uninitialized Variable

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted webpage, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

87) Information disclosure

EUVDB-ID: #VU63878

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-31742

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to an error when handling a large number of allowCredential entries. A remote attacker can trick the victim to visit a specially crafted website, launch a timing attack and detect the difference between invalid key handles and cross-origin key handles. Successful exploitation of the vulnerability can lead to cross-origin account linking in violation of WebAuthn goals.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

88) Buffer overflow

EUVDB-ID: #VU63879

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-31747

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

89) Security features bypass

EUVDB-ID: #VU64752

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-34468

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to improper handling of the CSP sandbox header without "allow-scripts" option. A remote attacker use an iframe to bypass implemented CSP restriction and execute scripts if the user clicks on a javascript: link.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

90) Use-after-free

EUVDB-ID: #VU64751

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-34470

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in nsSHistory when handling XML documents. A remote attacker can trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

91) Error Handling

EUVDB-ID: #VU64760

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-34472

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a remote attacker to influence browser behavior.

The vulnerability exists due to improper error handling when processing unavailable PAC file. If a PAC URL is set and the server that hosts the PAC is unreachable, OCSP requests are blocked, resulting in incorrect error pages being shown.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

92) Improper Authorization in Handler for Custom URL Scheme

EUVDB-ID: #VU64761

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-34478

CWE-ID: CWE-939 - Improper Authorization in Handler for Custom URL Scheme

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to insecure usage of URI handlers that allow usage of ms-msdt, search, and search-ms protocols. A remote attacker can trick the victim to click on a specially crafted link and execute arbitrary code on the system, if the victim accepts the browser prompt.

The vulnerability affects Firefox on Windows.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

93) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU64750

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-34479

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to improper handling of resizing event for a popup window. A remote attacker can create a specially crafted website that can create a resized popup to overlay the address bar with its own content and perform spoofing attack.

Note, the vulnerability affects Linux installations only.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

94) Integer overflow

EUVDB-ID: #VU64756

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-34481

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow in the nsTArray_Impl::ReplaceElementsAt() function. A remote attacker can trick the victim to visit a specially crafted website, trigger an integer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

95) Buffer overflow

EUVDB-ID: #VU64763

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-34484

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

96) Cross-site scripting

EUVDB-ID: #VU65795

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-36318

CWE-ID: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Exploit availability: No

Description

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data when visiting directory listings for chrome:// URLs as source text. A remote attacker can execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

97) Spoofing attack

EUVDB-ID: #VU65793

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-36319

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error, related to mouse pointer positioning when combining CSS properties for overflow and transform. A remote attacker can trick the victim into interacting with mouse cursor with different coordinates than displayed.

Mitigation

Update the affected packages.
mail-client/thunderbird to version: 91.12.0
mail-client/thunderbird-bin to version: 91.12.0

Vulnerable software versions

Gentoo Linux: All versions

mail-client/thunderbird-bin: before 91.12.0

mail-client/thunderbird: before 91.12.0


CPE2.3 External links

http://security.gentoo.org/glsa/202208-14

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###