SUSE update for MozillaThunderbird
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 17 |
| CVE-ID | CVE-2022-42927 CVE-2022-42928 CVE-2022-42929 CVE-2022-42932 CVE-2022-45403 CVE-2022-45404 CVE-2022-45405 CVE-2022-45406 CVE-2022-45408 CVE-2022-45409 CVE-2022-45410 CVE-2022-45411 CVE-2022-45412 CVE-2022-45416 CVE-2022-45418 CVE-2022-45420 CVE-2022-45421 |
| CWE-ID | CWE-254 CWE-119 CWE-399 CWE-200 CWE-451 CWE-416 CWE-125 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
SUSE Enterprise Storage Operating systems & Components / Operating system SUSE Manager Retail Branch Server Operating systems & Components / Operating system SUSE Linux Enterprise Workstation Extension Operating systems & Components / Operating system SUSE Manager Server Operating systems & Components / Operating system SUSE Manager Proxy Operating systems & Components / Operating system SUSE Linux Enterprise Desktop Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications Operating systems & Components / Operating system SUSE Linux Enterprise Server Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing Operating systems & Components / Operating system SUSE Linux Enterprise Module for Packagehub Subpackages Operating systems & Components / Operating system package or component MozillaThunderbird-translations-other Operating systems & Components / Operating system package or component MozillaThunderbird-translations-common Operating systems & Components / Operating system package or component MozillaThunderbird-debugsource Operating systems & Components / Operating system package or component MozillaThunderbird-debuginfo Operating systems & Components / Operating system package or component MozillaThunderbird Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 17 vulnerabilities.
1) Security features bypass
EUVDB-ID: #VU68405
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-42927
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to same-origin policy violation in the performance.getEntries() method. A remote attacker can trick the victim to open a specially crafted website and gain obtain cross-origin URL entries.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Buffer overflow
EUVDB-ID: #VU68406
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-42928
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in Garbage Collector within the JS engine. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Resource management error
EUVDB-ID: #VU68407
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-42929
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper management of internal resources within the application when handling window.print() events. A remote attacker trick the victim to open a specially crafted website and perform a denial of service (DoS) attack.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Buffer overflow
EUVDB-ID: #VU68408
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-42932
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when handling HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Information disclosure
EUVDB-ID: #VU69319
Risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45403
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to an error in Service Workers. A remote attacker can obtain information about the presence or length of a media file using timing information for cross-origin media combined with Range requests.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Spoofing attack
EUVDB-ID: #VU69320
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45404
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to incorrect processing of a series of popup and window.print() calls. A remote attacker can force the browser to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Use-after-free
EUVDB-ID: #VU69321
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45405
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error within the InputStream implementation. A remote attacker can trick the victim to visit a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Use-after-free
EUVDB-ID: #VU69322
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45406
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error when handling JavaScript realms. A remote attacker can trick the victim to visit a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Spoofing attack
EUVDB-ID: #VU69324
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45408
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to incorrect processing of a series of popups that reuse windowName. A remote attacker can force the browser to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Use-after-free
EUVDB-ID: #VU69325
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45409
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error in Garbage Collection. A remote attacker can trick the victim to visit a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Security features bypass
EUVDB-ID: #VU69326
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45410
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to an error when handling ServiceWorker-intercepted requests. When a ServiceWorker intercepted a request with FetchEvent, the origin of the request was lost after the ServiceWorker took ownership of it. This had the effect of negating SameSite cookie protections.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Cross-site tracing
EUVDB-ID: #VU69327
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45411
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to an error when handling non-standard headers. Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization headers and cookies inaccessible to JavaScript (such as cookies protected by HTTPOnly). To mitigate this attack, browsers placed limits on fetch() and XMLHttpRequest; however some webservers have implemented non-standard headers such as X-Http-Method-Override
that override the HTTP method, and made this attack possible again.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
13) Out-of-bounds read
EUVDB-ID: #VU69328
Risk: Low
CVSSv3.1: 2.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45412
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition when resolving a symlink such as file:///proc/self/fd/1. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger out-of-bounds read error and read contents of unitialized memory via an error message.
Note, this vulnerability does not affect Windows installations.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
14) Security features bypass
EUVDB-ID: #VU69331
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45416
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to keystroke side-channel leakage. Keyboard events reference strings like "KeyA" that were at fixed, known, and widely-spread addresses. Cache-based timing attacks such as Prime+Probe could have possibly figured out which keys were being pressed.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
15) Spoofing attack
EUVDB-ID: #VU69333
Risk: Low
CVSSv3.1: 3.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45418
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to incorrect processing of custom mouse cursor. A remote attacker can draw a custom mouse cursor, specified in CSS, over the browser UI, resulting in potential user confusion or spoofing attacks.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
16) Spoofing attack
EUVDB-ID: #VU69335
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45420
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to incorrect processing of tables inside of an iframe. A remote attacker can cause iframe contents to be rendered outside the boundaries of the iframe, resulting in potential user confusion or spoofing attacks.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
17) Buffer overflow
EUVDB-ID: #VU69336
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-45421
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2 - 4.3
SUSE Linux Enterprise Workstation Extension: 15-SP3 - 15-SP4
SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3 - 15-SP4
SUSE Manager Server: 4.2 - 4.3
SUSE Manager Proxy: 4.2 - 4.3
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
openSUSE Leap: 15.3 - 15.4
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
SUSE Linux Enterprise Server: 15-SP3 - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-SP3 - 15-SP4
MozillaThunderbird-translations-other: before 102.5.0-150200.8.90.1
MozillaThunderbird-translations-common: before 102.5.0-150200.8.90.1
MozillaThunderbird-debugsource: before 102.5.0-150200.8.90.1
MozillaThunderbird-debuginfo: before 102.5.0-150200.8.90.1
MozillaThunderbird: before 102.5.0-150200.8.90.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
