Gentoo update for Mozilla Thunderbird
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 51 |
| CVE-ID | CVE-2024-5693 CVE-2024-5696 CVE-2024-5700 CVE-2024-6601 CVE-2024-6602 CVE-2024-6603 CVE-2024-6604 CVE-2024-7518 CVE-2024-7519 CVE-2024-7520 CVE-2024-7521 CVE-2024-7522 CVE-2024-7523 CVE-2024-7524 CVE-2024-7525 CVE-2024-7526 CVE-2024-7527 CVE-2024-7528 CVE-2024-7529 CVE-2024-7531 CVE-2024-8381 CVE-2024-8382 CVE-2024-8383 CVE-2024-8384 CVE-2024-8385 CVE-2024-8386 CVE-2024-8387 CVE-2024-8389 CVE-2024-8394 CVE-2024-8900 CVE-2024-9391 CVE-2024-9392 CVE-2024-9395 CVE-2024-9396 CVE-2024-9397 CVE-2024-9399 CVE-2024-9400 CVE-2024-9401 CVE-2024-9402 CVE-2024-9403 CVE-2024-10458 CVE-2024-10459 CVE-2024-10460 CVE-2024-10461 CVE-2024-10462 CVE-2024-10463 CVE-2024-10464 CVE-2024-10465 CVE-2024-10466 CVE-2024-10467 CVE-2024-10468 |
| CWE-ID | CWE-254 CWE-119 CWE-362 CWE-450 CWE-125 CWE-843 CWE-416 CWE-264 CWE-908 CWE-310 CWE-749 CWE-939 CWE-1021 CWE-451 CWE-357 CWE-20 CWE-400 CWE-79 CWE-200 CWE-399 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #21 is available. |
| Vulnerable software |
Gentoo Linux Operating systems & Components / Operating system mail-client/thunderbird-bin Operating systems & Components / Operating system package or component mail-client/thunderbird Operating systems & Components / Operating system package or component |
| Vendor | Gentoo |
Security Bulletin
This security bulletin contains information about 51 vulnerabilities.
1) Security features bypass
EUVDB-ID: #VU91734
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-5693
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to Offscreen Canvas does not properly track cross-origin tainting. A remote attacker can access image data from another site in violation of same-origin policy.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Buffer overflow
EUVDB-ID: #VU91737
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-5696
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing the text in an <input> tag. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Buffer overflow
EUVDB-ID: #VU91738
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-5700
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Race condition
EUVDB-ID: #VU93895
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-6601
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to a race condition in permission assignment. A remote attacker can trick the victim to visit a specially crafted website, bypass cross-origin container obtaining permissions of the top-level origin and gain access to sensitive information.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Buffer overflow
EUVDB-ID: #VU93896
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-6602
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in NSS. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Buffer overflow
EUVDB-ID: #VU93897
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-6603
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error in thread creation. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and crash the browser.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Buffer overflow
EUVDB-ID: #VU93898
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-6604
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Multiple Interpretations of UI Input
EUVDB-ID: #VU95420
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7518
CWE-ID:
CWE-450 - Multiple Interpretations of UI Input
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exist due to improper input interpretation in UI when handling select options. A remote attacler can obscure the fullscreen notification dialog by document content and perform spoofing attack.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Out-of-bounds read
EUVDB-ID: #VU95422
Risk: High
CVSSv4.0: 6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-7519
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a boundary error when processing
graphics shared memory. A remote attacker can create a specially crafted
website, trick the victim into opening it, trigger an out-of-bounds read and bypass browser sandbox.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Type Confusion
EUVDB-ID: #VU95423
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-7520
CWE-ID:
CWE-843 - Type confusion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a type confusion error in WebAssembly. A remote attacker can trick the victim to visit a specially crafted website, trigger a type confusion error and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Use-after-free
EUVDB-ID: #VU95424
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-7521
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error in WebAssembly. A remote attacker can trick the victim to visit a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Out-of-bounds read
EUVDB-ID: #VU95431
Risk: High
CVSSv4.0: 6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-7522
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
Description
The vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a boundary error in editor component. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger an out-of-bounds read and bypass browser sandbox.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
13) Multiple Interpretations of UI Input
EUVDB-ID: #VU95493
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7523
CWE-ID:
CWE-450 - Multiple Interpretations of UI Input
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to an error when handling select options, which can obscure security prompts. A remote attacker can trick a victim into granting permissions.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
14) Security features bypass
EUVDB-ID: #VU95494
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7524
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass CSP policy.
Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. On a site protected by Content Security Policy in "strict-dynamic" mode, an attacker able to inject an HTML element could have used a DOM Clobbering attack on some of the shims and achieved XSS, bypassing the CSP strict-dynamic protection.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
15) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU95495
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7525
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due missing permission check when creating a StreamFilter. A web extension with minimal permissions can create a StreamFilter, which can be used to read and modify the response body of requests on any site.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
16) Use of uninitialized resource
EUVDB-ID: #VU95496
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7526
CWE-ID:
CWE-908 - Use of Uninitialized Resource
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass certain security restrictions.
The vulnerability exists due to usage of uninitialized resources in WebGL ANGLE. A remote attacker can trick the victim to visit a specially crafted website and gain access to sensitive information.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
17) Use-after-free
EUVDB-ID: #VU95497
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-7527
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error in JavaScript garbage collection. A remote attacker can trick the victim into visiting a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
18) Use-after-free
EUVDB-ID: #VU95498
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-7528
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error in IndexedDB. A remote attacker can trick the victim into visiting a specially
crafted website, trigger a use-after-free error and execute arbitrary
code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
19) Multiple Interpretations of UI Input
EUVDB-ID: #VU95500
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7529
CWE-ID:
CWE-450 - Multiple Interpretations of UI Input
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exist due to improper handling of the date picker, which can obscure security prompts. A remote attacker use a malicious site to trick a victim into granting permissions.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
20) Cryptographic issues
EUVDB-ID: #VU95501
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-7531
CWE-ID:
CWE-310 - Cryptographic Issues
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
Calling PK11_Encrypt() in NSS using CKM_CHACHA20 and the same buffer for input and output can result in plaintext on an Intel Sandy Bridge processor. In Firefox this only affects the QUIC header protection feature when the connection is using the ChaCha20-Poly1305 cipher suite. The most likely outcome is connection failure, but if the connection persists despite the high packet loss it could be possible for a network observer to identify packets as coming from the same source despite a network path change.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
21) Type Confusion
EUVDB-ID: #VU96735
Risk: High
CVSSv4.0: 7.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber]
CVE-ID: CVE-2024-8381
CWE-ID:
CWE-843 - Type confusion
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a type confusion error when looking up a property name in a "with" block. A remote attacker can trick the victim into visiting a specially crafted website, trigger a type confusion error and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
22) Exposed dangerous method or function
EUVDB-ID: #VU96736
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-8382
CWE-ID:
CWE-749 - Exposed Dangerous Method or Function
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to internal browser event interfaces are exposed to web content when privileged EventHandler listener callbacks ran for those events. A remote attacker can indicate usage of certain browser features, such as when a user opens the Dev Tools console.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
23) Improper Authorization in Handler for Custom URL Scheme
EUVDB-ID: #VU96737
Risk: Medium
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-8383
CWE-ID:
CWE-939 - Improper Authorization in Handler for Custom URL Scheme
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a missing confirmation dialog when opening the Usenet-related schemes "news:" and "snews:". A remote attacker can trick the victim into downloading a malicious application that can be launched at will without any additional prompts.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
24) Buffer overflow
EUVDB-ID: #VU96738
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-8384
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in JavaScript garbage collector when HTML content. A remote attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
25) Type Confusion
EUVDB-ID: #VU96733
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-8385
CWE-ID:
CWE-843 - Type confusion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a type confusion error when handling StructFields and ArrayTypes in WASM. A remote attacker can trick the victim into visiting a specially crafted website, trigger a type confusion error and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
26) Improper Restriction of Rendered UI Layers or Frames
EUVDB-ID: #VU96741
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-8386
CWE-ID:
CWE-1021 - Improper Restriction of Rendered UI Layers or Frames
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to an error when displaying SelectElements popup if a site had been granted the permission to open popup windows. A remote attacker can perform spoofing attack.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
27) Buffer overflow
EUVDB-ID: #VU96740
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-8387
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
28) Buffer overflow
EUVDB-ID: #VU96739
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-8389
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
29) Use-after-free
EUVDB-ID: #VU96942
Risk: Low
CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-8394
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a use-after-free error when aborting verification of an OTR chat session. A remote attacker can crash the application.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
30) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU97920
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-8900
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to application does not properly impose security restrictions. A remote attacker can write data to the user's clipboard, bypassing the user prompt, during a certain sequence of navigational events.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
31) Improper Restriction of Rendered UI Layers or Frames
EUVDB-ID: #VU97927
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-9391
CWE-ID:
CWE-1021 - Improper Restriction of Rendered UI Layers or Frames
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to an error when exiting fullscreen mode. A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
32) Security features bypass
EUVDB-ID: #VU97916
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-9392
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to an unspecified error. A compromised content process perform arbitrary loading of cross-origin pages.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
33) Spoofing attack
EUVDB-ID: #VU97928
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-9395
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to incorrect processing of filenames. A specially crafted filename containing a large number of spaces could obscure the file's extension when displayed in the download dialog.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
34) Buffer overflow
EUVDB-ID: #VU97921
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-9396
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when cloning certain objects. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
35) Insufficient UI Warning of Dangerous Operations
EUVDB-ID: #VU97922
Risk: Low
CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-9397
CWE-ID:
CWE-357 - Insufficient UI Warning of Dangerous Operations
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform clickjacking attacks.
The vulnerability exists due to a missing delay in directory upload UI. A remote attacker can trick a user into granting permission via clickjacking.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
36) Input validation error
EUVDB-ID: #VU97924
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-9399
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input when handling WebTransport. A remote attacker can trick the victim into visiting a specially crafted website and crash the browser.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
37) Resource exhaustion
EUVDB-ID: #VU97925
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-9400
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources during JIT compilation. A remote attacker can crash the browser.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
38) Buffer overflow
EUVDB-ID: #VU97919
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-9401
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into visiting it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
39) Buffer overflow
EUVDB-ID: #VU97926
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-9402
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
40) Buffer overflow
EUVDB-ID: #VU97929
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-9403
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
41) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU99480
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-10458
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to a permission leak via embed or object elements. A remote attacker can create a specially crafted webpage that embeds a trusted website and force the browser to inherit permissions from this trusted website.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
42) Use-after-free
EUVDB-ID: #VU99481
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-10459
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error in layout with accessibility. A remote attacker can trick the victim into visiting a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
43) Insufficient UI Warning of Dangerous Operations
EUVDB-ID: #VU99484
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-10460
CWE-ID:
CWE-357 - Insufficient UI Warning of Dangerous Operations
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to the origin of an external protocol handler prompt can be obscured using a "data:" URL within an iframe. A remote attacker can perform spoofing attack.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
44) Universal cross-site scripting
EUVDB-ID: #VU99485
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-10461
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionThe disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data when handling multipart/x-mixed-replace responses. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of any website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
45) Spoofing attack
EUVDB-ID: #VU99486
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-10462
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to the browser truncates long URLs when displaying origin of permission prompt. A remote attacker can perform a spoofing attack by providing an overly long URL that looks like a trusted domain name.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
46) Information disclosure
EUVDB-ID: #VU99482
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-10463
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a cross-origin video frame leak. A remote attacker can trick the victim into visiting a specially crafted website and access video frames cross-origin from a different browser tab.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
47) Resource management error
EUVDB-ID: #VU99487
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-10464
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to repeated writes to history interface attributes. A remote attacker can crash the browser.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
48) Insufficient UI Warning of Dangerous Operations
EUVDB-ID: #VU99488
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-10465
CWE-ID:
CWE-357 - Insufficient UI Warning of Dangerous Operations
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to a clipboard "paste" button persists across different tabs. A remote attacker can trick the victim into pasting content into a malicious tab.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
49) Resource management error
EUVDB-ID: #VU99489
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-10466
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper management of internal resources within the application when handling DOM push subscriptions. A remote attacker can send specially crafted data to the browser and crash it.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
50) Buffer overflow
EUVDB-ID: #VU99490
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-10467
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
51) Race condition
EUVDB-ID: #VU99491
Risk: Medium
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-10468
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a race condition in IndexedDB. A remote attacker can trick the victim into visiting a specially crafted website and execute arbitrary code on the system.
Update the affected packages.
mail-client/thunderbird to version: 128.4.0
mail-client/thunderbird-bin to version: 128.4.0
Gentoo Linux: All versions
mail-client/thunderbird-bin: before 128.4.0
mail-client/thunderbird: before 128.4.0
CPE2.3- cpe:2.3:o:gentoo:gentoo_linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird-bin:*:*:*:*:*:gentoo_linux:*:*
- cpe:2.3:o:gentoo:mail-client_thunderbird:*:*:*:*:*:gentoo_linux:*:*
https://security.gentoo.org/glsa/202412-06
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
