all InfoSec news
USN-5972-1: Thunderbird vulnerabilities
March 27, 2023, 3:18 a.m. |
Ubuntu security notices ubuntu.com
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass security restrictions, cross-site
tracing, or execute arbitrary code. (CVE-2023-25152, CVE-2023-28162,
CVE-2023-28176)
Lukas Bernhard discovered that Thunderbird did not properly manage memory
when invalidating JIT code while following an iterator. An attacker could
potentially exploits this issue to cause a denial of service. …
browsing bypass code context cross-origin cross-site cve denial of service exploit exploits iframe information issue jit manage memory origin restrictions security security issues sensitive information service thunderbird tracing url usn vulnerabilities website
More from ubuntu.com / Ubuntu security notices
USN-6686-5: Linux kernel (Intel IoTG) vulnerabilities
1 day, 7 hours ago |
ubuntu.com
USN-6715-1: unixODBC vulnerability
1 day, 7 hours ago |
ubuntu.com
USN-6719-1: util-linux vulnerability
1 day, 13 hours ago |
ubuntu.com
USN-6718-2: curl vulnerability
1 day, 13 hours ago |
ubuntu.com
USN-6718-1: curl vulnerabilities
1 day, 16 hours ago |
ubuntu.com
USN-6717-1: Thunderbird vulnerabilities
2 days, 19 hours ago |
ubuntu.com
USN-6588-2: PAM vulnerability
2 days, 20 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Information Technology Specialist II: Network Architect
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Cyber Consultant
@ Frazer-Nash Consultancy | Gloucester, England, United Kingdom
Senior Vulnerability Management Reporting & Analytics Developer
@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
Product Security Architect
@ ChargePoint | Italy