all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-6563-1: Thunderbird vulnerabilities

Add to bookmarks
Jan. 2, 2024, 9:28 a.m. |

Ubuntu security notices ubuntu.com

Multiple security issues were discovered in Thunderbird. If a user were
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass security restrictions, cross-site
tracing, or execute arbitrary code.(CVE-2023-6857, CVE-2023-6858,
CVE-2023-6859, CVE-2023-6861, CVE-2023-6862, CVE-2023-6863, CVE-2023-6864)

Marcus Brinkmann discovered that Thunderbird did not properly parse a PGP/MIME
payload that contains digitally signed text. An attacker could potentially
exploit this issue to spoof an email …

arbitrary code attacker browsing bypass code context cross-site cve denial of service exploit information marcus marcus brinkmann restrictions security security issues sensitive sensitive information service thunderbird tracing usn vulnerabilities website

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6777-2: Linux kernel (Azure) vulnerabilities 5 hours ago | ubuntu.com
attacker azure broadcom crash +20
USN-6766-3: Linux kernel (AWS) vulnerabilities 6 hours ago | ubuntu.com
action attacker aws conditions +19
USN-6778-1: Linux kernel vulnerabilities 4 days, 1 hour ago | ubuntu.com
attacker broadcom crash cve +20
USN-6777-1: Linux kernel vulnerabilities 4 days, 2 hours ago | ubuntu.com
attacker broadcom crash cve +20
USN-6776-1: Linux kernel vulnerabilities 4 days, 2 hours ago | ubuntu.com
attacker broadcom crash cve +20
USN-6775-1: Linux kernel vulnerabilities 4 days, 3 hours ago | ubuntu.com
attacker broadcom crash cve +20
USN-6774-1: Linux kernel vulnerabilities 4 days, 5 hours ago | ubuntu.com
attacker broadcom crash cve +18
USN-6773-1: .NET vulnerabilities 4 days, 5 hours ago | ubuntu.com
attacker code code execution cve +10
USN-6766-2: Linux kernel vulnerabilities 5 days, 4 hours ago | ubuntu.com
action attacker conditions crash +19

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Senior Application Security Engineer

@ Austin Community College | HMO99: Field Office - MO Remote Location, Remote City, MO, 65043 USA
View on infosec-jobs.com

Sr. Information Assurance Security Analyst

@ SMS Data Products Group, Inc. | San Antonio, TX, United States
View on infosec-jobs.com

Product Cybersecurity Test Infrastructure Engineer (Remote)

@ SNC-Lavalin | HCT99: Field Office - CT Remote Location, Remote City, CT, 06101 USA
View on infosec-jobs.com