all InfoSec news
USN-6717-1: Thunderbird vulnerabilities
March 26, 2024, 8:51 a.m. |
Ubuntu security notices ubuntu.com
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass security restrictions, cross-site
tracing, or execute arbitrary code. (CVE-2024-0743, CVE-2024-2611,
CVE-2024-2614)
Hubert Kario discovered that Thunderbird had a timing side-channel when
performing RSA decryption. A remote attacker could possibly use this
issue to recover sensitive information. (CVE-2023-5388)
Gary Kwong discovered that Thunderbird …
arbitrary code attacker browsing bypass code context cross-site cve denial of service exploit information restrictions security security issues sensitive sensitive information service thunderbird tracing usn vulnerabilities website
More from ubuntu.com / Ubuntu security notices
USN-6754-1: nghttp2 vulnerabilities
1 day, 8 hours ago |
ubuntu.com
USN-6753-1: CryptoJS vulnerability
1 day, 10 hours ago |
ubuntu.com
USN-6751-1: Zabbix vulnerabilities
1 day, 10 hours ago |
ubuntu.com
USN-6752-1: FreeRDP vulnerabilities
1 day, 16 hours ago |
ubuntu.com
USN-6750-1: Thunderbird vulnerabilities
2 days, 3 hours ago |
ubuntu.com
USN-6743-3: Linux kernel (Azure) vulnerabilities
2 days, 8 hours ago |
ubuntu.com
USN-6657-2: Dnsmasq vulnerabilities
2 days, 11 hours ago |
ubuntu.com
USN-6749-1: FreeRDP vulnerabilities
2 days, 13 hours ago |
ubuntu.com
USN-6748-1: Sanitize vulnerabilities
3 days, 1 hour ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Senior InfoSec Manager - Risk and Compliance
@ Federal Reserve System | Remote - Virginia
Security Analyst
@ Fortra | Mexico
Incident Responder
@ Babcock | Chester, GB, CH1 6ER
Vulnerability, Access & Inclusion Lead
@ Monzo | Cardiff, London or Remote (UK)
Information Security Analyst
@ Unissant | MD, USA