all InfoSec news
USN-6750-1: Thunderbird vulnerabilities
April 25, 2024, 3:24 a.m. |
Ubuntu security notices ubuntu.com
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass security restrictions, cross-site
tracing, or execute arbitrary code. (CVE-2024-2609, CVE-2024-3852,
CVE-2024-3864)
Bartek Nowotarski discovered that Thunderbird did not properly limit HTTP/2
CONTINUATION frames. An attacker could potentially exploit this issue to
cause a denial of service. (CVE-2024-3302)
Lukas Bernhard discovered that Thunderbird …
arbitrary code attacker browsing bypass code context cross-site cve cve-2024 denial of service exploit information restrictions security security issues sensitive sensitive information service thunderbird tracing usn vulnerabilities website
More from ubuntu.com / Ubuntu security notices
USN-6757-2: PHP vulnerabilities
1 day, 19 hours ago |
ubuntu.com
USN-6762-1: GNU C Library vulnerabilities
1 day, 22 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
2 days, 8 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
3 days, 12 hours ago |
ubuntu.com
USN-6761-1: Anope vulnerability
4 days, 3 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
4 days, 18 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
4 days, 21 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Network Security Administrator
@ Peraton | United States
IT Security Engineer 2
@ Oracle | BENGALURU, KARNATAKA, India
Sr Cybersecurity Forensics Specialist
@ Health Care Service Corporation | Chicago (200 E. Randolph Street)
Security Engineer
@ Apple | Hyderabad, Telangana, India
Cyber GRC & Awareness Lead
@ Origin Energy | Adelaide, SA, AU, 5000
Senior Security Analyst
@ Prenuvo | Vancouver, British Columbia, Canada