Download
| Alert*
oval:org.secpod.oval:def:63629
Mozilla Thunderbird 68.9.0 : If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection. oval:org.secpod.oval:def:63630 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-22. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:503786 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.9.0. Security Fix: * Mozilla: Security downgrade with IMAP STARTTLS leads to information leakage * Mozilla: Use-after-free in SharedWorkerService * Mozilla: JavaScript Type confusion with ... oval:org.secpod.oval:def:503785 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.9.0. Security Fix: * Mozilla: Security downgrade with IMAP STARTTLS leads to information leakage * Mozilla: Use-after-free in SharedWorkerService * Mozilla: JavaScript Type confusion with ... oval:org.secpod.oval:def:503788 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.9.0. Security Fix: * Mozilla: Security downgrade with IMAP STARTTLS leads to information leakage * Mozilla: Use-after-free in SharedWorkerService * Mozilla: JavaScript Type confusion with ... oval:org.secpod.oval:def:64155 Multiple security issues have been found in Thunderbird which could result in the setup of a non-encrypted IMAP connection, denial of service or potentially the execution of arbitrary code. oval:org.secpod.oval:def:67036 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:63627 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-22. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:63628 Mozilla Thunderbird 68.9.0 : If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection. oval:org.secpod.oval:def:1502968 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502958 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:705540 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:604885 Multiple security issues have been found in Thunderbird which could result in the setup of a non-encrypted IMAP connection, denial of service or potentially the execution of arbitrary code. oval:org.secpod.oval:def:205584 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.9.0. Security Fix: * Mozilla: Security downgrade with IMAP STARTTLS leads to information leakage * Mozilla: Use-after-free in SharedWorkerService * Mozilla: JavaScript Type confusion with ... oval:org.secpod.oval:def:205585 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.9.0. Security Fix: * Mozilla: Security downgrade with IMAP STARTTLS leads to information leakage * Mozilla: Use-after-free in SharedWorkerService * Mozilla: JavaScript Type confusion with ... oval:org.secpod.oval:def:1700371 Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird CVE-2020-124 ... oval:org.secpod.oval:def:1502955 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:2106019 Oracle Solaris 11 - ( CVE-2020-12399 ) |