Re: [blfs-book] [BLFS Trac] #14329: thunderbird-78.6.0

BLFS Trac via blfs-book Fri, 25 Dec 2020 20:22:35 -0800

#14329: thunderbird-78.6.0
-------------------------+-----------------------
 Reporter:  bdubbs       |       Owner:  renodr
     Type:  enhancement  |      Status:  assigned
 Priority:  high         |   Milestone:  10.1
Component:  BOOK         |     Version:  SVN
 Severity:  normal       |  Resolution:
 Keywords:               |
-------------------------+-----------------------


Comment (by renodr):

 For 78.5.1

 {{{

 Mozilla Foundation Security Advisory 2020-53
 Security Vulnerabilities fixed in Thunderbird 78.5.1

 Announced
     December 1, 2020
 Impact
     high
 Products
     Thunderbird
 Fixed in

         Thunderbird 78.5.1

 #CVE-2020-26970: Stack overflow due to incorrect parsing of SMTP server
 response codes

 Reporter
     Chiaki Ishikawa
 Impact
     high

 Description

 When reading SMTP server status codes, Thunderbird writes an integer value
 to a position on the stack that is intended to contain just one byte.
 Depending on processor architecture and stack layout, this leads to stack
 corruption that may be exploitable.
 References

     Bug 1677338
 }}}

--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/14329#comment:5>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14329: thunderbird-78.6.0

Reply via email to