CVE-2019-11739

Опубликовано: 27 сент. 2019

Источник: debian

Описание

Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 68.1 and Thunderbird < 60.9.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
thunderbird	fixed	1:60.9.0-1		package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29/#CVE-2019-11739

Связанные уязвимости

CVE-2019-11739

CVSS3: 6.5

ubuntu

около 6 лет назад

Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 68.1 and Thunderbird < 60.9.

CVE-2019-11739

CVSS3: 6.5

redhat

около 6 лет назад

Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 68.1 and Thunderbird < 60.9.

CVE-2019-11739

CVSS3: 6.5

nvd

около 6 лет назад

Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 68.1 and Thunderbird < 60.9.

GHSA-c6f3-q26v-xmx7

CVSS3: 6.5

github

больше 3 лет назад

Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 68.1 and Thunderbird < 60.9.

BDU:2020-02383

CVSS3: 6.5

fstec

около 6 лет назад

Уязвимость функций шифрования Secure/Multipurpose Internet Mail Extentions (S/MIME) почтового клиента Thunderbird, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации