CVE-2020-6792

Опубликовано: 11 фев. 2020

Источник: redhat

CVSS3: 4.3

EPSS Низкий

Описание

When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird < 68.5.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	thunderbird	Out of support scope
Red Hat Enterprise Linux 6	thunderbird	Fixed	RHSA-2020:0574	24.02.2020
Red Hat Enterprise Linux 7	thunderbird	Fixed	RHSA-2020:0576	24.02.2020
Red Hat Enterprise Linux 8	thunderbird	Fixed	RHSA-2020:0577	24.02.2020
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions	thunderbird	Fixed	RHSA-2020:0565	20.02.2020

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-456

https://bugzilla.redhat.com/show_bug.cgi?id=1801958Mozilla: Message ID calculation was based on uninitialized data

EPSS

Процентиль: 73%

0.00779

Низкий

4.3 Medium

CVSS3

Связанные уязвимости

CVE-2020-6792

CVSS3: 4.3

ubuntu

больше 5 лет назад

When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird < 68.5.

CVE-2020-6792

CVSS3: 4.3

nvd

больше 5 лет назад

When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird < 68.5.

CVE-2020-6792

CVSS3: 4.3

debian

больше 5 лет назад

When deriving an identifier for an email message, uninitialized memory ...

GHSA-c3mf-x864-vg86

github

больше 3 лет назад

When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird < 68.5.

ELSA-2020-0577

oracle-oval

больше 5 лет назад

ELSA-2020-0577: thunderbird security update (IMPORTANT)

EPSS

Процентиль: 73%

0.00779

Низкий

4.3 Medium

CVSS3