Описание
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1:78.11.0+build1-0ubuntu0.18.04.2 |
| devel | released | 1:78.11.0+build1-0ubuntu2 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | released | 1:78.11.0+build1-0ubuntu0.20.04.2 |
| groovy | released | 1:78.11.0+build1-0ubuntu0.20.10.2 |
| hirsute | released | 1:78.11.0+build1-0ubuntu0.21.04.2 |
| impish | released | 1:78.11.0+build1-0ubuntu2 |
| jammy | released | 1:78.11.0+build1-0ubuntu2 |
| kinetic | released | 1:78.11.0+build1-0ubuntu2 |
Показывать по
EPSS
1.9 Low
CVSS2
2.5 Low
CVSS3
Связанные уязвимости
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
Signatures are written to disk before and read during verification, wh ...
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
Уязвимость почтового клиента Thunderbird, вызванная ошибками синхронизации при использовании общего ресурса, позволяющая нарушителю обойти существующие ограничения безопасности
EPSS
1.9 Low
CVSS2
2.5 Low
CVSS3