Описание
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
Релиз | Статус | Примечание |
---|---|---|
bionic | released | 1:78.11.0+build1-0ubuntu0.18.04.2 |
devel | released | 1:78.11.0+build1-0ubuntu2 |
esm-infra-legacy/trusty | DNE | |
esm-infra/focal | DNE | |
focal | released | 1:78.11.0+build1-0ubuntu0.20.04.2 |
groovy | released | 1:78.11.0+build1-0ubuntu0.20.10.2 |
hirsute | released | 1:78.11.0+build1-0ubuntu0.21.04.2 |
impish | released | 1:78.11.0+build1-0ubuntu2 |
jammy | released | 1:78.11.0+build1-0ubuntu2 |
kinetic | released | 1:78.11.0+build1-0ubuntu2 |
Показывать по
EPSS
1.9 Low
CVSS2
2.5 Low
CVSS3
Связанные уязвимости
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
Signatures are written to disk before and read during verification, wh ...
Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects Thunderbird < 78.10.
Уязвимость почтового клиента Thunderbird, вызванная ошибками синхронизации при использовании общего ресурса, позволяющая нарушителю обойти существующие ограничения безопасности
EPSS
1.9 Low
CVSS2
2.5 Low
CVSS3