Описание
Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug. This vulnerability affects Thunderbird < 102.7.1.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 1:102.7.1+build2-0ubuntu0.18.04.1 |
| devel | not-affected | |
| esm-infra/focal | DNE | |
| focal | not-affected | |
| jammy | not-affected | |
| kinetic | not-affected | |
| lunar | not-affected | |
| trusty | ignored | end of standard support |
| upstream | released | 1:102.7.1+1-1 |
| xenial | ignored | end of standard support |
Показывать по
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug. This vulnerability affects Thunderbird < 102.7.1.
Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug. This vulnerability affects Thunderbird < 102.7.1.
Certificate OCSP revocation status was not checked when verifying S/Mi ...
EPSS
6.5 Medium
CVSS3