Lucene search
Arch LinuxASA-201604-12HistoryApr 23, 2016 - 12:00 a.m.
thunderbird: multiple issues
2016-04-2300:00:00
Arch Linux
lists.archlinux.org
26
0.013 Low
EPSS
Percentile
85.9%
- CVE-2016-1955 (same-origin policy bypass)
A vulnerability allows remote attackers to bypass the Same Origin Policy
and obtain sensitive information by reading a Content Security Policy
(CSP) violation report that contains path information associated with an
IFRAME element.
- CVE-2016-1956 (denial of service)
Security researcher Ucha Gobejishvili reported a denial of service (DOS)
attack when doing certain WebGL operations in a canvas requiring an
unusually large amount buffer to be allocated from video memory. This
resulted memory resource exhaustion with some Intel video cards,
requiring the computer to be rebooted to return functionality. This was
resolved by putting in additional checks on the amount of memory to be
allocated during graphics processing.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| any | any | any | thunderbird | < 45.0-1 | UNKNOWN |
Related
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2016-18) - Linux
2021-11-08 00:00:00
Mozilla Firefox Security Advisory (MFSA2016-19) - Linux
2021-11-08 00:00:00
Ubuntu: Security Advisory (USN-2917-2)
2016-04-08 00:00:00
cve
cve
CVE-2016-1956
2016-03-13 18:59:05
CVE-2016-1955
2016-03-13 18:59:04
nvd
nvd
CVE-2016-1956
2016-03-13 18:59:05
CVE-2016-1955
2016-03-13 18:59:04
debiancve
debiancve
CVE-2016-1956
2016-03-13 18:59:05
CVE-2016-1955
2016-03-13 18:59:04
mozilla
mozilla
CSP reports fail to strip location information for embedded iframe pages — Mozilla
2016-03-08 00:00:00
Linux video memory DOS with Intel drivers — Mozilla
2016-03-08 00:00:00
ubuntucve
ubuntucve
CVE-2016-1955
2016-03-08 00:00:00
CVE-2016-1956
2016-03-08 00:00:00
prion
prion
Path traversal
2016-03-13 18:59:00
Memory corruption
2016-03-13 18:59:00
cvelist
cvelist
CVE-2016-1955
2016-03-13 18:00:00
CVE-2016-1956
2016-03-13 18:00:00
nessus
nessus
FreeBSD : mozilla -- multiple vulnerabilities (2225c5b4-1e5a-44fc-9920-b3201c384a15)
2016-03-09 00:00:00
openSUSE Security Update : Mozilla Thunderbird (openSUSE-2016-848)
2016-07-11 00:00:00
openSUSE Security Update : Mozilla Thunderbird (openSUSE-2016-851)
2016-07-11 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2016-03-08 00:00:00
suse
suse
Security update for Mozilla Thunderbird (important)
2016-07-11 00:08:02
Security update for Mozilla Thunderbird (important)
2016-07-11 00:13:17
Security update for Mozilla Thunderbird (important)
2016-07-10 16:08:00
ubuntu
ubuntu
Firefox regressions
2016-04-19 00:00:00
Firefox regressions
2016-04-07 00:00:00
Firefox vulnerabilities
2016-03-09 00:00:00
archlinux
archlinux
firefox: multiple issues
2016-03-09 00:00:00
kaspersky
kaspersky
KLA10765 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2016-03-08 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2016-05-31 00:00:00