Security Advisory Description
Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS signatures. (CVE-2021-43529)
Impact
There is no impact; F5 products are not affected by this vulnerability.
AI Score
Confidence
EPSS
Percentile
81.4%