0.104 Low
EPSS
Percentile
95.0%
thunderbird is vulnerable to denial of service. A heap buffer overflow in icalmemory_strdup_and_dequote function in icalvalue.c allows a remote attacker to crash the application in an out-of-bounds read/write.
icalmemory_strdup_and_dequote
icalvalue.c
access.redhat.com/errata/RHSA-2019:1624
access.redhat.com/security/updates/classification/#important
bugzilla.mozilla.org/show_bug.cgi?id=1553814
security.gentoo.org/glsa/201908-20
www.mozilla.org/security/advisories/mfsa2019-17/