thunderbird is vulnerable to arbitrary code execution. The vulnerability exists as the Message ID calculation was based on uninitialized data.
access.redhat.com/errata/RHSA-2020:0565
access.redhat.com/security/updates/classification/#important
bugzilla.mozilla.org/show_bug.cgi?id=1609607
security.gentoo.org/glsa/202003-10
usn.ubuntu.com/4328-1/
usn.ubuntu.com/4335-1/
www.mozilla.org/en-US/security/advisories/mfsa2020-07/
www.mozilla.org/security/advisories/mfsa2020-07/