thunderbird is vulnerable to arbitrary code execution. An integer overflow in the Skia library when allocating memory for edge builders on some systems with at least 16 GB of RAM allows an attacker to exploit the vulnerability to crash the application or potentially execute arbitrary code on the host OS.
CPE | Name | Operator | Version |
---|---|---|---|
thunderbird:stretch | eq | 1:52.9.1-1~deb9u1 | |
thunderbird:stretch | eq | 1:52.9.1-1~deb9u1 |