| Bug ID | 1196072 |
|---|---|
| Summary | VUL-0: MozillaThunderbird: Crafted email could trigger an out-of-bounds write |
| Classification | openSUSE |
| Product | openSUSE Distribution |
| Version | Leap 15.3 |
| Hardware | Other |
| OS | Other |
| Status | NEW |
| Severity | Normal |
| Priority | P5 - None |
| Component | Security |
| Assignee | martin.sirringhaus@suse.com |
| Reporter | Andreas.Stieger@gmx.de |
| QA Contact | security-team@suse.de |
| CC | wolfgang@rosenauer.org |
| Found By | Security Response Team |
| Blocker | --- |
It may be possible for an attacker to craft an email message that causes Thunderbird to perform an out-of-bounds write of one byte when processing the message. Fixed in 91.6.1 References: https://www.mozilla.org/en-US/security/advisories/mfsa2022-07/#CVE-2022-0566 https://bugzilla.mozilla.org/show_bug.cgi?id=1753094