Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 935551

Summary: <mail-client/thunderbird{-bin,}-112.12.1: Multiple vulnerabilities
Product: Gentoo Security Reporter: Christopher Fore <csfore>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal CC: mozilla
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: A3 [glsa+]
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 935547    

Description Christopher Fore 2024-07-05 13:43:25 UTC 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-28/


CVE-2024-5702:

Memory corruption in the networking stack could have led to a potentially exploitable crash.


Please refer to the tracker for the CVEs that affect all Mozilla products.
Comment 1 Joonas Niilola gentoo-dev 2024-07-13 08:01:29 UTC 
This is done.
Comment 2 Larry the Git Cow gentoo-dev 2024-12-07 10:32:37 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=0218a1fa61b66d9f084e38fe4f79e7ce3b62ba26

commit 0218a1fa61b66d9f084e38fe4f79e7ce3b62ba26
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2024-12-07 10:32:19 +0000
Commit:     Hans de Graaff <graaff@gentoo.org>
CommitDate: 2024-12-07 10:32:30 +0000

    [ GLSA 202412-06 ] Mozilla Thunderbird: Multiple Vulnerabilities
    
    Bug: https://bugs.gentoo.org/935551
    Bug: https://bugs.gentoo.org/936216
    Bug: https://bugs.gentoo.org/937468
    Bug: https://bugs.gentoo.org/941170
    Bug: https://bugs.gentoo.org/941175
    Bug: https://bugs.gentoo.org/942470
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: Hans de Graaff <graaff@gentoo.org>

 glsa-202412-06.xml | 133 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 133 insertions(+)