Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 758857 (CVE-2020-26970, MFSA-2020-52, MFSA-2020-53) - <mail-client/thunderbird{,-bin}-78.5.1: multiple vulnerabilities (MFSA-2020-{52,53})
Summary: <mail-client/thunderbird{,-bin}-78.5.1: multiple vulnerabilities (MFSA-2020-{...
Status: RESOLVED FIXED
Alias: CVE-2020-26970, MFSA-2020-52, MFSA-2020-53
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal major (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [glsa+ cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2020-12-06 23:11 UTC by GLSAMaker/CVETool Bot
Modified: 2020-12-07 00:38 UTC (History)
1 user (show)

See Also:
Package list:
mail-client/thunderbird-78.5.1
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2020-12-06 23:11:15 UTC
CVE-2020-26951 (https://nvd.nist.gov/vuln/detail/CVE-2020-26951):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-16012 (https://nvd.nist.gov/vuln/detail/CVE-2020-16012):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26953 (https://nvd.nist.gov/vuln/detail/CVE-2020-26953):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26956 (https://nvd.nist.gov/vuln/detail/CVE-2020-26956):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26958 (https://nvd.nist.gov/vuln/detail/CVE-2020-26958):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26959 (https://nvd.nist.gov/vuln/detail/CVE-2020-26959):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26960 (https://nvd.nist.gov/vuln/detail/CVE-2020-26960):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-15999 (https://nvd.nist.gov/vuln/detail/CVE-2020-15999):
  Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111
  allowed a remote attacker to potentially exploit heap corruption via a
  crafted HTML page.

CVE-2020-26961 (https://nvd.nist.gov/vuln/detail/CVE-2020-26961):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26965 (https://nvd.nist.gov/vuln/detail/CVE-2020-26965):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26968 (https://nvd.nist.gov/vuln/detail/CVE-2020-26968):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2020-26970 (https://nvd.nist.gov/vuln/detail/CVE-2020-26970):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.
Comment 1 Thomas Deutschmann gentoo-dev 2020-12-06 23:14:11 UTC
New GLSA request filed.
Comment 2 GLSAMaker/CVETool Bot gentoo-dev 2020-12-07 00:38:04 UTC
This issue was resolved and addressed in
 GLSA 202012-04 at https://security.gentoo.org/glsa/202012-04
by GLSA coordinator Thomas Deutschmann (whissi).