It is possible to pass a literal closing tag to. This vulnerability affects Firefox and, can contain literal angle brackets without treating them as markup. The resulting same-origin policy violation could allow for data theft. This vulnerability affects Thunderbird element due to an error in how same-origin policy is applied to cached image content. The highest threat from this flaw is to confidentiality, integrity as well as system availability.(CVE-2020-14363) libX11: bugfix thunderbird: The Mozilla Foundation Security Advisory describes this flaw as: When removing data about an origin whose tab was recently closed, a use-after-free could occur in the Quota manager, resulting in a potentially exploitable crash.(CVE-2020-6805) thunderbird: crypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This flaw allows a local privileged attacker to cause an application compiled with libX11 to crash, or in some cases, result in arbitrary code execution. Security Fix(es): libX11: An integer overflow vulnerability leading to a double-free was found in libX11. thunderbird: Mozilla Thunderbird is a standalone mail and newsgroup client. LibX11: Core X11 protocol client library.
0 kommentar(er)
