MGASA-2021-0027 - Updated thunderbird packages fix a security vulnerability Publication date: 14 Jan 2021 URL: https://advisories.mageia.org/MGASA-2021-0027.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-16044 Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk. (CVE-2020-16044) See upstream releasenotes for other changes. References: - https://bugs.mageia.org/show_bug.cgi?id=28069 - https://www.mozilla.org/en-US/security/advisories/mfsa2021-02/ - https://www.thunderbird.net/en-US/thunderbird/78.6.1/releasenotes/ - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044 SRPMS: - 7/core/thunderbird-78.6.1-1.mga7 - 7/core/thunderbird-l10n-78.6.1-1.mga7
Mageia 2021-0027: thunderbird security update
Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk
Summary
CVE: CVE-2020-16044
Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk.
(CVE-2020-16044)
See upstream releasenotes for other changes.
Resolution
MGASA-2021-0027 - Updated thunderbird packages fix a security vulnerability
References
- https://bugs.mageia.org/show_bug.cgi?id=28069
- https://www.mozilla.org/en-US/security/advisories/mfsa2021-02/
- https://www.thunderbird.net/en-US/thunderbird/78.6.1/releasenotes/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
Severity
Issued Date: 14 Jan 2021
URL: https://advisories.mageia.org/MGASA-2021-0027.html
Type: security
Affected Mageia releases: 7
News
HOWTOs
Features
Leveraging the “Power of the Crowd” to Fight Cybercrime with a Unique, Collaborative Intrusion Prevention System
All You Need To Know About IT Security Audits and Its Importance
Time is running out for CentOS 8
Uptycs Lead Engineer Shares Top Tips for Securing the Enterprise
Anatomy of a Linux Ransomware Attack
About Us
Powered By
