Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Mageia 8: 2021-0554 Moderate: Thunderbird JavaScript Security Flaws

mageia
Calendar Grey December 10, 2021
Dist Mageia Esm H88
The latest patch addresses numerous vulnerabilities in Thunderbird, tackling concerns such as enabling JavaScript execution and flaws related to memory safety.
Thunderbird unexpectedly enabled JavaScript in the composition area

Summary

Thunderbird unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities (CVE-2021-43528).
Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL (CVE-2021-43536).
An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash due to a heap buffer overflow when using structured clone (CVE-2021-43537).
By misusing a race in our notification code, an attacker could have forcefully hidden the notification for pages that had received both full screen and pointer lock access, which could have been used for spoofing attacks (CVE-2021-43538).
Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the ...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=29739

- https://www.mozilla.org/en-US/security/advisories/mfsa2021-54/

- https://www.thunderbird.net/en-US/thunderbird/91.4.0/releasenotes/

- https://access.redhat.com/errata/RHSA-2021:5045

- https://www.cve.org/CVERecord?id=CVE-2021-43528

- https://www.cve.org/CVERecord?id=CVE-2021-43536

- https://www.cve.org/CVERecord?id=CVE-2021-43537

- https://www.cve.org/CVERecord?id=CVE-2021-43538

- https://www.cve.org/CVERecord?id=CVE-2021-43539

- https://www.cve.org/CVERecord?id=CVE-2021-43541

- https://www.cve.org/CVERecord?id=CVE-2021-43542

- https://www.cve.org/CVERecord?id=CVE-2021-43543

- https://www.cve.org/CVERecord?id=CVE-2021-43545

- https://www.cve.org/CVERecord?id=CVE-2021-43546

Resolution

SRPMS

- 8/core/thunderbird-91.4.0-1.mga8

- 8/core/thunderbird-l10n-91.4.0-1.mga8

Publication date: 10 Dec 2021
URL: https://advisories.mageia.org/MGASA-2021-0554.html
Type: security
CVE: CVE-2021-43528, CVE-2021-43536, CVE-2021-43537, CVE-2021-43538, CVE-2021-43539, CVE-2021-43541, CVE-2021-43542, CVE-2021-43543, CVE-2021-43545, CVE-2021-43546

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.