Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Mageia 8: MGASA-2022-0061 Moderate: Thunderbird Extension Code Risks

mageia
Calendar Grey February 12, 2022
Dist Mageia Esm H88
Enhancements for Thunderbird address multiple vulnerabilities, addressing sandboxing weaknesses and risks of possible arbitrary code execution.
If a user installed an extension of a particular type, the extension could have auto-updated itself and while doing so, bypass the prompt which grants the new version the new reque...

Summary

If a user installed an extension of a particular type, the extension could have auto-updated itself and while doing so, bypass the prompt which grants the new version the new requested permissions (CVE-2022-22754).
If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an executable script which would have run arbitrary code after the user clicked on it (CVE-2022-22756).
If a document created a sandboxed iframe without allow-scripts, and subsequently appended an element to the iframe's document that e.g. had a JavaScript event handler - the event handler would have run despite the iframe's sandbox (CVE-2022-22759).
When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn information cross-origin (CVE-2022-22760).
Web-accessible extension pages (pages with a moz-extensi...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=30012

- https://www.thunderbird.net/en-US/thunderbird/91.6.0/releasenotes/

- https://www.mozilla.org/en-US/security/advisories/mfsa2022-06/

- https://www.cve.org/CVERecord?id=CVE-2022-22754

- https://www.cve.org/CVERecord?id=CVE-2022-22756

- https://www.cve.org/CVERecord?id=CVE-2022-22759

- https://www.cve.org/CVERecord?id=CVE-2022-22760

- https://www.cve.org/CVERecord?id=CVE-2022-22761

- https://www.cve.org/CVERecord?id=CVE-2022-22763

- https://www.cve.org/CVERecord?id=CVE-2022-22764

Topics%20covered

Topics Covered

security advisory update moderate severity arbitrary code security flaws sandbox risk Thunderbird extension

Resolution

SRPMS

- 8/core/thunderbird-91.6.0-1.mga8

- 8/core/thunderbird-l10n-91.6.0-1.mga8

Publication date: 12 Feb 2022
URL: https://advisories.mageia.org/MGASA-2022-0061.html
Type: security
CVE: CVE-2022-22754, CVE-2022-22756, CVE-2022-22759, CVE-2022-22760, CVE-2022-22761, CVE-2022-22763, CVE-2022-22764

Topics%20covered

Topics Covered

security advisory update moderate severity arbitrary code security flaws sandbox risk Thunderbird extension

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here