UBUNTU-CVE-2020-6792

Details

When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird < 68.5.

Affected Packages

thunderbird

Ubuntu 16.04 LTS

Fixed in:

1:68.7.0+build1-0ubuntu0.16.04.2

thunderbird

Ubuntu 18.04 LTS

Fixed in:

1:68.7.0+build1-0ubuntu0.18.04.1

References

REPORT

https://ubuntu.com/security/CVE-2020-6792

ADVISORY

https://ubuntu.com/security/notices/USN-4328-1

ADVISORY

https://ubuntu.com/security/notices/USN-4335-1

REPORT

https://www.cve.org/CVERecord?id=CVE-2020-6792

REPORT

https://www.mozilla.org/en-US/security/advisories/mfsa2020-07/#CVE-2020-6792