VDB

GCVE-VVD-MAGEIA-2019-316

GCVE-VVD-MAGEIA-2019-316
Advisory Published
Vulnetix · Advisory published November 7, 2019
The updated packages fix security issues: Use-after-free when creating index updates in IndexedDB. (CVE-2019-11757) Potentially exploitable crash due to 360 Total Security. (CVE-2019-11758) Stack buffer overflow in HKDF output. (CVE-2019-11759) Stack buffer overflow in WebRTC networking. (CVE-2019-11760) Unintended access to a privileged JSONView object. (CVE-2019-11761) document.domain-based origin isolation has same-origin-property violation. (CVE-2019-11762) Incorrect HTML parsing results in XSS bypass technique. (CVE-2019-11763) Memory safety bugs fixed in Thunderbird 68.2. (CVE-2019-11764) Heap overflow in expat library in XML_GetCurrentLineNumber. (CVE-2019-15903) Enigmail has been updated to 2.1.3.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiathunderbird-l10n0 (affected), 68.2.1-1.mga7 (unaffected)
Mageiathunderbird0 (affected), 68.2.1-1.mga7 (unaffected)

References

Updated thunderbird packages fix security vulnerabilities
advisory
Updated thunderbird packages fix security vulnerabilities
issue
Updated thunderbird packages fix security vulnerabilities
issue
Updated thunderbird packages fix security vulnerabilities
issue
Updated thunderbird packages fix security vulnerabilities
issue
Updated thunderbird packages fix security vulnerabilities
issue
Updated thunderbird packages fix security vulnerabilities
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›