VDB

GCVE-VVD-MAGEIA-2021-189

GCVE-VVD-MAGEIA-2021-189
Advisory Published
Vulnetix · Advisory published September 23, 2021
An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key (CVE-2021-23991). A crafted OpenPGP key with an invalid user ID could be used to confuse the user (CVE-2021-23992). Inability to send encrypted OpenPGP email after importing a crafted OpenPGP key (CVE-2021-23993).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiaprocps-ng0 (affected), 3.3.17-1.mga8 (unaffected)
Mageiathunderbird0 (affected), 78.9.1-1.mga7 (unaffected), 0 (affected), 78.9.1-1.mga7 (unaffected)
Mageiathunderbird-l10n0 (affected), 78.9.1-1.mga7 (unaffected), 0 (affected), 78.9.1-1.mga7 (unaffected)
Mageiathunderbird0 (affected), 78.9.1-1.mga8 (unaffected), 0 (affected), 78.9.1-1.mga8 (unaffected)
Mageiathunderbird-l10n0 (affected), 78.9.1-1.mga8 (unaffected), 0 (affected), 78.9.1-1.mga8 (unaffected)

References

Updated thunderbird packages fix security vulnerabilities
advisory
Updated thunderbird packages fix security vulnerabilities
issue
Updated thunderbird packages fix security vulnerabilities
issue
Updated thunderbird packages fix security vulnerabilities
issue
Updated procps-ng packages fix stack allocation
advisory
Updated procps-ng packages fix stack allocation
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›