VDB

GCVE-VVD-MAGEIA-2023-57

GCVE-VVD-MAGEIA-2023-57
Advisory Published
Vulnetix · Advisory published August 23, 2023
User Interface lockup with messages combining S/MIME and OpenPGP. (CVE-2023-0616) Content security policy leak in violation reports using iframes. (CVE-2023-25728) Screen hijack via browser fullscreen mode. (CVE-2023-25730) Arbitrary memory write via PKCS 12 in NSS. (CVE-2023-0767) Potential use-after-free from compartment mismatch in SpiderMonkey. (CVE-2023-25735) Invalid downcast in SVGUtils::SetupStrokeGeometry. (CVE-2023-25737) Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext. (CVE-2023-25739) Extensions could have opened external schemes without user knowledge. (CVE-2023-25729) Out of bounds memory write from EncodeInputStream. (CVE-2023-25732) Web Crypto ImportKey crashes tab. (CVE-2023-25742) Memory safety bugs fixed in Thunderbird 102.8. (CVE-2023-25746)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiathunderbird-l10n0 (affected), 102.8.0-1.mga8 (unaffected), 0 (affected), 102.8.0-1.mga8 (unaffected)
Mageiavlc0 (affected), 3.0.18-1.1.mga8 (unaffected), 0 (affected), 3.0.18-1.1.mga8.tainted (unaffected)
Mageiathunderbird0 (affected), 102.8.0-1.mga8 (unaffected), 0 (affected), 102.8.0-1.mga8 (unaffected)

References

Updated thunderbird packages fix security vulnerability
advisory
Updated thunderbird packages fix security vulnerability
issue
Updated thunderbird packages fix security vulnerability
issue
Updated thunderbird packages fix security vulnerability
issue
Updated vlc packages re-enable sndio support
advisory
Updated vlc packages re-enable sndio support
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›