Showing 1 - 8 of 8

CVE-2019-11703

Status Candidate

Overview

A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in parser_get_next_char when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7.1.

Related Files

Gentoo Linux Security Advisory 201908-20: Posted Aug 16, 2019; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201908-20 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code. Versions less than 60.8.0 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2019-11703, CVE-2019-11704, CVE-2019-11705, CVE-2019-11706, CVE-2019-11709, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11715, CVE-2019-11717, CVE-2019-11719, CVE-2019-11729, CVE-2019-11730, CVE-2019-9811; SHA-256 | 82247292a5a89d4970f5b857f57386823ecdf480b9bfb07d6b1153f2b435c3fa; Download | Favorite | View

Red Hat Security Advisory 2019-1626-01: Posted Jun 27, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1626-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.7.2. Issues addressed include a buffer overflow vulnerability.; tags | advisory, overflow; systems | linux, redhat; advisories | CVE-2019-11703, CVE-2019-11704, CVE-2019-11705, CVE-2019-11706, CVE-2019-11707, CVE-2019-11708; SHA-256 | 8b9b8d6cf3822cc19ee197bca2a176146e339b89f859f9e5e5358cb75d1c8c64; Download | Favorite | View

Red Hat Security Advisory 2019-1623-01: Posted Jun 27, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1623-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.7.2. Issues addressed include a buffer overflow vulnerability.; tags | advisory, overflow; systems | linux, redhat; advisories | CVE-2019-11703, CVE-2019-11704, CVE-2019-11705, CVE-2019-11706, CVE-2019-11707, CVE-2019-11708; SHA-256 | a862b1d7e05af64177914350e809feb8d4aba2124b6e1b3bbfc12c843966458e; Download | Favorite | View

Red Hat Security Advisory 2019-1624-01: Posted Jun 27, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1624-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.7.2. Issues addressed include a buffer overflow vulnerability.; tags | advisory, overflow; systems | linux, redhat; advisories | CVE-2019-11703, CVE-2019-11704, CVE-2019-11705, CVE-2019-11706, CVE-2019-11707, CVE-2019-11708; SHA-256 | a32ac12e95b7d4d2133ede322d4ddb074852b0bb68a2a054b2117624ff9845bb; Download | Favorite | View

Ubuntu Security Notice USN-4028-1: Posted Jun 20, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4028-1 - Multiple memory safety issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit these to cause a denial of service, or execute arbitrary code.; tags | advisory, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2019-11703; SHA-256 | 884f79740d3e842b81693306625914e98f7dced0f2675b3f1ea378528909ef27; Download | Favorite | View

Debian Security Advisory 4464-1: Posted Jun 17, 2019; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4464-1 - Multiple security issues have been found in Thunderbird which may lead to the execution of arbitrary code if malformed email messages are read.; tags | advisory, arbitrary; systems | linux, debian; advisories | CVE-2019-11703, CVE-2019-11704, CVE-2019-11705, CVE-2019-11706; SHA-256 | aa7d181e78048e8ecd8ae88ff81868ef3eeedc0c720c81da872e354912c4f634; Download | Favorite | View

Thunderbird libical icalparser.c Heap Overflow: Posted Jun 14, 2019; Authored by Luis Merino; A heap-based buffer overflow has been identified in the Thunderbird email client. The issue is present in the libical implementation, which was forked from upstream libical version 0.47. The issue can be triggered remotely, when an attacker sends an specially crafted calendar attachment and does not require user interaction. It might be used by a remote attacker to crash or gain remote code execution in the client system. Proof of concept included.; tags | exploit, remote, overflow, code execution; advisories | CVE-2019-11703; SHA-256 | fbc427324f7bbbd52b32d86534519facca35022c50ab621232e63a61a9d5146c; Download | Favorite | View

Slackware Security Advisory - mozilla-thunderbird Updates: Posted Jun 13, 2019; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New mozilla-thunderbird packages are available for Slackware 14.2 and -current to fix security issues.; tags | advisory; systems | linux, slackware; advisories | CVE-2019-11703, CVE-2019-11704, CVE-2019-11705, CVE-2019-11706; SHA-256 | b9072c20fb0032682c69575ad4bf45a9e8714f8de2a3e657d9f4d2e26acab4b9; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 291 files
Ubuntu 63 files
LiquidWorm 29 files
indoushka 20 files
Debian 19 files
Apple 10 files
Google Security Research 7 files
Chokri Hammedi 3 files
Jann Horn 3 files
Emiliano Febbi 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,154)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,795)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,227)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,962)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

CVE-2019-11703

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems