 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.1.10.2019.0275 |
| Kategorie: | Mageia Linux Local Security Checks |
| Titel: | Mageia: Security Advisory (MGASA-2019-0275) |
| Zusammenfassung: | The remote host is missing an update for the 'thunderbird, thunderbird-l10n' package(s) announced via the MGASA-2019-0275 advisory. |
| Beschreibung: | Summary: The remote host is missing an update for the 'thunderbird, thunderbird-l10n' package(s) announced via the MGASA-2019-0275 advisory. Vulnerability Insight: Updated thunderbird packages fix security vulnerabilities: Covert Content Attack on S/MIME encryption using a crafted multipart/ alternative message (CVE-2019-11739). Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, Firefox ESR 60.9, Thunderbird 68.1, and Thunderbird 60.9 (CVE-2019-11740) Same-origin policy violation with SVG filters and canvas to steal cross-origin images (CVE-2019-11742) Cross-origin access to unload event attributes (CVE-2019-11743) XSS by breaking out of title and textarea elements using innerHTML (CVE-2019-11744) Use-after-free while manipulating video (CVE-2019-11746) Use-after-free while extracting a key value in IndexedDB (CVE-2019-11752) Affected Software/OS: 'thunderbird, thunderbird-l10n' package(s) on Mageia 6. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2019-11739 https://bugzilla.mozilla.org/show_bug.cgi?id=1571481 SuSE Security Announcement: openSUSE-SU-2019:2248 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html SuSE Security Announcement: openSUSE-SU-2019:2249 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html https://usn.ubuntu.com/4150-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-11740 https://security.gentoo.org/glsa/201911-07 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1563133%2C1573160 SuSE Security Announcement: openSUSE-SU-2019:2251 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html SuSE Security Announcement: openSUSE-SU-2019:2260 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html Common Vulnerability Exposure (CVE) ID: CVE-2019-11742 https://bugzilla.mozilla.org/show_bug.cgi?id=1559715 Common Vulnerability Exposure (CVE) ID: CVE-2019-11743 https://bugzilla.mozilla.org/show_bug.cgi?id=1560495 https://w3c.github.io/navigation-timing Common Vulnerability Exposure (CVE) ID: CVE-2019-11744 https://bugzilla.mozilla.org/show_bug.cgi?id=1562033 Common Vulnerability Exposure (CVE) ID: CVE-2019-11752 https://bugzilla.mozilla.org/show_bug.cgi?id=1501152 |
| Copyright | Copyright (C) 2022 Greenbone AG |
| Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |