Sunday, July 4, 2021

Amazon Linux AMI 2: CVE-2021-29957: Security patch for thunderbird (ALAS-2021-1681)

Description
If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird < 78.10.2.
Solution(s)
  • amazon-linux-ami-2-upgrade-thunderbird
  • amazon-linux-ami-2-upgrade-thunderbird-debuginfo


  • References
  • https://attackerkb.com/topics/cve-2021-29957
  • AL2/ALAS-2021-1681
  • CVE - 2021-29957




  •  

    Copyright © 2020 Cyber Details - Vulnerability Database™

    Thanks for everything Templateism - You should have written the code a little more complicated