MozillaThunderbird (SUSE:Linux Enterprise Module for Package Hub 15 SP3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Package Hub 15 SP3 package MozillaThunderbird, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (88)
CVE-2022-31736 — CVSS 9.8 (critical): A malicious website could have learned the size of a cross-origin resource that supported Range requests. This vulnerability affects…
CVE-2022-31737 — CVSS 9.8 (critical): A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash…
CVE-2022-45406 — CVSS 9.8 (critical): If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on…
CVE-2022-31747 — CVSS 9.8 (critical): Mozilla developers Andrew McCreight, Nicolas B. Pierron, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 100…
CVE-2022-34470 — CVSS 9.8 (critical): Session history navigations may have led to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox < 102…
CVE-2022-29917 — CVSS 9.8 (critical): Mozilla developers Andrew McCreight, Gabriele Svelto, Tom Ritter and the Mozilla Fuzzing Team reported memory safety bugs present in…
CVE-2022-26384 — CVSS 9.6 (critical): If an attacker could control the contents of an iframe sandboxed with <code>allow-popups</code> but not <code>allow-scripts</code>, they…
CVE-2022-2505 — CVSS 8.8 (high): Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 102. Some of these bugs showed evidence of…
CVE-2022-26381 — CVSS 8.8 (high): An attacker could have caused a use-after-free by forcing a text reflow in an SVG object leading to a potentially exploitable crash. This…
CVE-2022-42928 — CVSS 8.8 (high): Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory…
CVE-2022-40962 — CVSS 8.8 (high): Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety…
CVE-2022-28281 — CVSS 8.8 (high): If a compromised content process sent an unexpected number of WebAuthN Extensions in a Register command to the parent process, an out of…
CVE-2022-38478 — CVSS 8.8 (high): Members the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 103, Firefox ESR 102.1, and Firefox ESR 91.12. Some of…
CVE-2022-28289 — CVSS 8.8 (high): Mozilla developers and community members Nika Layzell, Andrew McCreight, Gabriele Svelto, and the Mozilla Fuzzing Team reported memory…
CVE-2022-29909 — CVSS 8.8 (high): Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin, bypassing the…
CVE-2022-38477 — CVSS 8.8 (high): Mozilla developer Nika Layzell and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 103 and Firefox ESR 102.1. Some…
CVE-2022-38473 — CVSS 8.8 (high): A cross-origin iframe referencing an XSLT document would inherit the parent domain's permissions (such as microphone or camera access)…
CVE-2022-34484 — CVSS 8.8 (high): The Mozilla Fuzzing Team reported potential vulnerabilities present in Thunderbird 91.10. Some of these bugs showed evidence of memory…
CVE-2022-34481 — CVSS 8.8 (high): In the <code>nsTArray_Impl::ReplaceElementsAt()</code> function, an integer overflow could have occurred when the number of elements to…
CVE-2022-31740 — CVSS 8.8 (high): On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially…
CVE-2022-45421 — CVSS 8.8 (high): Mozilla developers Andrew McCreight and Gabriele Svelto reported memory safety bugs present in Thunderbird 102.4. Some of these bugs showed…
CVE-2022-45412 — CVSS 8.8 (high): When resolving a symlink such as <code>file:///proc/self/fd/1</code>, an error message may be produced where the symlink was resolved to a…
CVE-2022-1529 — CVSS 8.8 (high): An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading…
CVE-2022-1802 — CVSS 8.8 (high): If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollution, they could have achieved execution…
CVE-2022-45409 — CVSS 8.8 (high): The garbage collector could have been aborted in several states and zones and <code>GCRuntime::finishCollection</code> may not have been…
CVE-2022-2200 — CVSS 8.8 (high): If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading…
CVE-2022-42932 — CVSS 8.8 (high): Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some…
CVE-2022-34468 — CVSS 8.8 (high): An iframe that was not permitted to run scripts could do so if the user clicked on a <code>javascript:</code> link. This vulnerability…
CVE-2022-31741 — CVSS 8.8 (high): A crafted CMS message could have been processed incorrectly, leading to an invalid memory read, and potentially further memory corruption…
CVE-2022-31739 — CVSS 8.8 (high): When downloading files on Windows, the % character was not escaped, which could have lead to a download incorrectly being saved to…
CVE-2022-39251 — CVSS 8.6 (high): Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. Prior to version 19.7.0, an attacker cooperating with a malicious…
CVE-2022-39250 — CVSS 8.6 (high): Matrix JavaScript SDK is the Matrix Client-Server software development kit (SDK) for JavaScript. Prior to version 19.7.0, an attacker…
CVE-2022-36059 — CVSS 8.2 (high): matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. In versions prior to 19.4.0 events sent with special strings…
CVE-2022-45414 — CVSS 8.1 (high): If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the…
CVE-2022-42927 — CVSS 8.1 (high): A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via…
CVE-2022-3033 — CVSS 8.1 (high): If a Thunderbird user replied to a crafted HTML email containing a <code>meta</code> tag, with the <code>meta</code> tag having the…
CVE-2022-3155 — CVSS 7.8 (high): When saving or opening an email attachment on macOS, Thunderbird did not set attribute com.apple.quarantine on the received file. If the…
CVE-2022-39249 — CVSS 7.5 (high): Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. Prior to version 19.7.0, an attacker cooperating with a malicious…
CVE-2022-26387 — CVSS 7.5 (high): When installing an add-on, Firefox verified the signature before prompting the user; but while the user was confirming the prompt, the…
CVE-2022-24713 — CVSS 7.5 (high): regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of…
CVE-2022-38476 — CVSS 7.5 (high): A data race could occur in the <code>PK11_ChangePW</code> function, potentially leading to a use-after-free vulnerability. In Firefox, this…
CVE-2022-36319 — CVSS 7.5 (high): When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This…
CVE-2022-34478 — CVSS 6.5 (medium): The <code>ms-msdt</code>, <code>search</code>, and <code>search-ms</code> protocols deliver content to Microsoft applications, bypassing…
CVE-2022-34479 — CVSS 6.5 (medium): A malicious website that could create a popup could have resized the popup to overlay the address bar with its own content, resulting in…
CVE-2022-29916 — CVSS 6.5 (medium): Firefox behaved slightly differently for already known resources when loading CSS resources involving CSS variables. This could have been…
CVE-2022-29914 — CVSS 6.5 (medium): When reusing existing popups Firefox would have allowed them to cover the fullscreen notification UI, which could have enabled browser…
CVE-2022-29913 — CVSS 6.5 (medium): The parent process would not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child…
CVE-2022-45404 — CVSS 6.5 (medium): Through a series of popup and <code>window.print()</code> calls, an attacker can cause a window to go fullscreen without the user seeing…
CVE-2022-31742 — CVSS 6.5 (medium): An attacker could have exploited a timing attack by sending a large number of allowCredential entries and detecting the difference between…
CVE-2022-31744 — CVSS 6.5 (medium): An attacker could have injected CSS into stylesheets accessible via internal URIs, such as resource:, and in doing so bypass a page's…
CVE-2022-1097 — CVSS 6.5 (medium): <code>NSSToken</code> objects were referenced via direct points, and could have been accessed in an unsafe way on different threads…
CVE-2022-3032 — CVSS 6.5 (medium): When receiving an HTML email that contained an <code>iframe</code> element, which used a <code>srcdoc</code> attribute to define the inner…
CVE-2022-40958 — CVSS 6.5 (medium): By injecting a cookie with certain special characters, an attacker on a shared subdomain which is not a secure context could set and thus…
CVE-2022-40959 — CVSS 6.5 (medium): During iframe navigation, certain pages did not have their FeaturePolicy fully initialized leading to a bypass that leaked device…
CVE-2022-40960 — CVSS 6.5 (medium): Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially…
CVE-2022-26386 — CVSS 6.5 (medium): Previously Firefox for macOS and Linux would download temporary files to a user-specific directory in <code>/tmp</code>, but this behavior…
CVE-2022-42929 — CVSS 6.5 (medium): If a website called `window.print()` in a particular way, it could cause a denial of service of the browser, which may persist beyond…
CVE-2022-45403 — CVSS 6.5 (medium): Service Workers should not be able to infer information about opaque cross-origin responses; but timing information for cross-origin media…
CVE-2022-31738 — CVSS 6.5 (medium): When exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user…
CVE-2022-45405 — CVSS 6.5 (medium): Freeing arbitrary <code>nsIInputStream</code>'s on a different thread than creation could have led to a use-after-free and potentially…
CVE-2022-2226 — CVSS 6.5 (medium): An OpenPGP digital signature includes information about the date when the signature was created. When displaying an email that contains a…
CVE-2022-45408 — CVSS 6.5 (medium): Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification…
CVE-2022-1834 — CVSS 6.5 (medium): When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird…
CVE-2022-45410 — CVSS 6.5 (medium): When a ServiceWorker intercepted a request with <code>FetchEvent</code>, the origin of the request was lost after the ServiceWorker took…
CVE-2022-45416 — CVSS 6.5 (medium): Keyboard events reference strings like "KeyA" that were at fixed, known, and widely-spread addresses. Cache-based timing attacks such as…
CVE-2022-45420 — CVSS 6.5 (medium): Use tables inside of an iframe, an attacker could have caused iframe contents to be rendered outside the boundaries of the iframe…
CVE-2022-1196 — CVSS 6.5 (medium): After a VR Process is destroyed, a reference to it may have been retained and used, leading to a use-after-free and potentially exploitable…
CVE-2022-38472 — CVSS 6.5 (medium): An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the…
CVE-2022-28285 — CVSS 6.5 (medium): When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used. In conjunction with another…
CVE-2022-28282 — CVSS 6.5 (medium): By using a link with <code>rel="localization"</code> a use-after-free could have been triggered by destroying an object during JavaScript…
CVE-2022-40957 — CVSS 6.5 (medium): Inconsistent data in instruction and data cache when creating wasm code could lead to a potentially exploitable crash.<br>*This bug only…
CVE-2022-45418 — CVSS 6.1 (medium): If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting…
CVE-2022-29912 — CVSS 6.1 (medium): Requests initiated through reader mode did not properly omit cookies with a SameSite attribute. This vulnerability affects Thunderbird <…
CVE-2022-29911 — CVSS 6.1 (medium): An improper implementation of the new iframe sandbox keyword <code>allow-top-navigation-by-user-activation</code> could lead to script…
CVE-2022-45411 — CVSS 6.1 (medium): Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization…
CVE-2022-40956 — CVSS 6.1 (medium): When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead…
CVE-2022-36314 — CVSS 5.5 (medium): When opening a Windows shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network…
CVE-2022-3266 — CVSS 5.5 (medium): An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash. This vulnerability affects…
CVE-2022-1197 — CVSS 5.4 (medium): When importing a revoked key that specified key compromise as the revocation reason, Thunderbird did not update the existing copy of the…
CVE-2022-28286 — CVSS 5.4 (medium): Due to a layout change, iframe contents could have been rendered outside of its border. This could have led to user confusion or spoofing…
CVE-2022-36318 — CVSS 5.3 (medium): When visiting directory listings for `chrome://` URLs as source text, some parameters were reflected. This vulnerability affects Firefox…
CVE-2022-26383 — CVSS 4.3 (medium): When resizing a popup after requesting fullscreen access, the popup would not display the fullscreen notification. This vulnerability…
CVE-2022-34472 — CVSS 4.3 (medium): If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in…
CVE-2022-39236 — CVSS 4.3 (medium): Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. Starting with version 17.1.0-rc.1, improperly formed beacon events…
CVE-2022-1520 — CVSS 4.3 (medium): When viewing an email message A, which contains an attached message B, where B is encrypted or digitally signed or both, Thunderbird may…
CVE-2022-3034 — CVSS 4.3 (medium): When receiving an HTML email that specified to load an <code>iframe</code> element from a remote location, a request to the remote document…