MFSA2017-30 Thunderbird: Security vulnerabilities fixed in Thunderbird 52.5.2 (CVE-2017-7845)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | December 22, 2017 | January 02, 2018 | August 13, 2018 |
Description
A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. Note: This attack only affects Windows operating systems. Other operating systems are unaffected. This vulnerability affects Thunderbird < 52.5.2, Firefox ESR < 52.5.2, and Firefox < 57.0.2.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities
References
Solution
mozilla-thunderbird-upgrade-52_5_2Related Vulnerabilities
- Alpine Linux: CVE-2017-7845: firefox-esr Multiple vulnerabilities
- MFSA2017-28 Firefox: Security vulnerabilities fixed in Firefox ESR 52.5.2 (CVE-2017-7845)
- FreeBSD: VID-6A09C80E-6EC7-442A-BC65-D72CE69FD887 (CVE-2017-7845): mozilla -- multiple vulnerabilities
- MFSA2017-29 Firefox: Security vulnerabilities fixed in Firefox 57.0.2 (CVE-2017-7845)
- SUSE: CVE-2017-7845: SUSE Linux Security Advisory
- Oracle Solaris 11: CVE-2017-7845: Vulnerability in Thunderbird