Homepage

thunderbird vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the thunderbird package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
Information Exposure

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Cross-site Request Forgery (CSRF)

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Out-of-bounds Read

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Integer Overflow or Wraparound

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Information Exposure

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.9.1+build3-0ubuntu0.17.10.1
  • M
Information Exposure

<1:52.9.1+build3-0ubuntu0.17.10.1
  • M
Information Exposure

<1:52.9.1+build3-0ubuntu0.17.10.1
  • L
CVE-2018-5168

<1:52.8.0+build1-0ubuntu0.17.10.1
  • M
Use After Free

<1:52.4.0+build1-0ubuntu2
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • L
CVE-2017-7830

<1:52.5.0+build1-0ubuntu0.17.10.1
  • L
Out-of-bounds Read

<1:52.4.0+build1-0ubuntu2
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • M
Arbitrary Code Injection

<1:52.6.0+build1-0ubuntu0.17.10.1
  • M
Information Exposure

<1:52.6.0+build1-0ubuntu0.17.10.1
  • M
Arbitrary Code Injection

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • M
Out-of-Bounds

<1:52.4.0+build1-0ubuntu2
  • L
Improper Privilege Management

<1:52.4.0+build1-0ubuntu2
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • L
Cross-site Scripting (XSS)

<1:52.4.0+build1-0ubuntu2
  • L
Out-of-Bounds

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.8.0+build1-0ubuntu0.17.10.1
  • M
Improper Input Validation

<1:52.8.0+build1-0ubuntu0.17.10.1
  • M
Inadequate Encryption Strength

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.7.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.7.0+build1-0ubuntu0.17.10.1
  • L
Out-of-bounds Write

<1:52.7.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Improper Input Validation

<1:52.4.0+build1-0ubuntu2
  • L
Out-of-Bounds

<1:52.4.0+build1-0ubuntu2
  • L
Improper Input Validation

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Out-of-bounds Write

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Integer Overflow or Wraparound

<1:52.7.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.4.0+build1-0ubuntu2
  • M
Out-of-bounds Write

<1:52.7.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Improper Input Validation

<1:52.4.0+build1-0ubuntu2
  • M
Missing Encryption of Sensitive Data

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • M
Out-of-Bounds

<1:52.4.0+build1-0ubuntu2
  • L
Out-of-Bounds

<1:52.4.0+build1-0ubuntu2
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • L
Improper Input Validation

<1:52.4.0+build1-0ubuntu2
  • L
CVE-2018-5117

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.6.0+build1-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Information Exposure

<1:52.4.0+build1-0ubuntu2
  • L
Integer Overflow or Wraparound

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.7.0+build1-0ubuntu0.17.10.1
  • M
Improper Input Validation

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.2.1+build1-0ubuntu1
  • L
Out-of-Bounds

<1:52.4.0+build1-0ubuntu2
  • L
Use After Free

<1:52.4.0+build1-0ubuntu2
  • L
Use After Free

<1:52.5.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.6.0+build1-0ubuntu0.17.10.1
  • L
Use After Free

<1:52.6.0+build1-0ubuntu0.17.10.1
  • M
Missing Encryption of Sensitive Data

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
Out-of-Bounds

<1:52.5.0+build1-0ubuntu0.17.10.1
  • M
CVE-2017-17689

<1:52.8.0+build1-0ubuntu0.17.10.1
  • L
CVE-2016-2834

<1:52.4.0+build1-0ubuntu2
  • L
Improper Data Handling

<1:38.6.0+build1-0ubuntu1
  • L
Cryptographic Issues

<1:31.8.0+build1-0ubuntu1