Homepage

thunderbird vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the thunderbird package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Use After Free

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
CVE-2014-1518

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Buffer Overflow

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Improper Privilege Management

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Cross-site Scripting (XSS)

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Information Exposure

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Buffer Overflow

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Improper Privilege Management

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Improper Privilege Management

<1:24.4.0+build1-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
CVE-2014-1479

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.3.0+build2-0ubuntu0.12.10.1
  • M
Inadequate Encryption Strength

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
Origin Validation Error

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
CVE-2014-1477

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
CVE-2014-1481

<1:24.3.0+build2-0ubuntu0.12.10.1
  • M
Race Condition

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
Arbitrary Code Injection

<1:24.2.0+build1-0ubuntu0.12.10.1
  • M
Use After Free

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5609

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Cryptographic Issues

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5615

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.2.0+build1-0ubuntu0.12.10.1
  • M
Numeric Errors

<1:24.1.1+build1-0ubuntu0.12.10.1
  • L
Information Exposure

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Numeric Errors

<1:24.2.0+build1-0ubuntu0.12.10.1
  • M
Numeric Errors

<1:24.1.1+build1-0ubuntu0.12.10.1
  • M
Improper Input Validation

<1:24.1.1+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5600

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5590

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5603

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5591

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5597

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5599

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5601

<1:24.1.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-1739

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Cross-site Scripting (XSS)

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.8+build1-0ubuntu0.12.10.1
  • L
CVE-2013-1701

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • L
CVE-2013-1682

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.6+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0801

<17.0.6+build1-0ubuntu0.12.10.1
  • L
CVE-2013-1669

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0800

<17.0.5+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.5+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.5+build1-0ubuntu0.12.10.1
  • L
Cross-site Scripting (XSS)

<17.0.5+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0788

<17.0.5+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0796

<17.0.5+build1-0ubuntu0.12.10.1
  • L
Inadequate Encryption Strength

<1:24.1.1+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.4+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Improper Certificate Validation

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0773

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0765

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0784

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0774

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0783

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<17.0.3+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0743

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Arbitrary Code Injection

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Integer Overflow or Wraparound

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Buffer Overflow

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0749

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Arbitrary Code Injection

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0746

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Information Exposure

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Improper Authentication

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • M
Inadequate Encryption Strength

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0769

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0770

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<17.0.2+build1-0ubuntu0.12.10.1
  • M
CVE-2012-5843

<17.0+build2-0ubuntu0.12.10.1
  • M
CVE-2012-5842

<17.0+build2-0ubuntu0.12.10.1
  • M
Arbitrary Code Injection

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Integer Overflow or Wraparound

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Information Exposure

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Request Forgery (CSRF)

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Arbitrary Code Injection

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Origin Validation Error

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Out-of-bounds Read

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • M
Access Restriction Bypass

<16.0.1+build1-0ubuntu1
  • L
Improper Privilege Management

<16.0.1+build1-0ubuntu1
  • M
CVE-2012-3982

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
CVE-2012-5354

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
CVE-2012-3984

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Improper Input Validation

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
CVE-2012-1971

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
CVE-2012-3962

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Arbitrary Code Injection

<15.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Numeric Errors

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1