Homepage

thunderbird vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the thunderbird package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Use After Free

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Buffer Overflow

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
CVE-2014-1518

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Improper Privilege Management

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Cross-site Scripting (XSS)

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.5.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Improper Privilege Management

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Information Exposure

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Buffer Overflow

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.4.0+build1-0ubuntu0.12.10.1
  • L
Improper Privilege Management

<1:24.4.0+build1-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
CVE-2014-1477

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
Origin Validation Error

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
CVE-2014-1481

<1:24.3.0+build2-0ubuntu0.12.10.1
  • M
Race Condition

<1:24.3.0+build2-0ubuntu0.12.10.1
  • M
Inadequate Encryption Strength

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
CVE-2014-1479

<1:24.3.0+build2-0ubuntu0.12.10.1
  • L
CVE-2013-5615

<1:24.2.0+build1-0ubuntu0.12.10.1
  • M
Use After Free

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5609

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Arbitrary Code Injection

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Cryptographic Issues

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Use After Free

<1:24.2.0+build1-0ubuntu0.12.10.1
  • M
Numeric Errors

<1:24.1.1+build1-0ubuntu0.12.10.1
  • L
Information Exposure

<1:24.2.0+build1-0ubuntu0.12.10.1
  • L
Numeric Errors

<1:24.2.0+build1-0ubuntu0.12.10.1
  • M
Improper Input Validation

<1:24.1.1+build1-0ubuntu0.12.10.1
  • M
Numeric Errors

<1:24.1.1+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5603

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5591

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5599

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5601

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5590

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5597

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
CVE-2013-5600

<1:24.1.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-1739

<1:24.1.0+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<1:24.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Cross-site Scripting (XSS)

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.8+build1-0ubuntu0.12.10.1
  • L
CVE-2013-1701

<17.0.8+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.7+build1-0ubuntu0.12.10.1
  • L
CVE-2013-1682

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.7+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.6+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • L
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.6+build1-0ubuntu0.12.10.1
  • L
CVE-2013-1669

<17.0.6+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0.6+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0801

<17.0.6+build1-0ubuntu0.12.10.1
  • L
Cross-site Scripting (XSS)

<17.0.5+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.5+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<17.0.5+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0788

<17.0.5+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0800

<17.0.5+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0796

<17.0.5+build1-0ubuntu0.12.10.1
  • L
Inadequate Encryption Strength

<1:24.1.1+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<17.0.4+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0773

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0783

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0774

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Improper Certificate Validation

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0765

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0784

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.3+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<17.0.3+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0743

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Information Exposure

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Integer Overflow or Wraparound

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0749

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Read

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Arbitrary Code Injection

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<17.0.2+build1-0ubuntu0.12.10.1
  • M
Inadequate Encryption Strength

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Out-of-bounds Write

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Buffer Overflow

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Arbitrary Code Injection

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0746

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0769

<17.0.2+build1-0ubuntu0.12.10.1
  • L
CVE-2013-0770

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Improper Input Validation

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Improper Authentication

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • L
Use After Free

<17.0.2+build1-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
CVE-2012-5843

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Request Forgery (CSRF)

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
CVE-2012-5842

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Information Exposure

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Integer Overflow or Wraparound

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Arbitrary Code Injection

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Arbitrary Code Injection

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Origin Validation Error

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Improper Privilege Management

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
Improper Input Validation

<16.0.1+build1-0ubuntu1
  • L
CVE-2012-3984

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Use After Free

<16.0.1+build1-0ubuntu1
  • L
CVE-2012-5354

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Out-of-bounds Read

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • M
Access Restriction Bypass

<16.0.1+build1-0ubuntu1
  • L
Cross-site Scripting (XSS)

<16.0.1+build1-0ubuntu1
  • L
Out-of-Bounds

<16.0.1+build1-0ubuntu1
  • M
CVE-2012-3982

<16.0.1+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Arbitrary Code Injection

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
CVE-2012-3962

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Numeric Errors

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
CVE-2012-1971

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1