Out-of-Bounds Affecting thunderbird package, versions <1:91.4.1-1
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-DEBIAN12-THUNDERBIRD-2322095
- published 14 Dec 2021
- disclosed 14 Dec 2021
Introduced: 14 Dec 2021
CVE-2021-44538 Open this link in a new tabHow to fix?
Upgrade Debian:12 thunderbird to version 1:91.4.1-1 or higher.
NVD Description
Note: Versions mentioned in the description apply only to the upstream thunderbird package and not the thunderbird package as distributed by Debian.
See How to fix? for Debian:12 relevant fixed versions and status.
The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of the channel. Attackers can construct a crafted sequence of messages to manipulate the state of the receiver's session in such a way that, for some buffer sizes, a buffer overflow happens on a call to olm_session_describe. Furthermore, safe buffer sizes were undocumented. The overflow content is partially controllable by the attacker and limited to ASCII spaces and digits. The known affected products are Element Web And SchildiChat Web.
References
- https://security-tracker.debian.org/tracker/CVE-2021-44538
- https://gitlab.matrix.org/matrix-org/olm/-/tags
- https://lists.debian.org/debian-lts-announce/2022/01/msg00001.html
- https://matrix.org/blog/2021/12/13/disclosure-buffer-overflow-in-libolm-and-matrix-js-sdk
- https://www.debian.org/security/2022/dsa-5034