Mozilla Foundation Security Advisory 2022-07

Security Vulnerabilities fixed in Thunderbird 91.6.1

Announced
February 15, 2022
Impact
high
Products
Thunderbird
Fixed in
  • Thunderbird 91.6.1

#CVE-2022-0566: Crafted email could trigger an out-of-bounds write

Reporter
Mozilla Fuzzing Team
Impact
high
Description

It may be possible for an attacker to craft an email message that causes Thunderbird to perform an out-of-bounds write of one byte when processing the message.

References