Security Vulnerabilities fixed in Thunderbird 115.0.1
- July 20, 2023
- Fixed in
- Thunderbird 115.0.1
- Andrew McCreight
During the worker lifecycle, a use-after-free condition could have occured, which could have led to a potentially exploitable crash.
- 이준성 (Junsung Lee)
Thunderbird allowed the Text Direction Override Unicode Character in filenames. An email attachment could be incorrectly shown as being a document file, while in fact it was an executable file. Newer versions of Thunderbird will strip the character and show the correct file extension.