Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:alpm/archlinux/thunderbird@78.10.0-1
purl pkg:alpm/archlinux/thunderbird@78.10.0-1
Next non-vulnerable version 91.1.0-1
Latest non-vulnerable version 91.10-1
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-q77k-hc9g-9fhm
Aliases:
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service.*Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.* There are no reported fixed by versions.
Vulnerabilities fixed by this package (8)
Vulnerability Summary Aliases
VCID-1e61-jk2b-aubw Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. CVE-2021-23994
VCID-2cd3-m37k-5ydh Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. CVE-2021-29946
VCID-8fu2-5gxg-ekhy Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. CVE-2021-23961
VCID-b2py-tgw4-hqh8 Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code. CVE-2021-29948
VCID-e38r-grgp-rfbn Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. CVE-2021-23998
VCID-qq5h-5k45-rycm Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. CVE-2021-23995
VCID-tjtk-gghp-1kdf Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. CVE-2021-23999
VCID-vt2f-abwe-4ba2 Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. CVE-2021-24002

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T18:26:47.018674+00:00 Arch Linux Importer Affected by VCID-q77k-hc9g-9fhm https://security.archlinux.org/AVG-1914 38.0.0
2026-04-01T18:25:36.975847+00:00 Arch Linux Importer Fixing VCID-8fu2-5gxg-ekhy https://security.archlinux.org/AVG-1836 38.0.0
2026-04-01T18:25:36.952726+00:00 Arch Linux Importer Fixing VCID-1e61-jk2b-aubw https://security.archlinux.org/AVG-1836 38.0.0
2026-04-01T18:25:36.927384+00:00 Arch Linux Importer Fixing VCID-qq5h-5k45-rycm https://security.archlinux.org/AVG-1836 38.0.0
2026-04-01T18:25:36.901313+00:00 Arch Linux Importer Fixing VCID-e38r-grgp-rfbn https://security.archlinux.org/AVG-1836 38.0.0
2026-04-01T18:25:36.871997+00:00 Arch Linux Importer Fixing VCID-tjtk-gghp-1kdf https://security.archlinux.org/AVG-1836 38.0.0
2026-04-01T18:25:36.834337+00:00 Arch Linux Importer Fixing VCID-vt2f-abwe-4ba2 https://security.archlinux.org/AVG-1836 38.0.0
2026-04-01T18:25:36.808253+00:00 Arch Linux Importer Fixing VCID-2cd3-m37k-5ydh https://security.archlinux.org/AVG-1836 38.0.0
2026-04-01T18:25:36.784507+00:00 Arch Linux Importer Fixing VCID-b2py-tgw4-hqh8 https://security.archlinux.org/AVG-1836 38.0.0