Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/thunderbird@1:115.16.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.16.0esr-1~deb12u1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (5)
Vulnerability Summary Aliases
VCID-2j6k-5q8j-3fbc Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which arbitrary code execution. CVE-2024-9680
VCID-7wvh-upas-2bgh An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This could allow them to access cross-origin JSON content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full cross-origin access is possible on Android versions. CVE-2024-9394
VCID-ka9e-ps8e-ryc8 Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. CVE-2024-9392
VCID-kx3j-abfc-qfh2 An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://pdf.js` origin. This could allow them to access cross-origin PDF content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full cross-origin access is possible on Android versions. CVE-2024-9393
VCID-z6yt-va55-s3ey Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. CVE-2024-9401

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:14:31.626067+00:00 Debian Importer Fixing VCID-7wvh-upas-2bgh https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:17:57.301931+00:00 Debian Importer Fixing VCID-kx3j-abfc-qfh2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:55:16.036107+00:00 Debian Importer Fixing VCID-2j6k-5q8j-3fbc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:12:28.109494+00:00 Debian Importer Fixing VCID-ka9e-ps8e-ryc8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:26:45.051532+00:00 Debian Importer Fixing VCID-z6yt-va55-s3ey https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:07:04.035455+00:00 Debian Importer Fixing VCID-7wvh-upas-2bgh https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:24:42.544187+00:00 Debian Importer Fixing VCID-kx3j-abfc-qfh2 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:24:12.416235+00:00 Debian Importer Fixing VCID-2j6k-5q8j-3fbc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:51:44.719767+00:00 Debian Importer Fixing VCID-ka9e-ps8e-ryc8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:18:08.166785+00:00 Debian Importer Fixing VCID-z6yt-va55-s3ey https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:54:51.848310+00:00 Debian Importer Fixing VCID-2j6k-5q8j-3fbc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:54:51.735805+00:00 Debian Importer Fixing VCID-z6yt-va55-s3ey https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:54:51.435625+00:00 Debian Importer Fixing VCID-7wvh-upas-2bgh https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:54:51.380787+00:00 Debian Importer Fixing VCID-kx3j-abfc-qfh2 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:54:51.324762+00:00 Debian Importer Fixing VCID-ka9e-ps8e-ryc8 https://security-tracker.debian.org/tracker/data/json 38.1.0