VulnerableCode Package Details - pkg:alpm/archlinux/thunderbird@60.3.0-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-38dh-5u7n-aaan	When manipulating user events in nested loops while opening a document through script, it is possible to trigger a potentially exploitable crash due to poor event handling. This vulnerability affects Firefox < 63, Firefox ESR < 60.3, and Thunderbird < 60.3.	CVE-2018-12392
VCID-6dnw-5kdb-aaag	Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 60.3 and Thunderbird < 60.3.	CVE-2018-12389
VCID-7wpp-kat6-aaae	Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 63, Firefox ESR < 60.3, and Thunderbird < 60.3.	CVE-2018-12390

Vulnerability

Summary

Aliases

VCID-38dh-5u7n-aaan

When manipulating user events in nested loops while opening a document through script, it is possible to trigger a potentially exploitable crash due to poor event handling. This vulnerability affects Firefox < 63, Firefox ESR < 60.3, and Thunderbird < 60.3.

CVE-2018-12392

VCID-6dnw-5kdb-aaag

Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 60.3 and Thunderbird < 60.3.

CVE-2018-12389

VCID-7wpp-kat6-aaae

Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 63, Firefox ESR < 60.3, and Thunderbird < 60.3.

CVE-2018-12390

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:44:31.483067+00:00	Arch Linux Importer	Fixing	VCID-6dnw-5kdb-aaag	https://security.archlinux.org/AVG-803	36.0.0
2025-03-28T07:44:31.462246+00:00	Arch Linux Importer	Fixing	VCID-7wpp-kat6-aaae	https://security.archlinux.org/AVG-803	36.0.0
2025-03-28T07:44:31.441750+00:00	Arch Linux Importer	Fixing	VCID-38dh-5u7n-aaan	https://security.archlinux.org/AVG-803	36.0.0
2024-09-18T01:59:35.994762+00:00	Arch Linux Importer	Fixing	VCID-6dnw-5kdb-aaag	https://security.archlinux.org/AVG-803	34.0.1
2024-09-18T01:59:35.970313+00:00	Arch Linux Importer	Fixing	VCID-7wpp-kat6-aaae	https://security.archlinux.org/AVG-803	34.0.1
2024-09-18T01:59:35.943966+00:00	Arch Linux Importer	Fixing	VCID-38dh-5u7n-aaan	https://security.archlinux.org/AVG-803	34.0.1
2024-01-09T19:34:36.656162+00:00	Arch Linux Importer	Fixing	VCID-6dnw-5kdb-aaag	https://security.archlinux.org/AVG-803	34.0.0rc2
2024-01-09T19:34:36.633788+00:00	Arch Linux Importer	Fixing	VCID-7wpp-kat6-aaae	https://security.archlinux.org/AVG-803	34.0.0rc2
2024-01-09T19:34:36.611554+00:00	Arch Linux Importer	Fixing	VCID-38dh-5u7n-aaan	https://security.archlinux.org/AVG-803	34.0.0rc2
2024-01-03T22:25:52.069060+00:00	Arch Linux Importer	Fixing	VCID-6dnw-5kdb-aaag	https://security.archlinux.org/AVG-803	34.0.0rc1
2024-01-03T22:25:52.047557+00:00	Arch Linux Importer	Fixing	VCID-7wpp-kat6-aaae	https://security.archlinux.org/AVG-803	34.0.0rc1
2024-01-03T22:25:52.025998+00:00	Arch Linux Importer	Fixing	VCID-38dh-5u7n-aaan	https://security.archlinux.org/AVG-803	34.0.0rc1