When importing a revoked key that specified key compromise as the revocation reason, Thunderbird did not update the existing copy of the key that was…

When viewing an email message A, which contains an attached message B, where B is encrypted or digitally signed or both, Thunderbird may show an…

An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype…

If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollution, they could have achieved execution of attacker-controlled…

When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all…

The search term could have been specified externally to trigger SQL injection. This vulnerability affects Firefox for iOS < 101. Zafiyet ile ilgili Genel Bilgi,…

Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Firefox…

It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR < 91.5, Firefox…

If a domain name contained a RTL character, it would cause the domain to be rendered to the right of the path. This could lead…

Mozilla developers and community members Gabriele Svelto, Sebastian Hengst, Randell Jesup, Luan Herrera, Lars T Hansen, and the Mozilla Fuzzing Team reported memory safety bugs…