Oval Definition:oval:org.opensuse.security:def:202123993
Revision Date:2022-08-07Version:1
Title:CVE-2021-23993
Description:

An attacker may perform a DoS attack to prevent a user from sending encrypted email to a correspondent. If an attacker creates a crafted OpenPGP key with a subkey that has an invalid self signature, and the Thunderbird user imports the crafted key, then Thunderbird may try to use the invalid subkey, but the RNP library rejects it from being used, causing encryption to fail. This vulnerability affects Thunderbird < 78.9.1.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2021-23993
SUSE CVE-2021-23993
openSUSE-SU-2021:0580-1
Platform(s):openSUSE Leap 15.2
openSUSE Leap 15.3
openSUSE Leap 15.4
openSUSE Tumbleweed
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Workstation Extension 15 SP4
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • MozillaThunderbird-91.1.1-1.1 is installed
  • OR MozillaThunderbird-translations-common-91.1.1-1.1 is installed
  • OR MozillaThunderbird-translations-other-91.1.1-1.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • MozillaThunderbird-78.9.1-lp152.2.38.1 is installed
  • AND MozillaThunderbird is signed with openSUSE key
  • OR
  • MozillaThunderbird-translations-common-78.9.1-lp152.2.38.1 is installed
  • AND MozillaThunderbird-translations-common is signed with openSUSE key
  • OR
  • MozillaThunderbird-translations-other-78.9.1-lp152.2.38.1 is installed
  • AND MozillaThunderbird-translations-other is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.3 is installed
  • AND Package Information
  • MozillaThunderbird-78.10.0-bp153.1.1 is installed
  • AND MozillaThunderbird is signed with openSUSE key
  • OR
  • MozillaThunderbird-translations-common-78.10.0-bp153.1.1 is installed
  • AND MozillaThunderbird-translations-common is signed with openSUSE key
  • OR
  • MozillaThunderbird-translations-other-78.10.0-bp153.1.1 is installed
  • AND MozillaThunderbird-translations-other is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • MozillaThunderbird-91.8.0-150200.8.65.1 is installed
  • AND MozillaThunderbird is signed with openSUSE key
  • OR
  • MozillaThunderbird-translations-common-91.8.0-150200.8.65.1 is installed
  • AND MozillaThunderbird-translations-common is signed with openSUSE key
  • OR
  • MozillaThunderbird-translations-other-91.8.0-150200.8.65.1 is installed
  • AND MozillaThunderbird-translations-other is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 15 SP4 is installed
  • AND Package Information
  • MozillaThunderbird-91.8.0-150200.8.65.1 is installed
  • OR MozillaThunderbird-translations-common-91.8.0-150200.8.65.1 is installed
  • OR MozillaThunderbird-translations-other-91.8.0-150200.8.65.1 is installed
    • BACK