Bugzilla – Bug 1093971
VUL-0: CVE-2018-5162: MozillaThunderbird: Encrypted mail leaks plaintext through src attribute
Last modified: 2019-05-01 14:18:09 UTC
Plaintext of decrypted emails can leak through the src attribute of remote images, or links. TB specific problem related to bug 1093151 (CVE-2017-17688) References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5162 https://bugzilla.mozilla.org/show_bug.cgi?id=1457721 https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/#CVE-2018-5162
SLE 15 and Leap are current/fix with this. Resolving.