Bugzilla – Bug 1093969
VUL-0: CVE-2018-5184: MozillaThunderbird: Full plaintext recovery in S/MIME via chosen-ciphertext attack
Last modified: 2019-05-01 14:17:08 UTC
Using remote content in encrypted messages can lead to the disclosure of plaintext. This is Firefox specific out of 1093152 (CVE-2017-17689) References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5184 https://bugzilla.mozilla.org/show_bug.cgi?id=1411592 https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/#CVE-2018-5184
SLE 15 and Leap are current/fix with this. Resolving.