CVE-2017-7829

Priority
Low
Description
It is possible to spoof the sender's email address and display an arbitrary
sender address to the email recipient. The real sender's address is not
displayed if preceded by a null character in the display string. This
vulnerability affects Thunderbird < 52.5.2.
References
Package
Upstream:released (52.5.2)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (1:52.6.0+build1-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1:52.6.0+build1-0ubuntu0.16.04.1)
Ubuntu 17.10 (Artful Aardvark):released (1:52.6.0+build1-0ubuntu0.17.10.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (1:52.6.0+build1-0ubuntu1)
More Information

Updated: 2018-06-26 05:02:45 UTC (commit 7799c934cca373482531a7b00e4dfe82302ceae5)