CVE-2017-7829 (retired)

It is possible to spoof the sender's email address and display an arbitrary
sender address to the email recipient. The real sender's address is not
displayed if preceded by a null character in the display string. This
vulnerability affects Thunderbird < 52.5.2.
Upstream:released (52.5.2)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (1:52.6.0+build1-0ubuntu0.16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (1:52.6.0+build1-0ubuntu1)
More Information

Updated: 2019-09-19 16:04:42 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)