[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2016:1778-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":70,"duplicates":71,"related":72,"reserved_at":9,"published_at":101,"modified_at":102,"state":9,"summary":103,"references_raw":105,"kevs":258,"epss":9,"epss_history":259,"metrics":260,"affected":261},"OPENSUSE-SU-2016:1778-1","Security update for Mozilla Thunderbird\n\nThis update contains Mozilla Thunderbird 45.2. (boo#983549)\n\nIt fixes security issues mostly affecting the e-mail program when used in a browser context, such as viewing a web page or HTMl formatted e-mail.\n\nThe following vulnerabilities were fixed:\n\n- CVE-2016-2818, CVE-2016-2815: Memory safety bugs (boo#983549, MFSA2016-49)\n\nContains the following security fixes from the 45.1 release: (boo#977333)\n\n- CVE-2016-2806, CVE-2016-2807: Miscellaneous memory safety hazards (boo#977375, boo#977376, MFSA 2016-39)\n\nContains the following security fixes from the 45.0 release: (boo#969894)\n\n- CVE-2016-1952, CVE-2016-1953: Miscellaneous memory safety hazards (MFSA 2016-16)\n- CVE-2016-1954: Local file overwriting and potential privilege escalation through CSP reports (MFSA 2016-17)\n- CVE-2016-1955: CSP reports fail to strip location information for embedded iframe pages (MFSA 2016-18)\n- CVE-2016-1956: Linux video memory DOS with Intel drivers (MFSA 2016-19)\n- CVE-2016-1957: Memory leak in libstagefright when deleting an array during MP4 processing (MFSA 2016-20)\n- CVE-2016-1960: Use-after-free in HTML5 string parser (MFSA 2016-23)\n- CVE-2016-1961: Use-after-free in SetBody (MFSA 2016-24)\n- CVE-2016-1964: Use-after-free during XML transformations (MFSA 2016-27)\n- CVE-2016-1974: Out-of-bounds read in HTML parser following a failed allocation (MFSA 2016-34)\n\nThe graphite font shaping library was disabled, addressing the following font vulnerabilities:\n\n- MFSA 2016-37/CVE-2016-1977/CVE-2016-2790/CVE-2016-2791/\n  CVE-2016-2792/CVE-2016-2793/CVE-2016-2794/CVE-2016-2795/\n  CVE-2016-2796/CVE-2016-2797/CVE-2016-2798/CVE-2016-2799/\n  CVE-2016-2800/CVE-2016-2801/CVE-2016-2802\n\nThe following tracked packaging changes are included:\n\n- fix build issues with gcc/binutils combination used in Leap 42.2 (boo#984637)\n- gcc6 fixes (boo#986162)\n- running on 48bit va aarch64 (boo#984126)",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68],{"_key":15},"CVE-2016-1952",{"_key":17},"CVE-2016-1953",{"_key":19},"CVE-2016-1954",{"_key":21},"CVE-2016-1955",{"_key":23},"CVE-2016-1956",{"_key":25},"CVE-2016-1957",{"_key":27},"CVE-2016-1960",{"_key":29},"CVE-2016-1961",{"_key":31},"CVE-2016-1964",{"_key":33},"CVE-2016-1974",{"_key":35},"CVE-2016-1977",{"_key":37},"CVE-2016-2790",{"_key":39},"CVE-2016-2791",{"_key":41},"CVE-2016-2792",{"_key":43},"CVE-2016-2793",{"_key":45},"CVE-2016-2794",{"_key":47},"CVE-2016-2795",{"_key":49},"CVE-2016-2796",{"_key":51},"CVE-2016-2797",{"_key":53},"CVE-2016-2798",{"_key":55},"CVE-2016-2799",{"_key":57},"CVE-2016-2800",{"_key":59},"CVE-2016-2801",{"_key":61},"CVE-2016-2802",{"_key":63},"CVE-2016-2806",{"_key":65},"CVE-2016-2807",{"_key":67},"CVE-2016-2815",{"_key":69},"CVE-2016-2818",[],[],[73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},"2016-07-10T18:30:29Z","2026-02-04T04:20:27.161974Z",{"cisa_kev":104,"cisa_ransomware":104,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[106,112,117,121,125,129,133,137,141,145,150,154,158,162,166,170,174,178,182,186,190,194,198,202,206,210,214,218,222,226,230,234,238,242,246,250,254],{"url":107,"sources":108,"tags":110},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HCMXP7OML46I3X4TRHDOHMURKLSPQK2P/#HCMXP7OML46I3X4TRHDOHMURKLSPQK2P",[109],"osv_suse",[111],"Advisory",{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/969894",[109],[116],"REPORT",{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/977333",[109],[116],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/977375",[109],[116],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/977376",[109],[116],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/983549",[109],[116],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/984126",[109],[116],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/984637",[109],[116],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/986162",[109],[116],{"url":146,"sources":147,"tags":148},"https://www.suse.com/security/cve/CVE-2016-1952",[109],[149],"WEB",{"url":151,"sources":152,"tags":153},"https://www.suse.com/security/cve/CVE-2016-1953",[109],[149],{"url":155,"sources":156,"tags":157},"https://www.suse.com/security/cve/CVE-2016-1954",[109],[149],{"url":159,"sources":160,"tags":161},"https://www.suse.com/security/cve/CVE-2016-1955",[109],[149],{"url":163,"sources":164,"tags":165},"https://www.suse.com/security/cve/CVE-2016-1956",[109],[149],{"url":167,"sources":168,"tags":169},"https://www.suse.com/security/cve/CVE-2016-1957",[109],[149],{"url":171,"sources":172,"tags":173},"https://www.suse.com/security/cve/CVE-2016-1960",[109],[149],{"url":175,"sources":176,"tags":177},"https://www.suse.com/security/cve/CVE-2016-1961",[109],[149],{"url":179,"sources":180,"tags":181},"https://www.suse.com/security/cve/CVE-2016-1964",[109],[149],{"url":183,"sources":184,"tags":185},"https://www.suse.com/security/cve/CVE-2016-1974",[109],[149],{"url":187,"sources":188,"tags":189},"https://www.suse.com/security/cve/CVE-2016-1977",[109],[149],{"url":191,"sources":192,"tags":193},"https://www.suse.com/security/cve/CVE-2016-2790",[109],[149],{"url":195,"sources":196,"tags":197},"https://www.suse.com/security/cve/CVE-2016-2791",[109],[149],{"url":199,"sources":200,"tags":201},"https://www.suse.com/security/cve/CVE-2016-2792",[109],[149],{"url":203,"sources":204,"tags":205},"https://www.suse.com/security/cve/CVE-2016-2793",[109],[149],{"url":207,"sources":208,"tags":209},"https://www.suse.com/security/cve/CVE-2016-2794",[109],[149],{"url":211,"sources":212,"tags":213},"https://www.suse.com/security/cve/CVE-2016-2795",[109],[149],{"url":215,"sources":216,"tags":217},"https://www.suse.com/security/cve/CVE-2016-2796",[109],[149],{"url":219,"sources":220,"tags":221},"https://www.suse.com/security/cve/CVE-2016-2797",[109],[149],{"url":223,"sources":224,"tags":225},"https://www.suse.com/security/cve/CVE-2016-2798",[109],[149],{"url":227,"sources":228,"tags":229},"https://www.suse.com/security/cve/CVE-2016-2799",[109],[149],{"url":231,"sources":232,"tags":233},"https://www.suse.com/security/cve/CVE-2016-2800",[109],[149],{"url":235,"sources":236,"tags":237},"https://www.suse.com/security/cve/CVE-2016-2801",[109],[149],{"url":239,"sources":240,"tags":241},"https://www.suse.com/security/cve/CVE-2016-2802",[109],[149],{"url":243,"sources":244,"tags":245},"https://www.suse.com/security/cve/CVE-2016-2806",[109],[149],{"url":247,"sources":248,"tags":249},"https://www.suse.com/security/cve/CVE-2016-2807",[109],[149],{"url":251,"sources":252,"tags":253},"https://www.suse.com/security/cve/CVE-2016-2815",[109],[149],{"url":255,"sources":256,"tags":257},"https://www.suse.com/security/cve/CVE-2016-2818",[109],[149],[],[],[],[262],{"ecosystem":263,"name":264,"vendor":265,"product":266,"cpe_part":9,"purl_type":267,"purl_namespace":265,"purl_name":266,"source":9,"versions":268},"SUSE Linux Enterprise","MozillaThunderbird","suse","MozillaThunderbird&distro=SUSE Package Hub 12","rpm",[269],{"version":270,"is_range":271,"range_type":272,"version_start":9,"version_start_type":9,"version_end":273,"version_end_type":274,"fixed_in":9},"lt45_2_6_1",true,"ecosystem","45.2-6.1","excluding"]