A malicious mail server could send malformed strings with...
High severity
Unreviewed
Published
Mar 24, 2026
to the GitHub Advisory Database
•
Updated Jun 30, 2026
Description
Published by the National Vulnerability Database
Mar 24, 2026
Published to the GitHub Advisory Database
Mar 24, 2026
Last updated
Jun 30, 2026
A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking sensitive data. This vulnerability affects Thunderbird < 149 and Thunderbird < 140.9.
References