Endpoint Vulnerability

Use-after-free when updating offline cache

Description

Security researcher Byoungyoung Lee of Georgia Tech Information Security Center (GTISC) used the Address Sanitizer tool to discover a use-after-free during state change events while updating the offline cache. This leads to a potentially exploitable crash.

Affected Products

Thunderbird

References

CVE-2013-5597,