2020

CVE-2020-6795 (v3: 6.5) 2 Mar 2020
When processing a message that contains multiple S/MIME signatures, a bug in the MIME processing code caused a null pointer dereference, leading to an unexploitable crash. This vulnerability affects Thunderbird < 68.5.

2019

2018

2017

CVE-2017-5416 (v3: 7.5) 11 Jun 2018
In certain circumstances a networking event listener can be prematurely released. This appears to result in a null dereference in practice. This vulnerability affects Firefox < 52 and Thunderbird < 52.
CVE-2017-7502 (v3: 7.5) 30 May 2017
Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.

2016

CVE-2016-5285 (v3: 7.5) 15 Nov 2019
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.

2015

2014

2013

2012

2011