A flaw was found in Mozilla Thunderbird before version 52.9. Plaintext of decrypted emails can leak through by user submitting an embedded form by pressing enter key within a text input field. References: https://www.mozilla.org/en-US/security/advisories/mfsa2018-18/#CVE-2018-12374
Created thunderbird tracking bugs for this issue: Affects: fedora-all [bug 1598544]
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:2252 https://access.redhat.com/errata/RHSA-2018:2252
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2018:2251 https://access.redhat.com/errata/RHSA-2018:2251