AVG-1493 log
| Package | firefox |
| Status | Not affected |
| Severity | Medium |
| Type | multiple issues |
| Affected | 84.0.2-1 |
| Fixed | 85.0-1 |
| Current | 145.0.1-1 [extra] |
| Ticket | None |
| Created | Tue Jan 26 14:28:16 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-23959 | Medium | Yes | Cross-site scripting | A security issue was found in Firefox before version 85.0. A cross- site scripting (XSS) bug in the internal error pages could have led to various spoofing... |
| CVE-2021-23957 | Medium | Yes | Sandbox escape | A security issue was found in Firefox before version 85.0. Navigations through the Android-specific intent URL scheme could have been misused to escape the... |
| Notes |
|---|
These issues only affected Firefox for Android. Other operating systems are unaffected. |