AVG-1493 log

Package firefox
Status Not affected
Severity Medium
Type multiple issues
Affected 84.0.2-1
Fixed 85.0-1
Current 103.0.2-1 [extra]
Ticket None
Created Tue Jan 26 14:28:16 2021
Issue Severity Remote Type Description
CVE-2021-23959 Medium Yes Cross-site scripting
A security issue was found in Firefox before version 85.0. A cross- site scripting (XSS) bug in the internal error pages could have led to various spoofing...
CVE-2021-23957 Medium Yes Sandbox escape
A security issue was found in Firefox before version 85.0. Navigations through the Android-specific intent URL scheme could have been misused to escape the...
Notes
These issues only affected Firefox for Android. Other operating systems are unaffected.