AVG-1599 log

Package firefox
Status Fixed
Severity High
Type multiple issues
Affected 85.0.2-1
Fixed 86.0-1
Current 102.0-1 [extra]
Ticket None
Created Tue Feb 23 18:42:31 2021
Issue Severity Remote Type Description
CVE-2021-23979 High Yes Arbitrary code execution
A security issue was found in Firefox before version 86.0. Mozilla developers reported memory safety bugs present in Firefox 85. Some of these bugs showed...
CVE-2021-23978 High Yes Arbitrary code execution
A security issue was found in Firefox before version 86.0 and Thunderbird before version 78.8. Mozilla developers reported memory safety bugs present in...
CVE-2021-23975 Low No Incorrect calculation
A security issue was found in Firefox before version 86.0. The developer page about:memory has a Measure function for exploring what object types the...
CVE-2021-23974 Medium Yes Cross-site scripting
A security issue was found in Firefox before version 86.0. The DOMParser API did not properly process <noscript> elements for escaping. This could be used...
CVE-2021-23973 Low Yes Information disclosure
A security issue was found in Firefox before version 86.0 and Thunderbird before version 78.8. When trying to load a cross-origin resource in an audio/video...
CVE-2021-23972 Low Yes Content spoofing
A security issue was found in Firefox before version 86.0. One phishing tactic on the web is to provide a link with HTTP Auth. For example...
CVE-2021-23971 Medium Yes Information disclosure
A security issue was found in Firefox before version 86.0. When processing a redirect with a conflicting Referrer-Policy, Firefox would have adopted the...
CVE-2021-23970 High Yes Denial of service
A security issue was found in Firefox before version 86.0. Context- specific code was included in a shared jump table; resulting in assertions being...
CVE-2021-23969 High Yes Information disclosure
A security issue was found in Firefox before version 86.0 and Thunderbird before version 78.8. As specified in the W3C Content Security Policy draft, when...
CVE-2021-23968 High Yes Information disclosure
A security issue was found in Firefox before version 86.0 and Thunderbird before version 78.8. If Content Security Policy blocked frame navigation, the full...
References
https://www.mozilla.org/en-US/security/advisories/mfsa2021-07/