CVE-2021-23995 log

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
A security issue has been found in Firefox before version 88 and Thunderbird before version 78.10. When Responsive Design Mode was enabled, it used references to objects that were previously freed. Mozilla presumes that with enough effort this could have been exploited to run arbitrary code.
Group Package Affected Fixed Severity Status Ticket
AVG-1836 thunderbird 78.9.1-3 78.10.0-1 High Fixed
AVG-1834 firefox 87.0-2 88.0-1 High Fixed
Date Advisory Group Package Severity Type
29 Apr 2021 ASA-202104-4 AVG-1836 thunderbird High multiple issues
29 Apr 2021 ASA-202104-3 AVG-1834 firefox High multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2021-16/#CVE-2021-23995
https://www.mozilla.org/en-US/security/advisories/mfsa2021-14/#CVE-2021-23995
https://bugzilla.mozilla.org/show_bug.cgi?id=1699835