CVE-2021-23997 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	Yes
Type	Arbitrary code execution
Description	A security issue has been found in Firefox before version 88. Due to unexpected data type conversions, a use-after-free could have occurred when interacting with the font cache. Mozilla presumes that with enough effort this could have been exploited to run arbitrary code.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1834	firefox	87.0-2	88.0-1	High	Fixed

Date	Advisory	Group	Package	Severity	Type
29 Apr 2021	ASA-202104-3	AVG-1834	firefox	High	multiple issues

References
https://www.mozilla.org/en-US/security/advisories/mfsa2021-16/#CVE-2021-23997 https://bugzilla.mozilla.org/show_bug.cgi?id=1701942