CVE-2021-29953 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Critical
Remote	Yes
Type	Cross-site scripting
Description	A malicious webpage could have forced a Firefox for Android user into executing attacker-controlled JavaScript in the context of another domain, resulting in a Universal Cross-Site Scripting vulnerability. The issue is fixed in Firefox for Android version 88.1.3. Note: This issue is only affected Firefox for Android. Other operating systems are unaffected. Further details are being temporarily withheld to allow users an opportunity to update.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1918	firefox	88.0-1		Critical	Not affected

References
https://www.mozilla.org/en-US/security/advisories/mfsa2021-20/#CVE-2021-29953 https://bugzilla.mozilla.org/show_bug.cgi?id=1701684