CVE-2021-29970 log
Source |
|
Severity | High |
Remote | Yes |
Type | Arbitrary code execution |
Description | A malicious webpage could have triggered a use-after-free, memory corruption, and a potentially exploitable crash. This bug only affected Firefox before version 90 and Thunderbird before version 78.12 when accessibility was enabled. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-2152 | thunderbird | 78.11.0-1 | 78.12.0-1 | High | Fixed | |
AVG-2148 | firefox | 89.0.2-1 | 90.0-1 | High | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
14 Jul 2021 | ASA-202107-21 | AVG-2152 | thunderbird | High | multiple issues |
14 Jul 2021 | ASA-202107-20 | AVG-2148 | firefox | High | multiple issues |
References |
---|
https://www.mozilla.org/security/advisories/mfsa2021-28/ https://www.mozilla.org/security/advisories/mfsa2021-30/ https://bugzilla.mozilla.org/show_bug.cgi?id=1709976 |