CVE-2021-38496 - log back

CVE-2021-38496 edited at 12 Oct 2021 14:42:34
References
https://www.mozilla.org/security/advisories/mfsa2021-43/
+ https://www.mozilla.org/security/advisories/mfsa2021-47/
https://bugzilla.mozilla.org/show_bug.cgi?id=1725335
CVE-2021-38496 created at 05 Oct 2021 13:06:06
Severity
+ High
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash.
References
+ https://www.mozilla.org/security/advisories/mfsa2021-43/
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1725335
Notes