CVE-2021-43537 - log back

CVE-2021-43537 created at 07 Dec 2021 20:05:21
Severity
+ High
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash.
References
+ https://www.mozilla.org/security/advisories/mfsa2021-52/
+ https://www.mozilla.org/security/advisories/mfsa2021-54/
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1738237
Notes