CVE-2021-43538 log
| Source |
|
| Severity | High |
| Remote | Yes |
| Type | Content spoofing |
| Description | A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. By misusing a race in the notification code, an attacker could have forcefully hidden the notification for pages that had received full screen and pointer lock access, which could have been used for spoofing attacks. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2608 | thunderbird | 91.3.2-2 | 91.4.0-1 | High | Fixed | |
| AVG-2606 | firefox | 94.0.2-2 | 95.0-1 | High | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 11 Dec 2021 | ASA-202112-9 | AVG-2608 | thunderbird | High | multiple issues |
| 11 Dec 2021 | ASA-202112-8 | AVG-2606 | firefox | High | multiple issues |
| References |
|---|
https://www.mozilla.org/security/advisories/mfsa2021-52/ https://www.mozilla.org/security/advisories/mfsa2021-54/ https://bugzilla.mozilla.org/show_bug.cgi?id=1739091 |