CVE-2021-43543 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Sandbox escape |
| Description | A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Documents loaded with the CSP sandbox directive could have escaped the sandbox's script restriction by embedding additional content. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2608 | thunderbird | 91.3.2-2 | 91.4.0-1 | High | Fixed | |
| AVG-2606 | firefox | 94.0.2-2 | 95.0-1 | High | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 11 Dec 2021 | ASA-202112-9 | AVG-2608 | thunderbird | High | multiple issues |
| 11 Dec 2021 | ASA-202112-8 | AVG-2606 | firefox | High | multiple issues |
| References |
|---|
https://www.mozilla.org/security/advisories/mfsa2021-52/ https://www.mozilla.org/security/advisories/mfsa2021-54/ https://bugzilla.mozilla.org/show_bug.cgi?id=1738418 |