CVE-2022-28282 log

Source
Severity Medium
Remote Unknown
Type Unknown
Description
By using a link with rel="localization" a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potentially exploitable crash.
Group Package Affected Fixed Severity Status Ticket
AVG-2712 thunderbird 91.7.0-1 91.8.0-1 High Not affected
AVG-2711 firefox 98.0.2-1 99.0-1 High Fixed
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1751609