Описание
A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| firefox | fixed | 88.0-1 | package | |
| firefox-esr | fixed | 78.10.0esr-1 | package | |
| thunderbird | fixed | 1:78.10.0-1 | package |
Примечания
https://www.mozilla.org/en-US/security/advisories/mfsa2021-14/#CVE-2021-23994
https://www.mozilla.org/en-US/security/advisories/mfsa2021-15/#CVE-2021-23994
https://www.mozilla.org/en-US/security/advisories/mfsa2021-16/#CVE-2021-23994
EPSS
Связанные уязвимости
A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
Уязвимость компонента WebGL почтового клиента Thunderbird, браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код
EPSS