Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-29986

Опубликовано: 17 авг. 2021
Источник: debian

Описание

A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. *Note: This issue only affected Linux operating systems. Other operating systems are unaffected.* This vulnerability affects Thunderbird < 78.13, Thunderbird < 91, Firefox ESR < 78.13, and Firefox < 91.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed91.0-1package
firefox-esrfixed78.13.0esr-1package
thunderbirdfixed1:78.13.0-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-33/#CVE-2021-29986

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-34/#CVE-2021-29986

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-36/#CVE-2021-29986

Связанные уязвимости

CVSS3: 8.1
ubuntu
почти 4 года назад

A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. *Note: This issue only affected Linux operating systems. Other operating systems are unaffected.* This vulnerability affects Thunderbird < 78.13, Thunderbird < 91, Firefox ESR < 78.13, and Firefox < 91.

CVSS3: 7.5
redhat
почти 4 года назад

A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. *Note: This issue only affected Linux operating systems. Other operating systems are unaffected.* This vulnerability affects Thunderbird < 78.13, Thunderbird < 91, Firefox ESR < 78.13, and Firefox < 91.

CVSS3: 8.1
nvd
почти 4 года назад

A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. *Note: This issue only affected Linux operating systems. Other operating systems are unaffected.* This vulnerability affects Thunderbird < 78.13, Thunderbird < 91, Firefox ESR < 78.13, and Firefox < 91.

CVSS3: 8.1
github
около 3 лет назад

A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. *Note: This issue only affected Linux operating systems. Other operating systems are unaffected.* This vulnerability affects Thunderbird < 78.13, Thunderbird < 91, Firefox ESR < 78.13, and Firefox < 91.

CVSS3: 8.8
fstec
почти 4 года назад

Уязвимость браузера Mozilla Firefox, позволяющая нарушителю выполнить произвольный код в целевой системе