Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-38496

Опубликовано: 03 нояб. 2021
Источник: debian
EPSS Низкий

Описание

During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 78.15, Thunderbird < 91.2, Firefox ESR < 91.2, Firefox ESR < 78.15, and Firefox < 93.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed93.0-1package
firefox-esrfixed91.2.0esr-1package
thunderbirdfixed1:91.2.0-1experimentalpackage
thunderbirdfixed1:91.2.1-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38496

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-44/#CVE-2021-38496

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38496

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-46/#CVE-2021-38496

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38496

EPSS

Процентиль: 75%
0.00895
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-38496

CVSS3: 8.8
ubuntu
почти 4 года назад

During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 78.15, Thunderbird < 91.2, Firefox ESR < 91.2, Firefox ESR < 78.15, and Firefox < 93.

redhat логотип

CVE-2021-38496

CVSS3: 8.8
redhat
почти 4 года назад

During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 78.15, Thunderbird < 91.2, Firefox ESR < 91.2, Firefox ESR < 78.15, and Firefox < 93.

nvd логотип

CVE-2021-38496

CVSS3: 8.8
nvd
почти 4 года назад

During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 78.15, Thunderbird < 91.2, Firefox ESR < 91.2, Firefox ESR < 78.15, and Firefox < 93.

github логотип

GHSA-3rfx-pjp7-cvfp

CVSS3: 8.8
github
около 3 лет назад

During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 78.15, Thunderbird < 91.2, Firefox ESR < 91.2, Firefox ESR < 78.15, and Firefox < 93.

fstec логотип

BDU:2021-05029

CVSS3: 9.8
fstec
почти 4 года назад

Уязвимость операции MessageTasks браузера Mozilla Firefox, позволяющая нарушителю выполнить произвольный код в системе.

EPSS

Процентиль: 75%
0.00895
Низкий