CVE-2021-23978

Опубликовано: 23 фев. 2021

Источник: redhat

CVSS3: 8.8

Описание

Mozilla developers reported memory safety bugs present in Firefox 85 and Firefox ESR 78.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 86, Thunderbird < 78.8, and Firefox ESR < 78.8.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	firefox	Out of support scope
Red Hat Enterprise Linux 6	thunderbird	Out of support scope
Red Hat Enterprise Linux 7	firefox	Fixed	RHSA-2021:0656	24.02.2021
Red Hat Enterprise Linux 7	thunderbird	Fixed	RHSA-2021:0661	24.02.2021
Red Hat Enterprise Linux 8	firefox	Fixed	RHSA-2021:0655	24.02.2021
Red Hat Enterprise Linux 8	thunderbird	Fixed	RHSA-2021:0657	24.02.2021
Red Hat Enterprise Linux 8.1 Extended Update Support	thunderbird	Fixed	RHSA-2021:0658	24.02.2021
Red Hat Enterprise Linux 8.1 Extended Update Support	firefox	Fixed	RHSA-2021:0659	24.02.2021
Red Hat Enterprise Linux 8.2 Extended Update Support	firefox	Fixed	RHSA-2021:0660	24.02.2021
Red Hat Enterprise Linux 8.2 Extended Update Support	thunderbird	Fixed	RHSA-2021:0662	24.02.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-120

https://bugzilla.redhat.com/show_bug.cgi?id=1932112Mozilla: Memory safety bugs fixed in Firefox 86 and Firefox ESR 78.8

8.8 High

CVSS3

Связанные уязвимости

CVE-2021-23978

CVSS3: 8.8

ubuntu

почти 5 лет назад

CVE-2021-23978

CVSS3: 8.8

nvd

почти 5 лет назад

CVE-2021-23978

CVSS3: 8.8

debian

почти 5 лет назад

Mozilla developers reported memory safety bugs present in Firefox 85 a ...

GHSA-3rjx-v36w-2rw5

CVSS3: 8.8

github

больше 3 лет назад

openSUSE-SU-2021:0387-1

suse-cvrf

почти 5 лет назад

Security update for MozillaThunderbird

8.8 High

CVSS3