Описание
If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 83.0+build2-0ubuntu0.18.04.2 |
| devel | released | 83.0+build2-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | released | 83.0+build2-0ubuntu0.20.04.1 |
| groovy | released | 83.0+build2-0ubuntu0.20.10.1 |
| hirsute | released | 83.0+build2-0ubuntu1 |
| impish | released | 83.0+build2-0ubuntu1 |
| jammy | released | 83.0+build2-0ubuntu1 |
| kinetic | released | 83.0+build2-0ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | DNE | |
| esm-apps/bionic | ignored | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE | |
| impish | DNE | |
| jammy | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | DNE | |
| esm-apps/focal | ignored | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | ignored | |
| focal | ignored | |
| groovy | ignored | end of life |
| hirsute | DNE | |
| impish | DNE | |
| jammy | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE | |
| impish | DNE | |
| jammy | DNE | |
| kinetic | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | ignored | |
| focal | ignored | |
| groovy | ignored | end of life |
| hirsute | DNE | |
| impish | DNE | |
| jammy | DNE | |
| kinetic | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1:78.8.1+build1-0ubuntu0.18.04.1 |
| devel | released | 1:78.5.0+build3-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | released | 1:78.7.1+build1-0ubuntu0.20.04.1 |
| groovy | released | 1:78.5.0+build3-0ubuntu0.20.10.1 |
| hirsute | released | 1:78.5.0+build3-0ubuntu1 |
| impish | released | 1:78.5.0+build3-0ubuntu1 |
| jammy | released | 1:78.5.0+build3-0ubuntu1 |
| kinetic | released | 1:78.5.0+build3-0ubuntu1 |
Показывать по
Ссылки на источники
EPSS
9.3 Critical
CVSS2
8.8 High
CVSS3
Связанные уязвимости
If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
If the Compact() method was called on an nsTArray, the array could hav ...
If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
EPSS
9.3 Critical
CVSS2
8.8 High
CVSS3