Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-29976

Опубликовано: 05 авг. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

РелизСтатусПримечание
bionic

released

90.0+build1-0ubuntu0.18.04.1
devel

released

90.0+build1-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

90.0+build1-0ubuntu0.20.04.1
groovy

released

90.0+build1-0ubuntu0.20.10.1
hirsute

released

90.0+build1-0ubuntu0.21.04.1
impish

released

90.0+build1-0ubuntu1
jammy

released

90.0+build1-0ubuntu1
kinetic

released

90.0+build1-0ubuntu1

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

esm-apps/bionic

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

esm-apps/focal

ignored

esm-infra-legacy/trusty

DNE

esm-infra/bionic

ignored

focal

ignored

groovy

ignored

end of life
hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

ignored

focal

ignored

groovy

ignored

end of life
hirsute

DNE

impish

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/jammy

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

ignored

end of life
hirsute

ignored

end of life
impish

ignored

end of life
jammy

ignored

Показывать по

РелизСтатусПримечание
bionic

released

1:78.13.0+build1-0ubuntu0.18.04.1
devel

released

1:78.12.0+build2-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

1:78.13.0+build1-0ubuntu0.20.04.2
groovy

ignored

end of life
hirsute

released

1:78.13.0+build1-0ubuntu0.21.04.2
impish

released

1:78.12.0+build2-0ubuntu1
jammy

released

1:78.12.0+build2-0ubuntu1
kinetic

released

1:78.12.0+build2-0ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 48%
0.00252
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-29976

CVSS3: 8.8
redhat
около 4 лет назад

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

nvd логотип

CVE-2021-29976

CVSS3: 8.8
nvd
около 4 лет назад

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

debian логотип

CVE-2021-29976

CVSS3: 8.8
debian
около 4 лет назад

Mozilla developers reported memory safety bugs present in code shared ...

github логотип

GHSA-jv3x-w8ff-cj2g

CVSS3: 8.8
github
около 3 лет назад

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

fstec логотип

BDU:2021-03661

CVSS3: 8.8
fstec
около 4 лет назад

Уязвимость веб-браузеров Firefox, Firefox ESR, почтового клиента Thunderbird, связанная с записью за границами буфера, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

EPSS

Процентиль: 48%
0.00252
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3