Headline
CVE-2021-23978: Bug List
Mozilla developers reported memory safety bugs present in Firefox 85 and Firefox ESR 78.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 86, Thunderbird < 78.8, and Firefox ESR < 78.8.
Fri May 27 2022 11:42:20 PDT
- Bug ID: 786797, 1682928, 1687391, 1687597?cve=title
ID
Type
Summary
Product
Comp
Assignee▲
Status▲
Resolution
Updated
1687597
heap-use-after-free in [@ mozilla::dom::WorkerPrivate::ResetWorkerPrivateInWorkerThread]
Core
DOM: Workers
simon.giesecke
RESO
FIXE
2021-11-22
1682928
ThreadSanitizer: data race [@ EventSource::UpdateDontKeepAlive] vs. [@ EventSource::ReadyState]
Core
DOM: Workers
ytausky
RESO
FIXE
2022-01-10
786797
Possible integer overflow when calculating jArray size/index
Core
DOM: HTML Parser
hsivonen
RESO
FIXE
2021-11-22
1687391
Race Condition in ThreadSafeWeakPtr
Core
MFBT
nika
RESO
FIXE
2021-11-22
4 bugs found.
REST | CSV | Feed | iCalendar
Change Columns
Edit Search
as
File a new bug in the “Core” product