CVE-2021-38496
03.11.2021, 01:15
During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 78.15, Thunderbird < 91.2, Firefox ESR < 91.2, Firefox ESR < 78.15, and Firefox < 93.Enginsight
| Vendor | Product | Version |
|---|---|---|
| mozilla | firefox | 𝑥 < 93.0 |
| mozilla | firefox | 91.0 ≤ 𝑥 < 91.2 |
| mozilla | firefox_esr | 𝑥 < 78.15 |
| mozilla | thunderbird | 𝑥 < 78.15 |
| mozilla | thunderbird | 91.0 ≤ 𝑥 < 91.2 |
| debian | debian_linux | 9.0 |
| debian | debian_linux | 10.0 |
| debian | debian_linux | 11.0 |
𝑥
= Vulnerable software versions
Debian Releases
Debian Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| firefox |
| ||||||||||||
| firefox-esr |
| ||||||||||||
| thunderbird |
|
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| firefox |
| ||||||||||||||||||||||
| mozjs38 |
| ||||||||||||||||||||||
| mozjs52 |
| ||||||||||||||||||||||
| mozjs68 |
| ||||||||||||||||||||||
| mozjs78 |
| ||||||||||||||||||||||
| thunderbird |
|
Common Weakness Enumeration
References