This led to memory corruption and a potentially exploitable crash (CVE-2021-29984).
#Firefox esr 91 for android#
Firefox for Android could get stuck in fullscreen mode and not exit it even after normal interactions that should cause it to exit (CVE-2021-29983) Note: This issue only affected Firefox for Android.Firefox incorrectly treated an inline list-item element as a block element, resulting in an out of bounds read or memory corruption, and a potentially exploitable crash (CVE-2021-29988).
#Firefox esr 91 code#
An issue present in lowering/register allocation could have led to obscure but deterministic register confusion failures in JITted code that would lead to a potentially exploitable crash (CVE-2021-29981).A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash (CVE-2021-29986) Note: This issue only affected Linux operating systems.Details of these vulnerabilities are as follows: Other operating systems are unaffected.Multiple vulnerabilities have been discovered in Mozilla Firefox and Firefox Extended Support Release (ESR), the most severe of which could allow for arbitrary code execution. This bug only affects Firefox for macOS and Linux. This behavior was reverted to the original, user-specific directory.
#Firefox esr 91 download#
Previously Firefox for macOS and Linux would download temporary files to a user-specific directory in /tmp, but this behavior was changed to download them to /tmp where they could be affected by other local users. #CVE-2022-26386: Temporary files downloaded to /tmp and accessible by other local users Reporter attila Impact low Description #CVE-2022-26381: Use-after-free in text reflows Reporter Mozilla Fuzzing Team and Hossein Lotfi of Trend Micro Zero Day Initiative Impact high DescriptionĪn attacker could have caused a use-after-free by forcing a text reflow in an SVG object leading to a potentially exploitable crash. When installing an add-on, Firefox verified the signature before prompting the user but while the user was confirming the prompt, the underlying add-on file could have been modified and Firefox would not have noticed. #CVE-2022-26387: Time-of-check time-of-use bug when verifying add-on signatures Reporter Armin Ebert Impact high Description If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox. #CVE-2022-26384: iframe allow-scripts sandbox bypass Reporter Ed McManus Impact high Description When resizing a popup after requesting fullscreen access, the popup would not display the fullscreen notification. #CVE-2022-26383: Browser window spoof using fullscreen mode Reporter Irvan Kurniawan Impact high Description Mozilla Foundation Security Advisory 2022-11 Security Vulnerabilities fixed in Firefox ESR 91.7 Announced MaImpact high Products Firefox ESR Fixed in
0 kommentar(er)
