[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

253164

 
 

909

 
 

197077

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

Use-after-poison for incorrectly redeclared JavaScript variables during GC - CVE-2021-23960

ID: oval:org.secpod.oval:def:68515Date: (C)2021-01-27   (M)2023-12-20
Class: VULNERABILITYFamily: macos




Mozilla Firefox 85, Mozilla Firefox ESR 78.7 and Mozilla Thunderbird 78.7: Performing garbage collection on re-declared JavaScript variables resulted in a user-after-poison, and a potentially exploitable crash.

Platform:
Apple Mac OS 14
Apple Mac OS 13
Apple Mac OS 12
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X 10.13
Apple Mac OS X 10.14
Apple Mac OS X 10.15
Apple Mac OS 11
Product:
Mozilla Firefox
Mozilla Firefox ESR
Mozilla Thunderbird
Reference:
CVE-2021-23960
CVE    1
CVE-2021-23960

© SecPod Technologies