CVE-2021-29976

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-29976

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-29976.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-29976

Downstream

DEBIAN-CVE-2021-29976

DLA-2709-1

DLA-2711-1

DSA-4939-1

DSA-4940-1

OESA-2023-1673

OESA-2023-1674

RHSA-2021:2740

RHSA-2021:2741

RHSA-2021:2742

RHSA-2021:2743

RHSA-2021:2881

RHSA-2021:2882

RHSA-2021:2883

RHSA-2021:2914

SUSE-SU-2021:14766-1

SUSE-SU-2021:2389-1

SUSE-SU-2021:2393-1

SUSE-SU-2021:2458-1

SUSE-SU-2021:2478-1

UBUNTU-CVE-2021-29976

USN-5011-1

USN-5058-1

openSUSE-SU-2021:1066-1

openSUSE-SU-2021:1091-1

openSUSE-SU-2021:2393-1

openSUSE-SU-2021:2458-1

openSUSE-SU-2024:10600-1

openSUSE-SU-2024:10601-1

openSUSE-SU-2024:14572-1

Related

Published

2021-08-05T20:15:08Z

Modified

2025-08-09T20:01:27Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

References

Affected packages