MGASA-2021-0163
- Source
- https://advisories.mageia.org/MGASA-2021-0163.html
- Import Source
- https://advisories.mageia.org/MGASA-2021-0163.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2021-0163
- Related
- Published
- 2021-03-30T20:08:49Z
- Modified
- 2022-10-26T16:36:04Z
- Summary
- Updated firefox packages fix security vulnerabilities
- Details
-
Texture upload into an unbound backing buffer resulted in an out-of-bound read. (CVE-2021-23981)
Angle graphics library out of date. (CVE-2021-4127)
Internal network hosts could have been probed by a malicious webpage. (CVE-2021-23982)
Malicious extensions could have spoofed popup information. (CVE-2021-23984)
Memory safety bugs fixed in Firefox 87 and Firefox ESR 78.9 (CVE-2021-23987).
- References
-
- https://advisories.mageia.org/MGASA-2021-0163.html
- https://bugs.mageia.org/show_bug.cgi?id=28641
- https://www.mozilla.org/en-US/firefox/78.9.0/releasenotes/
- https://www.mozilla.org/en-US/security/advisories/mfsa2021-11/
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.63_release_notes
- https://groups.google.com/g/mozilla.dev.tech.nspr/c/wwXfLFWZRlA
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:7 / nss
Package
- Name
- nss
- Purl
- pkg:rpm/mageia/nss?distro=mageia-7
Mageia:7 / nspr
Package
- Name
- nspr
- Purl
- pkg:rpm/mageia/nspr?distro=mageia-7
Mageia:7 / firefox
Package
- Name
- firefox
- Purl
- pkg:rpm/mageia/firefox?distro=mageia-7
Mageia:7 / firefox-l10n
Package
- Name
- firefox-l10n
- Purl
- pkg:rpm/mageia/firefox-l10n?distro=mageia-7
Mageia:8 / nss
Package
- Name
- nss
- Purl
- pkg:rpm/mageia/nss?distro=mageia-8
Mageia:8 / nspr
Package
- Name
- nspr
- Purl
- pkg:rpm/mageia/nspr?distro=mageia-8
Mageia:8 / firefox
Package
- Name
- firefox
- Purl
- pkg:rpm/mageia/firefox?distro=mageia-8
Mageia:8 / firefox-l10n
Package
- Name
- firefox-l10n
- Purl
- pkg:rpm/mageia/firefox-l10n?distro=mageia-8