Lucene search
MozillaCVELIST:CVE-2021-43535HistoryDec 08, 2021 - 9:20 p.m.
CVE-2021-43535
2021-12-0821:20:35
mozilla
www.cve.org
1
A use-after-free could have occured when an HTTP2 session object was released on a different thread, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 93, Thunderbird < 91.3, and Firefox ESR < 91.3.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "93",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "91.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "91.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]References
bugzilla.mozilla.org/show_bug.cgi?id=1667102
lists.debian.org/debian-lts-announce/2021/12/msg00030.html
lists.debian.org/debian-lts-announce/2022/01/msg00001.html
www.debian.org/security/2021/dsa-5026
www.debian.org/security/2022/dsa-5034
www.mozilla.org/security/advisories/mfsa2021-43/
www.mozilla.org/security/advisories/mfsa2021-49/
www.mozilla.org/security/advisories/mfsa2021-50/
Related
redhatcve
redhatcve
CVE-2021-43535
2022-02-23 08:55:30
alpinelinux
alpinelinux
CVE-2021-43535
2021-12-08 22:15:09
debiancve
debiancve
CVE-2021-43535
2021-12-08 22:15:09
cve
cve
CVE-2021-43535
2021-12-08 22:15:09
ubuntucve
ubuntucve
CVE-2021-43535
2021-12-08 00:00:00
prion
prion
Design/Logic Flaw
2021-12-08 22:15:00
veracode
veracode
Denial Of Service (DoS)
2021-12-14 19:28:37
nvd
nvd
CVE-2021-43535
2021-12-08 22:15:09
centos
centos
firefox security update
2021-11-17 15:24:37
thunderbird security update
2021-11-17 15:26:59
nessus
nessus
RHEL 8 : firefox (RHSA-2021:4607)
2021-11-11 00:00:00
Rocky Linux 8 : firefox (RLSA-2021:4123)
2022-02-09 00:00:00
RHEL 8 : firefox (RHSA-2021:4123)
2021-11-05 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0506)
2022-01-28 00:00:00
Mozilla Firefox Security Advisory (MFSA2021-43) - Mac OS X
2022-09-22 00:00:00
Mozilla Firefox Security Advisory (MFSA2021-43) - Windows
2022-09-22 00:00:00
redhat
redhat
(RHSA-2021:4130) Important: thunderbird security update
2021-11-04 16:03:41
(RHSA-2021:4605) Important: firefox security update
2021-11-10 09:00:44
(RHSA-2021:4607) Important: firefox security update
2021-11-10 09:03:16
kaspersky
kaspersky
KLA12303 Multiple vulnerabilities in Mozilla Firefox
2021-10-05 00:00:00
KLA12336 Multiple vulnerabilities in Mozilla Firefox ESR
2021-11-02 00:00:00
KLA12352 Multiple vulnerabilities in Mozilla Thunderbird
2021-11-03 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 93 — Mozilla
2021-10-05 00:00:00
Security Vulnerabilities fixed in Firefox ESR 91.3 — Mozilla
2021-11-02 00:00:00
Security Vulnerabilities fixed in Thunderbird 91.3 — Mozilla
2021-11-03 00:00:00
osv
osv
Important: firefox security update
2021-11-03 19:23:08
Important: thunderbird security update
2021-11-04 16:03:41
firefox-esr - security update
2021-12-29 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerability
2021-11-11 01:53:34
Updated thunderbird packages fix security vulnerabilities
2021-11-11 01:53:34
rocky
rocky
firefox security update
2021-11-03 19:23:08
thunderbird security update
2021-11-04 16:03:41
debian
debian
[SECURITY] [DLA 2863-1] firefox-esr security update
2021-12-29 14:08:44
[SECURITY] [DSA 5026-1] firefox-esr security update
2021-12-19 15:23:09
[SECURITY] [DLA 2874-1] thunderbird security update
2022-01-04 10:10:10
ubuntu
ubuntu
Thunderbird vulnerabilities
2022-01-21 00:00:00