Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

CPENameOperatorVersion
firefoxlt90.0
firefox_esrlt78.12
thunderbirdlt78.12

Name	Operator	Version
firefox	lt	90.0
firefox_esr	lt	78.12
thunderbird	lt	78.12

References

bugzilla.mozilla.org/buglist.cgi?bug_id=1700895%2C1703334%2C1706910%2C1711576%2C1714391

security.gentoo.org/glsa/202202-03

security.gentoo.org/glsa/202208-14

www.mozilla.org/security/advisories/mfsa2021-28/

www.mozilla.org/security/advisories/mfsa2021-29/

www.mozilla.org/security/advisories/mfsa2021-30/

veracode 1

debiancve 1

cve 1

alpinelinux 1

cvelist 1

ibm 2

nvd 1

ubuntucve 1

redhatcve 1

redos 48

centos 1

openvas 23

redhat 8

kaspersky 3

mozilla 3

nessus 47

almalinux 2

debian 4

osv 8

oraclelinux 4

suse 4

rocky 2

mageia 2

altlinux 2

archlinux 2

ubuntu 2

amazon 1

gentoo 2

veracode

Arbitrary Code Execution

2021-07-14 21:05:47

debiancve

CVE-2021-29976

2021-08-05 20:15:08

cve

CVE-2021-29976

2021-08-05 20:15:08

alpinelinux

CVE-2021-29976

2021-08-05 20:15:08

cvelist

CVE-2021-29976

2021-08-05 19:46:06

ibm

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoringhas applied security fixes for its use of Mozilla Firefox

2021-12-01 15:13:44

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.14.0 ESR + CVE-2021-29967) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF14

2021-09-28 16:45:14

nvd

CVE-2021-29976

2021-08-05 20:15:08

ubuntucve

CVE-2021-29976

2021-07-14 00:00:00

redhatcve

CVE-2021-29976

2021-07-14 01:28:48

redos

ROS-2-861

2021-09-08 00:00:00

ROS-2-623

2021-09-08 00:00:00

ROS-2-540

2023-07-06 00:00:00

centos

firefox security update

2021-07-15 22:22:46

openvas

SUSE: Security Advisory (SUSE-SU-2021:2478-1)

2021-07-28 00:00:00

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2021:2393-1)

2021-07-20 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2021-26, MFSA2021-30) - Windows

2021-07-28 00:00:00

redhat

(RHSA-2021:2740) Important: firefox security update

2021-07-15 09:41:13

(RHSA-2021:2743) Important: firefox security update

2021-07-15 10:46:06

(RHSA-2021:2742) Important: firefox security update

2021-07-15 10:46:00

kaspersky

KLA12229 Multiple vulnerabilities in Mozilla Firefox ESR

2021-07-13 00:00:00

KLA12227 Multiple vulnerabilities in Mozilla Thunderbird

2021-07-13 00:00:00

KLA12228 Multiple vulnerabilities in Mozilla Firefox

2021-07-13 00:00:00

mozilla

Security Vulnerabilities fixed in Firefox ESR 78.12 — Mozilla

2021-07-13 00:00:00

Security Vulnerabilities fixed in Thunderbird 78.12 — Mozilla

2021-07-13 00:00:00

Security Vulnerabilities fixed in Firefox 90 — Mozilla

2021-07-13 00:00:00

nessus

RHEL 8 : firefox (RHSA-2021:2742)

2021-07-15 00:00:00

CentOS 8 : firefox (CESA-2021:2743)

2021-07-16 00:00:00

Debian DLA-2709-1 : firefox-esr - LTS security update

2021-07-15 00:00:00

almalinux

Important: firefox security update

2021-07-15 10:46:06

Important: thunderbird security update

2021-07-26 10:57:37

debian

[SECURITY] [DSA 4939-1] firefox-esr security update

2021-07-14 18:50:24

[SECURITY] [DLA 2709-1] firefox-esr security update

2021-07-15 14:39:19

[SECURITY] [DLA 2711-1] thunderbird security update

2021-07-19 10:47:51

osv

Important: firefox security update

2021-07-15 10:46:06

firefox-esr - security update

2021-07-15 00:00:00

firefox-esr - security update

2021-07-14 00:00:00

oraclelinux

firefox security update

2021-07-16 00:00:00

firefox security update

2021-07-16 00:00:00

thunderbird security update

2021-07-27 00:00:00

suse

Security update for MozillaFirefox (important)

2021-07-19 00:00:00

Security update for MozillaFirefox (important)

2021-07-20 00:00:00

Security update for MozillaThunderbird (important)

2021-07-22 00:00:00

rocky

firefox security update

2021-07-15 10:46:06

thunderbird security update

2021-07-26 10:57:37

mageia

Updated firefox packages fix security vulnerabilities

2021-07-16 11:25:31

Updated thunderbird packages fix security vulnerabilities

2021-07-16 11:25:31

altlinux

Security fix for the ALT Linux 10 package firefox-esr version 78.12.0-alt1

2021-07-12 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 78.12.0-alt1

2021-07-14 00:00:00

archlinux

[ASA-202107-21] thunderbird: multiple issues

2021-07-14 00:00:00

[ASA-202107-20] firefox: multiple issues

2021-07-14 00:00:00

ubuntu

Firefox vulnerabilities

2021-07-16 00:00:00

Thunderbird vulnerabilities

2021-08-31 00:00:00

amazon

Important: thunderbird

2021-09-08 23:35:00

gentoo

Mozilla Firefox: Multiple vulnerabilities

2022-02-21 00:00:00

Mozilla Thunderbird: Multiple Vulnerabilities

2022-08-10 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

8.9 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.6%

JSON

Related for PRION:CVE-2021-29976