A user could enter an unsafe URL in a text field, press enter, and cause a use-after-free resulting in a potentially exploitable crash. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7. A click on a link in an email message could cause a use-after-free resulting in a potentially exploitable crash. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7. Responsive images with width and height properties could cause a use-after-free resulting in a potentially exploitable crash. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7. The WebRTC crash reporter extension could cause a use-after-free resulting in a potentially exploitable crash. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7. A maliciously crafted image could cause a use-after-free resulting in a potentially exploitable crash. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7. A maliciously crafted SVG image could cause a use-after-free resulting in a potentially exploitable crash. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7. The Spellcheck API could cause a use-after-free resulting in a potentially
Firefox Hangs and Then Restarts on Firefox OS Devices
Firefox hangs and then restarts on Firefox OS devices. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7.
Fixed in Firefox ESR 91.7 .0
Fixed in Firefox ESR 91.7.0
Summary
The latest versions of Firefox, Thunderbird, and the WebRTC crash reporter extension are vulnerable to a number of vulnerabilities. These vulnerabilities could allow for remote code execution on an affected system with full privileges.
Timeline
Published on: 12/22/2022 20:15:00 UTC
Last modified on: 12/30/2022 15:00:00 UTC