The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7. #### Notes Author| Note ---|--- [tyhicks](<https://launchpad.net/~tyhicks>) | mozjs contains a copy of the SpiderMonkey JavaScript engine

Affected Package

OS OS Version Package Name Package Version
ubuntu 18.04 mozjs52 any
ubuntu 20.04 mozjs52 any
ubuntu upstream mozjs52 any
ubuntu 18.04 mozjs38 any
ubuntu upstream mozjs38 any
ubuntu 18.04 firefox 67.0+build2-0ubuntu0.18.04.1
ubuntu 18.10 firefox 67.0+build2-0ubuntu0.18.10.1
ubuntu 19.04 firefox 67.0+build2-0ubuntu0.19.04.1
ubuntu 19.10 firefox 67.0+build2-0ubuntu1
ubuntu 20.04 firefox 67.0+build2-0ubuntu1
ubuntu 20.10 firefox 67.0+build2-0ubuntu1
ubuntu 21.04 firefox 67.0+build2-0ubuntu1
ubuntu 21.10 firefox 67.0+build2-0ubuntu1
ubuntu 22.04 firefox 67.0+build2-0ubuntu1
ubuntu upstream firefox 67.0+build2-0ubuntu1
ubuntu upstream firefox 67.0
ubuntu 16.04 firefox 67.0+build2-0ubuntu0.16.04.1
ubuntu 18.04 thunderbird 1:60.7.0+build1-0ubuntu0.18.04.1
ubuntu 18.10 thunderbird 1:60.7.0+build1-0ubuntu0.18.10.1
ubuntu 19.04 thunderbird 1:60.7.0+build1-0ubuntu0.19.04.1
ubuntu 19.10 thunderbird 1:60.7.0+build1-0ubuntu3
ubuntu 20.04 thunderbird 1:60.7.0+build1-0ubuntu3
ubuntu 20.10 thunderbird 1:60.7.0+build1-0ubuntu3
ubuntu 21.04 thunderbird 1:60.7.0+build1-0ubuntu3
ubuntu 21.10 thunderbird 1:60.7.0+build1-0ubuntu3
ubuntu 22.04 thunderbird 1:60.7.0+build1-0ubuntu3
ubuntu upstream thunderbird 1:60.7.0+build1-0ubuntu3
ubuntu upstream thunderbird 60.7
ubuntu 16.04 thunderbird 1:60.7.0+build1-0ubuntu0.16.04.1
ubuntu upstream mozjs60 any