firefox is vulnerable to information disclosure. The vulnerability exists by combining the slipstream research combined with a malicious webpage could have exposed both an internal network’s hosts as well as services running on the user’s local machine.
Vendor | Product | Version | CPE |
---|---|---|---|
- | firefox\ | sid | cpe:2.3:a:-:firefox\:sid:83.0-1:*:*:*:*:*:*:* |
- | firefox\ | sid | cpe:2.3:a:-:firefox\:sid:81.0-2:*:*:*:*:*:*:* |
- | firefox\ | sid | cpe:2.3:a:-:firefox\:sid:82.0.3-1:*:*:*:*:*:*:* |
- | firefox\ | bionic | cpe:2.3:a:-:firefox\:bionic:83.0+build2-0ubuntu0.18.04.2:*:*:*:*:*:*:* |
- | firefox\ | bionic | cpe:2.3:a:-:firefox\:bionic:80.0+build2-0ubuntu0.18.04.1:*:*:*:*:*:*:* |
- | firefox\ | bionic | cpe:2.3:a:-:firefox\:bionic:80.0.1+build1-0ubuntu0.18.04.1:*:*:*:*:*:*:* |
- | firefox\ | bionic | cpe:2.3:a:-:firefox\:bionic:59.0.2+build1-0ubuntu1:*:*:*:*:*:*:* |
- | firefox\ | focal | cpe:2.3:a:-:firefox\:focal:80.0.1+build1-0ubuntu0.20.04.1:*:*:*:*:*:*:* |
- | firefox\ | focal | cpe:2.3:a:-:firefox\:focal:83.0+build2-0ubuntu0.20.04.1:*:*:*:*:*:*:* |
- | firefox\ | focal | cpe:2.3:a:-:firefox\:focal:80.0+build2-0ubuntu0.20.04.1:*:*:*:*:*:*:* |
bugzilla.mozilla.org/show_bug.cgi?id=1677940
lists.debian.org/debian-lts-announce/2021/04/msg00019.html
lists.debian.org/debian-lts-announce/2021/04/msg00020.html
security-tracker.debian.org/tracker/CVE-2021-23961
security.gentoo.org/glsa/202104-09
security.gentoo.org/glsa/202104-10
www.debian.org/security/2021/dsa-4895
www.debian.org/security/2021/dsa-4897
www.mozilla.org/security/advisories/mfsa2021-03/