VDB

GCVE-VVD-MAGEIA-2021-354

GCVE-VVD-MAGEIA-2021-354
Advisory Published
Vulnetix · Advisory published July 16, 2021
A malicious webpage could have triggered a use-after-free in accessibility features of a document, causing memory corruption and a potentially exploitable crash when accessibility was enabled (CVE-2021-29970). Mozilla developers Valentin Gosu, Randell Jesup, Emil Ghitta, Tyson Smith, and Olli Pettay reported memory safety bugs present in Firefox ESR 78.11. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code (CVE-2021-29976). An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash (CVE-2021-30547).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiafirefox-l10n0 (affected), 78.12.0-1.mga8 (unaffected)
Mageiafirefox0 (affected), 78.12.0-1.mga8 (unaffected)
Mageianspr0 (affected), 4.32-1.mga8 (unaffected)
Mageiarootcerts0 (affected), 20210525.00-1.1.mga8 (unaffected)
Mageianss0 (affected), 3.68.0-1.mga8 (unaffected)

References

Updated firefox packages fix security vulnerabilities
advisory
Updated firefox packages fix security vulnerabilities
advisory
Updated firefox packages fix security vulnerabilities
issue
Updated firefox packages fix security vulnerabilities
issue
Updated firefox packages fix security vulnerabilities
issue
Updated firefox packages fix security vulnerabilities
issue
Updated firefox packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›