CVE-2021-29966
First published: Tue Jun 01 2021(Updated: )
Mozilla developers Christian Holler, Tooru Fujisawa, Tyson Smith reported memory safety bugs present in Firefox 88. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Firefox | <89 | 89 |
| Firefox | >=78.11.0<89.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the severity of CVE-2021-29966?
CVE-2021-29966 is classified as a high-severity vulnerability that could potentially allow for arbitrary code execution due to memory corruption issues in Firefox 88.
How do I fix CVE-2021-29966?
To fix CVE-2021-29966, users should upgrade to Mozilla Firefox version 89 or later.
What versions of Firefox are affected by CVE-2021-29966?
CVE-2021-29966 affects Mozilla Firefox versions from 78.11.0 up to, but not including, 89.
What type of vulnerability is CVE-2021-29966?
CVE-2021-29966 is a memory safety vulnerability that could lead to memory corruption.
Who reported CVE-2021-29966?
CVE-2021-29966 was reported by Mozilla developers Christian Holler, Tooru Fujisawa, and Tyson Smith.
- agent/references
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/author
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- source/Mozilla
- agent/software-canonical-lookup
- collector/nvd-index
- vendor/mozilla
- canonical/firefox
- version/firefox/78.11.0