VulnerableCode Package Details - pkg:alpm/archlinux/firefox@89.0-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-p4kh-nd6b-jubh Aliases: CVE-2021-29968	When drawing text onto a canvas with WebRender disabled, an out of bounds read could occur. This bug only affects Firefox on Windows. Other operating systems are unaffected.	89.0.1-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-p4kh-nd6b-jubh
Aliases:
CVE-2021-29968

When drawing text onto a canvas with WebRender disabled, an out of bounds read could occur. *This bug only affects Firefox on Windows. Other operating systems are unaffected.*

89.0.1-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-1kfj-m46a-bkd9	A malicious website that causes an HTTP Authentication dialog to be spawned could trick the built-in password manager to suggest passwords for the currently active website instead of the website that triggered the dialog. This bug only affects Firefox for Android. Other operating systems are unaffected.	CVE-2021-29965
VCID-2vy5-zebk-1bgk	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2021-29961
VCID-5aga-y5nk-5fha	A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would processing incorrectly, leading to an out-of-bounds read. This bug only affects Firefox on Windows. Other operating systems are unaffected.	CVE-2021-29964
VCID-7knr-6rqg-8kcw	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2021-29960
VCID-dedv-96fb-vyhp	Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.	CVE-2021-29967
VCID-s9ss-vz54-j3ha	Address bar search suggestions in private browsing mode were re-using session data from normal mode. This bug only affects Firefox for Android. Other operating systems are unaffected.	CVE-2021-29963
VCID-sbyn-4c25-h7gz	Firefox for Android would become unstable and hard-to-recover when a website opened too many popups. This bug only affects Firefox for Android. Other operating systems are unaffected.	CVE-2021-29962
VCID-vysb-zn1g-tuf5	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2021-29966
VCID-y2pv-1tm3-nqak	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2021-29959

Vulnerability

Summary

Aliases

VCID-1kfj-m46a-bkd9

A malicious website that causes an HTTP Authentication dialog to be spawned could trick the built-in password manager to suggest passwords for the currently active website instead of the website that triggered the dialog. *This bug only affects Firefox for Android. Other operating systems are unaffected.*

CVE-2021-29965

VCID-2vy5-zebk-1bgk

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2021-29961

VCID-5aga-y5nk-5fha

A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would processing incorrectly, leading to an out-of-bounds read. *This bug only affects Firefox on Windows. Other operating systems are unaffected.*

CVE-2021-29964

VCID-7knr-6rqg-8kcw

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2021-29960

VCID-dedv-96fb-vyhp

Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

CVE-2021-29967

VCID-s9ss-vz54-j3ha

Address bar search suggestions in private browsing mode were re-using session data from normal mode. *This bug only affects Firefox for Android. Other operating systems are unaffected.*

CVE-2021-29963

VCID-sbyn-4c25-h7gz

Firefox for Android would become unstable and hard-to-recover when a website opened too many popups. *This bug only affects Firefox for Android. Other operating systems are unaffected.*

CVE-2021-29962

VCID-vysb-zn1g-tuf5

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2021-29966

VCID-y2pv-1tm3-nqak

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2021-29959

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-07T13:59:12.441292+00:00	Arch Linux Importer	Fixing	VCID-y2pv-1tm3-nqak	https://security.archlinux.org/AVG-2018	38.1.0
2026-04-07T13:59:12.428096+00:00	Arch Linux Importer	Fixing	VCID-7knr-6rqg-8kcw	https://security.archlinux.org/AVG-2018	38.1.0
2026-04-07T13:59:12.414186+00:00	Arch Linux Importer	Fixing	VCID-2vy5-zebk-1bgk	https://security.archlinux.org/AVG-2018	38.1.0
2026-04-07T13:59:12.400830+00:00	Arch Linux Importer	Fixing	VCID-vysb-zn1g-tuf5	https://security.archlinux.org/AVG-2018	38.1.0
2026-04-07T13:59:12.386364+00:00	Arch Linux Importer	Fixing	VCID-dedv-96fb-vyhp	https://security.archlinux.org/AVG-2018	38.1.0
2026-04-01T18:26:42.402224+00:00	Arch Linux Importer	Affected by	VCID-p4kh-nd6b-jubh	https://security.archlinux.org/AVG-2074	38.0.0
2026-04-01T18:25:32.247163+00:00	Arch Linux Importer	Fixing	VCID-y2pv-1tm3-nqak	https://security.archlinux.org/AVG-2018	38.0.0
2026-04-01T18:25:32.224322+00:00	Arch Linux Importer	Fixing	VCID-7knr-6rqg-8kcw	https://security.archlinux.org/AVG-2018	38.0.0
2026-04-01T18:25:32.199654+00:00	Arch Linux Importer	Fixing	VCID-2vy5-zebk-1bgk	https://security.archlinux.org/AVG-2018	38.0.0
2026-04-01T18:25:32.174371+00:00	Arch Linux Importer	Fixing	VCID-vysb-zn1g-tuf5	https://security.archlinux.org/AVG-2018	38.0.0
2026-04-01T18:25:32.150198+00:00	Arch Linux Importer	Fixing	VCID-dedv-96fb-vyhp	https://security.archlinux.org/AVG-2018	38.0.0
2026-04-01T18:25:32.124326+00:00	Arch Linux Importer	Fixing	VCID-sbyn-4c25-h7gz	https://security.archlinux.org/AVG-2019	38.0.0
2026-04-01T18:25:32.100673+00:00	Arch Linux Importer	Fixing	VCID-s9ss-vz54-j3ha	https://security.archlinux.org/AVG-2019	38.0.0
2026-04-01T18:25:32.075312+00:00	Arch Linux Importer	Fixing	VCID-5aga-y5nk-5fha	https://security.archlinux.org/AVG-2019	38.0.0
2026-04-01T18:25:32.051889+00:00	Arch Linux Importer	Fixing	VCID-1kfj-m46a-bkd9	https://security.archlinux.org/AVG-2019	38.0.0