VulnerableCode Package Details - pkg:alpm/archlinux/firefox@89.0.2-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-3w3b-gzvg-87ag Aliases: CVE-2021-29971	If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission.This bug only affects Firefox for Android. Other operating systems are unaffected.	90.0-1 Affected by 0 other vulnerabilities.
VCID-3zwq-1hwc-3fgj Aliases: CVE-2021-29976	Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.	90.0-1 Affected by 0 other vulnerabilities.
VCID-66dg-7sm8-vbgx Aliases: CVE-2021-29970	Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.	90.0-1 Affected by 0 other vulnerabilities.
VCID-8v6f-5kdt-9qam Aliases: CVE-2021-29974	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	90.0-1 Affected by 0 other vulnerabilities.
VCID-bxgd-f6n7-r3cj Aliases: CVE-2021-29972	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	90.0-1 Affected by 0 other vulnerabilities.
VCID-d34y-zjxp-9ugj Aliases: CVE-2021-29977	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	90.0-1 Affected by 0 other vulnerabilities.
VCID-teh4-fmg6-53ab Aliases: CVE-2021-30547	Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.	90.0-1 Affected by 0 other vulnerabilities.
VCID-ubmh-fmpu-fuff Aliases: CVE-2021-29973	Password autofill was enabled without user interaction on insecure websites on Firefox for Android. This was corrected to require user interaction with the page before a user's password would be entered by the browser's autofill functionality.This bug only affects Firefox for Android. Other operating systems are unaffected.	90.0-1 Affected by 0 other vulnerabilities.
VCID-vx1t-x168-4bb8 Aliases: CVE-2021-29975	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	90.0-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-3w3b-gzvg-87ag
Aliases:
CVE-2021-29971

If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission.*This bug only affects Firefox for Android. Other operating systems are unaffected.*