VulnerableCode Package Details - pkg:alpm/archlinux/firefox@84.0.2-1

Search for packages

Package details: pkg:alpm/archlinux/firefox@84.0.2-1

Essentials
History (54)

purl	pkg:alpm/archlinux/firefox@84.0.2-1

Next non-vulnerable version	85.0-1
Latest non-vulnerable version	101.0-1
Risk	4.0

Vulnerabilities affecting this package (13)

Vulnerability	Summary	Fixed by
VCID-2mzj-tj2x-aaak Aliases: CVE-2021-23958	The browser could have been confused into transferring a screen sharing state into another tab, which would leak unintended information. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-5m4y-muqv-aaaa Aliases: CVE-2021-23957	Navigations through the Android-specific `intent` URL scheme could have been misused to escape iframe sandbox. Note: This issue only affected Firefox for Android. Other operating systems are unaffected. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-b8gg-bqs6-aaar Aliases: CVE-2021-23964	Mozilla developers reported memory safety bugs present in Firefox 84 and Firefox ESR 78.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 85, Thunderbird < 78.7, and Firefox ESR < 78.7.	85.0-1 Affected by 0 other vulnerabilities.
VCID-bemt-zn9s-aaaf Aliases: CVE-2021-23962	Incorrect use of the '<RowCountChanged>' method could have led to a user-after-poison and a potentially exploitable crash. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-kb9w-bzwr-aaag Aliases: CVE-2021-23953	If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data. This vulnerability affects Firefox < 85, Thunderbird < 78.7, and Firefox ESR < 78.7.	85.0-1 Affected by 0 other vulnerabilities.
VCID-pesx-f8ux-aaag Aliases: CVE-2021-23955	The browser could have been confused into transferring a pointer lock state into another tab, which could have lead to clickjacking attacks. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-q63r-6826-aaaj Aliases: CVE-2021-23960	Performing garbage collection on re-declared JavaScript variables resulted in a user-after-poison, and a potentially exploitable crash. This vulnerability affects Firefox < 85, Thunderbird < 78.7, and Firefox ESR < 78.7.	85.0-1 Affected by 0 other vulnerabilities.
VCID-r7du-vrqu-aaak Aliases: CVE-2021-23954	Using the new logical assignment operators in a JavaScript switch statement could have caused a type confusion, leading to a memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 85, Thunderbird < 78.7, and Firefox ESR < 78.7.	85.0-1 Affected by 0 other vulnerabilities.
VCID-s9ag-eq6m-aaan Aliases: CVE-2021-23956	An ambiguous file picker design could have confused users who intended to select and upload a single file into uploading a whole directory. This was addressed by adding a new prompt. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-tyq3-9fh9-aaar Aliases: CVE-2021-23961	Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-ubcu-n4pm-aaac Aliases: CVE-2021-23959	An XSS bug in internal error pages could have led to various spoofing attacks, including other error pages and the address bar. Note: This issue only affected Firefox for Android. Other operating systems are unaffected. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-uqk2-f88j-aaag Aliases: CVE-2021-23965	Mozilla developers reported memory safety bugs present in Firefox 84. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.
VCID-v9hr-ntpr-aaah Aliases: CVE-2021-23963	When sharing geolocation during an active WebRTC share, Firefox could have reset the webRTC sharing state in the user interface, leading to loss of control over the currently granted permission. This vulnerability affects Firefox < 85.	85.0-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-hmyw-2x88-aaaj	Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.	CVE-2020-16044

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:45.573933+00:00	Arch Linux Importer	Affected by	VCID-5m4y-muqv-aaaa	https://security.archlinux.org/AVG-1493	36.0.0
2025-03-28T07:46:45.546611+00:00	Arch Linux Importer	Affected by	VCID-ubcu-n4pm-aaac	https://security.archlinux.org/AVG-1493	36.0.0
2025-03-28T07:45:45.010217+00:00	Arch Linux Importer	Affected by	VCID-kb9w-bzwr-aaag	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.989060+00:00	Arch Linux Importer	Affected by	VCID-r7du-vrqu-aaak	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.968796+00:00	Arch Linux Importer	Affected by	VCID-pesx-f8ux-aaag	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.947723+00:00	Arch Linux Importer	Affected by	VCID-s9ag-eq6m-aaan	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.927346+00:00	Arch Linux Importer	Affected by	VCID-2mzj-tj2x-aaak	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.906903+00:00	Arch Linux Importer	Affected by	VCID-q63r-6826-aaaj	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.886228+00:00	Arch Linux Importer	Affected by	VCID-tyq3-9fh9-aaar	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.865644+00:00	Arch Linux Importer	Affected by	VCID-bemt-zn9s-aaaf	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.845257+00:00	Arch Linux Importer	Affected by	VCID-v9hr-ntpr-aaah	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.824540+00:00	Arch Linux Importer	Affected by	VCID-b8gg-bqs6-aaar	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:45:44.803643+00:00	Arch Linux Importer	Affected by	VCID-uqk2-f88j-aaag	https://security.archlinux.org/AVG-1492	36.0.0
2025-03-28T07:44:13.955233+00:00	Arch Linux Importer	Fixing	VCID-hmyw-2x88-aaaj	https://security.archlinux.org/AVG-1413	36.0.0
2024-09-18T02:02:06.455244+00:00	Arch Linux Importer	Affected by	VCID-5m4y-muqv-aaaa	https://security.archlinux.org/AVG-1493	34.0.1
2024-09-18T02:02:06.428728+00:00	Arch Linux Importer	Affected by	VCID-ubcu-n4pm-aaac	https://security.archlinux.org/AVG-1493	34.0.1
2024-09-18T02:00:45.694604+00:00	Arch Linux Importer	Affected by	VCID-kb9w-bzwr-aaag	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.668445+00:00	Arch Linux Importer	Affected by	VCID-r7du-vrqu-aaak	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.640998+00:00	Arch Linux Importer	Affected by	VCID-pesx-f8ux-aaag	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.612153+00:00	Arch Linux Importer	Affected by	VCID-s9ag-eq6m-aaan	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.583931+00:00	Arch Linux Importer	Affected by	VCID-2mzj-tj2x-aaak	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.556158+00:00	Arch Linux Importer	Affected by	VCID-q63r-6826-aaaj	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.530823+00:00	Arch Linux Importer	Affected by	VCID-tyq3-9fh9-aaar	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.505571+00:00	Arch Linux Importer	Affected by	VCID-bemt-zn9s-aaaf	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.481787+00:00	Arch Linux Importer	Affected by	VCID-v9hr-ntpr-aaah	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.455357+00:00	Arch Linux Importer	Affected by	VCID-b8gg-bqs6-aaar	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T02:00:45.432546+00:00	Arch Linux Importer	Affected by	VCID-uqk2-f88j-aaag	https://security.archlinux.org/AVG-1492	34.0.1
2024-09-18T01:59:20.316606+00:00	Arch Linux Importer	Fixing	VCID-hmyw-2x88-aaaj	https://security.archlinux.org/AVG-1413	34.0.1
2024-01-20T12:06:29.650018+00:00	Arch Linux Importer	Affected by	VCID-kb9w-bzwr-aaag	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.627478+00:00	Arch Linux Importer	Affected by	VCID-r7du-vrqu-aaak	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.605488+00:00	Arch Linux Importer	Affected by	VCID-pesx-f8ux-aaag	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.583367+00:00	Arch Linux Importer	Affected by	VCID-s9ag-eq6m-aaan	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.561397+00:00	Arch Linux Importer	Affected by	VCID-2mzj-tj2x-aaak	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.539006+00:00	Arch Linux Importer	Affected by	VCID-q63r-6826-aaaj	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.516810+00:00	Arch Linux Importer	Affected by	VCID-tyq3-9fh9-aaar	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.494765+00:00	Arch Linux Importer	Affected by	VCID-bemt-zn9s-aaaf	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.472749+00:00	Arch Linux Importer	Affected by	VCID-v9hr-ntpr-aaah	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.450840+00:00	Arch Linux Importer	Affected by	VCID-b8gg-bqs6-aaar	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:29.428794+00:00	Arch Linux Importer	Affected by	VCID-uqk2-f88j-aaag	https://security.archlinux.org/AVG-1492	34.0.0rc2
2024-01-20T12:06:19.281518+00:00	Arch Linux Importer	Fixing	VCID-hmyw-2x88-aaaj	https://security.archlinux.org/AVG-1413	34.0.0rc2
2024-01-03T22:28:08.944833+00:00	Arch Linux Importer	Affected by	VCID-5m4y-muqv-aaaa	https://security.archlinux.org/AVG-1493	34.0.0rc1
2024-01-03T22:28:08.922924+00:00	Arch Linux Importer	Affected by	VCID-ubcu-n4pm-aaac	https://security.archlinux.org/AVG-1493	34.0.0rc1
2024-01-03T22:27:03.803257+00:00	Arch Linux Importer	Affected by	VCID-kb9w-bzwr-aaag	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.776725+00:00	Arch Linux Importer	Affected by	VCID-r7du-vrqu-aaak	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.750082+00:00	Arch Linux Importer	Affected by	VCID-pesx-f8ux-aaag	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.723949+00:00	Arch Linux Importer	Affected by	VCID-s9ag-eq6m-aaan	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.697868+00:00	Arch Linux Importer	Affected by	VCID-2mzj-tj2x-aaak	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.673883+00:00	Arch Linux Importer	Affected by	VCID-q63r-6826-aaaj	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.647585+00:00	Arch Linux Importer	Affected by	VCID-tyq3-9fh9-aaar	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.626182+00:00	Arch Linux Importer	Affected by	VCID-bemt-zn9s-aaaf	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.604622+00:00	Arch Linux Importer	Affected by	VCID-v9hr-ntpr-aaah	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.582949+00:00	Arch Linux Importer	Affected by	VCID-b8gg-bqs6-aaar	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:27:03.560728+00:00	Arch Linux Importer	Affected by	VCID-uqk2-f88j-aaag	https://security.archlinux.org/AVG-1492	34.0.0rc1
2024-01-03T22:25:38.180028+00:00	Arch Linux Importer	Fixing	VCID-hmyw-2x88-aaaj	https://security.archlinux.org/AVG-1413	34.0.0rc1