If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2020-12-09T00:23:06
Updated: 2024-08-04T16:03:23.075Z
Reserved: 2020-10-12T00:00:00
Link: CVE-2020-26960
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-12-09T01:15:13.223
Modified: 2020-12-10T17:16:34.547
Link: CVE-2020-26960
Redhat