Mozilla has finally released security update December 2021 for its browsers Firefox and Firefox ESR and mailing client Thunderbird. So, there are 13 vulnerabilities in Firefox, ten vulnerabilities in Firefox ESR, and 11 vulnerabilities in Thunderbird that have been found and fixed by using their vulnerability management tool. The advisories for these products have been rated high severity, therefore most of these vulnerabilities could lead to Use-after-free, heap buffer overflow, and sensitive information disclosure.
Also, a patch management solution can help in patching these vulnerabilities based on criticality.
Mozilla Update December 2021 Summary
1. Product: Mozilla Firefox
Advisory/CVEs: MFSA2021-52, CVE-2021-43536, CVE-2021-43537, CVE-2021-43538, CVE-2021-43539, CVE-2021-43540, CVE-2021-43541, CVE-2021-43542, CVE-2021-43543, CVE-2021-43544, CVE-2021-43545, CVE-2021-43546
Severity: High
Impact: Use-after-free, heap buffer overflow, sensitive information disclosure, security bypass, and denial of service.
2. Product: Mozilla Firefox ESR
Advisory/CVEs: MFSA2021-53, CVE-2021-43536, CVE-2021-43537, CVE-2021-43538, CVE-2021-43539, CVE-2021-43541, CVE-2021-43542, CVE-2021-43543, CVE-2021-43545, CVE-2021-43546
Severity: High
Impact: Use-after-free, heap buffer overflow, sensitive information disclosure, security bypass, and denial of service.
3. Product: Mozilla Thunderbird
Advisory/CVEs: MFSA2021-54, CVE-2021-43536, CVE-2021-43537, CVE-2021-43538, CVE-2021-43539, CVE-2021-43541, CVE-2021-43542, CVE-2021-43543, CVE-2021-43545, CVE-2021-43546
Severity: High
Impact: Use-after-free, heap buffer overflow, sensitive information disclosure, security bypass, and denial of service.
Affected Products:
1)Mozilla Firefox below 95.0
2)Mozilla Firefox ESR below 91.4
3)Mozilla Thunderbird below 91.4
Solution:
1)Mozilla Firefox 95.0
2)Mozilla Firefox ESR 91.4
3)Mozilla Thunderbird 91.4
In conclusion Mozilla Update December 2021 discussed these issues.
SanerNow VM and SanerNow PM detect these vulnerabilities and hence automatically fix them by applying the latest Mozilla security updates. Therefore Use SanerNow and keep your systems updated and secure.