Alexis Beingessner

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 87 Firefox ESR versions prior to 78.9 Thunderbird versions prior to 78.9 **Description** The issue is related to memory safety bugs and buffer copying without checking the size of input data, which could potentially allow an attacker to execute arbitrary code using a specially crafted website. Some of these bugs showed evidence of memory corruption. **Recommendations** For Firefox versions prior to 87, update to version 87 or later. For Firefox ESR versions prior to 78.9, update to version 78.9 or later. For Thunderbird versions prior to 78.9, update to version 78.9 or later.

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 86 Thunderbird versions prior to 78.8 Firefox ESR versions prior to 78.8 Description: The issue is related to memory safety bugs present in certain versions of Firefox and Thunderbird, which could potentially be exploited to run arbitrary code due to evidence of memory corruption. Recommendations: For Firefox versions prior to 86, update to version 86 or later. For Thunderbird versions prior to 78.8, update to version 78.8 or later. For Firefox ESR versions prior to 78.8, update to version 78.8 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 85 Firefox ESR versions prior to 78.7 Thunderbird versions prior to 78.7 **Description** The issue is related to memory safety bugs, including evidence of memory corruption, which could potentially be exploited to run arbitrary code with enough effort. It is also described as a buffer overflow vulnerability in memory, allowing a remote attacker to execute arbitrary code. **Recommendations** For Firefox versions prior to 85, update to version 85 or later. For Firefox ESR versions prior to 78.7, update to version 78.7 or later. For Thunderbird versions prior to 78.7, update to version 78.7 or later.