An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.
The product does not correctly convert an object, resource, or structure from one type to a different type.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 95.0 (excluding) |
Firefox_esr | Mozilla | * | 91.4.0 (excluding) |
Thunderbird | Mozilla | * | 91.4.0 (excluding) |