CVE-2020-12387 - Mozilla Firefox Esr, Mozilla Firefox and Mozilla Thunderbird

Critical 8.1

A race condition when running shutdown code for Web Worker led to a use-after-free vulnerability. This resulted in a potentially exploitable crash. This vulnerability affects Firefox ESR < 68.8, Firefox < 76, and Thunderbird < 68.8.0.

Affected software

Mozilla Firefox Esr

Mozilla Firefox

Mozilla Thunderbird

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.