A malicious website could have used a combination of exiting fullscreen mode and requestPointerLock
to cause the user's mouse to be re-positioned unexpectedly, which could have led to user confusion and inadvertently granting permissions they did not intend to grant. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.
{ "binaries": [ { "binary_name": "firefox", "binary_version": "123.0+build3-0ubuntu0.20.04.1" }, { "binary_name": "firefox-dev", "binary_version": "123.0+build3-0ubuntu0.20.04.1" }, { "binary_name": "firefox-geckodriver", "binary_version": "123.0+build3-0ubuntu0.20.04.1" }, { "binary_name": "firefox-mozsymbols", "binary_version": "123.0+build3-0ubuntu0.20.04.1" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "thunderbird", "binary_version": "1:115.8.1+build1-0ubuntu0.20.04.1" }, { "binary_name": "thunderbird-dev", "binary_version": "1:115.8.1+build1-0ubuntu0.20.04.1" }, { "binary_name": "thunderbird-gnome-support", "binary_version": "1:115.8.1+build1-0ubuntu0.20.04.1" }, { "binary_name": "thunderbird-mozsymbols", "binary_version": "1:115.8.1+build1-0ubuntu0.20.04.1" }, { "binary_name": "xul-ext-calendar-timezones", "binary_version": "1:115.8.1+build1-0ubuntu0.20.04.1" }, { "binary_name": "xul-ext-gdata-provider", "binary_version": "1:115.8.1+build1-0ubuntu0.20.04.1" }, { "binary_name": "xul-ext-lightning", "binary_version": "1:115.8.1+build1-0ubuntu0.20.04.1" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "thunderbird", "binary_version": "1:115.8.1+build1-0ubuntu0.22.04.1" }, { "binary_name": "thunderbird-dev", "binary_version": "1:115.8.1+build1-0ubuntu0.22.04.1" }, { "binary_name": "thunderbird-gnome-support", "binary_version": "1:115.8.1+build1-0ubuntu0.22.04.1" }, { "binary_name": "thunderbird-mozsymbols", "binary_version": "1:115.8.1+build1-0ubuntu0.22.04.1" }, { "binary_name": "xul-ext-calendar-timezones", "binary_version": "1:115.8.1+build1-0ubuntu0.22.04.1" }, { "binary_name": "xul-ext-gdata-provider", "binary_version": "1:115.8.1+build1-0ubuntu0.22.04.1" }, { "binary_name": "xul-ext-lightning", "binary_version": "1:115.8.1+build1-0ubuntu0.22.04.1" } ], "availability": "No subscription required" }