CVE-2022-29910

Note

mozjs contains a copy of the SpiderMonkey JavaScript engine
starting with Ubuntu 22.04, the firefox package is just a script
that installs the Firefox snap
This issue affects Firefox for Android

Package	Release	Status
firefox Launchpad, Ubuntu, Debian	bionic	Not vulnerable (Android only)
	focal	Not vulnerable (Android only)
	impish	Not vulnerable (Android only)
	jammy	Not vulnerable (code not present)
	trusty	Does not exist
	upstream	Released (100)
	xenial	Not vulnerable (Android only)
mozjs38 Launchpad, Ubuntu, Debian	bionic	Not vulnerable
	focal	Does not exist
	impish	Does not exist
	jammy	Does not exist
	trusty	Does not exist
	upstream	Not vulnerable
	xenial	Does not exist
mozjs52 Launchpad, Ubuntu, Debian	bionic	Not vulnerable
	focal	Not vulnerable
	impish	Does not exist
	jammy	Does not exist
	trusty	Does not exist
	upstream	Not vulnerable
	xenial	Does not exist
mozjs68 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Not vulnerable
	impish	Does not exist
	jammy	Does not exist
	trusty	Does not exist
	upstream	Not vulnerable
	xenial	Does not exist
mozjs78 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	impish	Not vulnerable
	jammy	Not vulnerable
	trusty	Does not exist
	upstream	Not vulnerable
	xenial	Does not exist
mozjs91 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	impish	Does not exist
	jammy	Not vulnerable
	trusty	Does not exist
	upstream	Not vulnerable
	xenial	Does not exist
thunderbird Launchpad, Ubuntu, Debian	bionic	Needed
	focal	Needed
	impish	Needed
	jammy	Needed
	trusty	Does not exist
	upstream	Not vulnerable
	xenial	Needed

CVE-2022-29910

Negligible

Status

Notes

References

Join the discussion

Canonical is offering Extended Security Maintenance

Further reading

Author	Note
tyhicks	mozjs contains a copy of the SpiderMonkey JavaScript engine
mdeslaur	starting with Ubuntu 22.04, the firefox package is just a script that installs the Firefox snap
seth-arnold	This issue affects Firefox for Android