Mozilla Firefox和Mozilla Thunderbird 安全漏洞

Mozilla Firefox and Mozilla Thunderbird are both products of the American Mozilla Foundation. Mozilla Firefox is an open-source web browser. Mozilla Thunderbird is an email client software that emerged independently from the Mozilla Application Suite. This software supports IMAP and POP email...

ALSA-2026:19157 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1 CVE-2026-7323 firefox: thunderbird: Information disclosure due to incorrect...

PT-2026-41921

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description Information disclosure occurs in the Graphics: WebGPU component...

PT-2026-41923

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A mitigation bypass exists within the DOM security component...

PT-2026-41917

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A spoofing issue exists within the Web Speech component...

PT-2026-41904

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A same-origin policy bypass exists in the Networking: HTTP component. The same-origin policy ...

PT-2026-41926

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description Privilege escalation exists in the WebRTC: Audio/Video component. Recommendations Update Firefox to version 151. Update Thunderbird to version 151...

PT-2026-41902

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A same-origin policy bypass exists in the DOM: Networking component. The same-origin policy is a critical security mechanism that restricts how a document or script...

PT-2026-41916

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A mitigation bypass exists within the DOM security component. Recommendations Update to versi...

PT-2026-41910

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description An integer overflow exists in the Networking: JAR component. An integer overflow occurs when ...

PT-2026-41919

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description An information disclosure issue exists within the DOM security component...

PT-2026-41920

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description Information disclosure occurs within the IP Protection component. Recommendations Update Firefox to version 151. Update Thunderbird to version 151...

PT-2026-41909

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A privilege escalation issue exists within the DOM: Workers component...

PT-2026-41908

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description Incorrect boundary conditions lead to an integer overflow in the Audio/Video component. An...

PT-2026-41924

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A privilege escalation issue exists within the Security component. Recommendations Update to...

PT-2026-41925

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A same-origin policy bypass exists in the Networking: JAR component. The same-origin policy is a critical security mechanism that restricts how a document or script...

PT-2026-41906

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A privilege escalation issue exists within the Application Update component. Recommendations Update Firefox to version 151. Update Thunderbird to version 151...

MAL-2026-4034 Malicious code in @antv/l7-component (npm)

Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...

MAL-2026-3863 Malicious code in @antv/component (npm)

Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...

Mozilla Firefox for Android 安全漏洞

Mozilla Firefox for Android is a web browser designed for Android devices by the Mozilla Foundation in the United States. Versions of Mozilla Firefox for Android prior to version 151 contained a security vulnerability, which was caused by a deceptive issue with the Toolbar component...