2283 matches found
Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird ESR 128.10 update bsc1241621: CVE-2025-4082: WebGL shader attribute memory corruption in Thunderbird for macOS. CVE-2025-4087: Unsafe attribute access during XPath parsing. CVE-2025-4093: Memory safety bug fixed in...
Vulnerabilities fixed in Mozilla Firefox and Thunderbird
Mozilla has fixed vulnerabilities in Firefox and Thunderbird Specifically for versions under 138 and 128.10. The vulnerabilities include privilege escalation through code injection, insecure processing of WebGL shader attributes, improper isolation of processes, and local code execution through...
Mozilla Thunderbird < 128.10
The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 128.10. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-32 advisory. - Memory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of memo...
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 128.10.0 ESR MFSA 2025-29 bsc1241621: CVE-2025-2817: Potential privilege escalation in Firefox Updater MFSA-RESERVE-2025-193709: WebGL shader attribute memory corruption in Firefox for macOS...
SUSE CVE-2025-4082
Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges. This bug only affects Thunderbird for macOS. Other versions of Thunderbird are unaffected.. This vulnerability was fixed in...
CVE-2025-4082
Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges. This bug only affects Thunderbird for macOS. Other versions of Thunderbird are unaffected.. This vulnerability was fixed in...
CVE-2025-4082
Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges. This bug only affects Thunderbird for macOS. Other versions of Thunderbird are unaffected. This vulnerability affects Firefox...
CVE-2025-4082
Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges. This bug only affects Thunderbird for macOS. Other versions of Thunderbird are unaffected. This vulnerability affects Firefox...
UBUNTU-CVE-2025-4082
Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges. This bug only affects Firefox for macOS. Other versions of Firefox are unaffected. This vulnerability affects Firefox 138,...
CVE-2025-4082 WebGL shader attribute memory corruption in Thunderbird for macOS
Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges. This bug only affects Thunderbird for macOS. Other versions of Thunderbird are unaffected.. This vulnerability was fixed in...
CVE-2025-4082
CVE-2025-4082 affects Thunderbird for macOS. It describes memory corruption in WebGL shader attributes that can trigger an out-of-bounds read, with potential for privilege escalation when combined with other issues. The vulnerability applies to Thunderbird versions before 138 and 128.10 (and to F...
CVE-2025-4082 WebGL shader attribute memory corruption in Thunderbird for macOS
Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges. This bug only affects Thunderbird for macOS. Other versions of Thunderbird are unaffected.. This vulnerability was fixed in...
Mozilla Firefox 安全漏洞
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 138, which stems from a modification of certain WebGL shader attributes that could lead to out-of-bounds reads, which in...
PT-2025-18151 · Mozilla +2 · Thunderbird +5
Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 138 Firefox ESR versions prior to 128.10 Firefox ESR versions prior to 115.23 Thunderbird versions prior to 138 Thunderbird ESR versions prior to 128.10 Description: Modification of specific WebGL shader attributes...
Security Vulnerabilities fixed in Firefox ESR 115.23 — Mozilla
Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the user-privileged process, an attacker could bypass intended access controls, allowing SYSTEM-level file...
CVE-2025-0050
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to make valid GPU processing operations,...
CVE-2025-0050
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to make valid GPU processing operations,...
CVE-2025-0050
Arm Mali GPU drivers (Bifrost, Valhall, and Arm 5th Gen) expose CVE-2025-0050: Improper memory buffer bound checks allow a non-privileged process to perform GPU operations (including via WebGL/WebGPU) outside of buffer bounds. Affected: Bifrost userspace driver r0p0–r49p2 and r50p0–r51p0; Valhall...
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: CVE-2024-44192: Fixed unexpected process crash due to processing maliciously crafted web content bsc1239863 CVE-2024-54467: Fixed information disclosure via data cross-origin exfiltration due to a cookie management issue bsc1239864 Other...
ARM多款产品 安全漏洞
ARM 5th Gen GPU Architecture Kernel Driver and ARM Bifrost GPU Userspace Driver are both products of ARM, U.K. ARM 5th Gen GPU Architecture Kernel Driver is a GPU kernel driver.ARM ARM 5th Gen GPU Architecture Kernel Driver is a GPU kernel driver and ARM Bifrost GPU Userspace Driver is a userspac...