Astra Linux – Vulnerability in Firefox, Thunderbird

Information disclosure in the Networking: Cache component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

Mozilla多款产品 安全漏洞

Mozilla Firefox, among others, are products of the American Mozilla Foundation. Mozilla Firefox is an open-source web browser. Mozilla Firefox ESR is a extended support version of Firefox the web browser. Mozilla Thunderbird is an email client software that emerged independently from the Mozilla...

CVE-2025-13027

CVE-2025-13027 is a memory-safety issue affecting Firefox and Thunderbird prior to version 145. The connected documents corroborate memory-corruption–related bugs in Firefox 144/Thunderbird 144, with the advisory noting potential arbitrary-code execution if exploited. Affected products include Fi...

CVE-2025-1932

CVE-2025-1932 is an information- and memory-safety issue in the XSLT txNodeSorter comparator, causing potential out-of-bounds access. Affected products and versions are Firefox (pre-136), Firefox ESR (pre-128.8), Thunderbird (pre-136), and Thunderbird (pre-128.8); root cause is an inconsistent co...

UBUNTU-CVE-2023-23605

Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 108 and Firefox ESR 102.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerabilit...

UBUNTU-CVE-2017-7830

The Resource Timing API incorrectly revealed navigations in cross-origin iframes. This is a same-origin policy violation and could allow for data theft of URLs loaded by users. This vulnerability affects Firefox 57, Firefox ESR 52.5, and Thunderbird 52.5...