2 matches found
CVE-2025-1931
CVE-2025-1931 describes a use-after-free in the content process side of a WebTransport connection, causing a potentially exploitable crash. Affected products/versions from the provided docs: Firefox < 136, Firefox ESR < 115.21 and < 128.8, Thunderbird < 136, and Thunderbird
OESA-2024-2275 firefox security update
Mozilla Firefox is a standalone web browser, designed for standards compliance and performance. Its functionality can be enhanced via a plethora of extensions. Security Fixes: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://pdf.js...