Category: Vulnerabilities

Undefined behavior in the Audio/Video component. This vulnerability affects Firefox < 149 and Thunderbird < 149. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2014865

Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149 and Thunderbird < 149. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2017108

Denial-of-service in the XML component. This vulnerability affects Firefox < 149 and Thunderbird < 149. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=1955311

Denial-of-service in the Libraries component in NSS. This vulnerability affects Firefox < 149 and Thunderbird < 149. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2008112

Spoofing issue in the Privacy: Anti-Tracking component. This vulnerability affects Firefox < 149 and Thunderbird < 149. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2013179

Memory safety bugs present in Firefox 148 and Thunderbird 148. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to...

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2021695

Undefined behavior in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2014864

Incorrect boundary conditions in the Graphics: Text component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2016367

Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of...

Memory safety bugs present in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. Some of these bugs showed evidence of memory corruption and we presume that with enough...

Use-after-free in the Widget: Cocoa component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2017002

Information disclosure in the Widget: Cocoa component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2017666

Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2018113