FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Mozilla -- IonMonkey-JIT bad stack write

Affected packages
firefox < 141.0,2
firefox-esr < 140.1
firefox-esr < 128.13
firefox-esr < 115.26
thunderbird < 141.0
thunderbird-esr < 140.1
thunderbird < 128.13

Details

VuXML ID 3c234220-685e-11f0-a12d-b42e991fc52e
Discovery 2025-07-22
Entry 2025-07-24

security@mozilla.org reports:

On 64-bit platforms IonMonkey-JIT only wrote 32 bits of the 64-bit return value space on the stack. Baseline-JIT, however, read the entire 64 bits.

[source]

References

CVE Name CVE-2025-8027
URL https://nvd.nist.gov/vuln/detail/CVE-2025-8027

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.