FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Mozilla -- Multiple vulnerabilities

Affected packages
firefox < 141.0,2
thunderbird < 141.0

Details

VuXML ID 67c6461f-685e-11f0-a12d-b42e991fc52e
Discovery 2025-07-22
Entry 2025-07-24

security@mozilla.org reports:

Memory safety bugs present in Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

Focus incorrectly truncated URLs towards the beginning instead of around the origin.

[source]

References

CVE Name CVE-2025-8043
CVE Name CVE-2025-8044
URL https://nvd.nist.gov/vuln/detail/CVE-2025-8043
URL https://nvd.nist.gov/vuln/detail/CVE-2025-8044

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.