FreeBSD VuXML

Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

in the FreeBSD Ports Collection repository, path ports/security/vuxml/vuln.xml
as a local copy
as a local copy, compressed with bzip2
as a local copy, compressed with xz
as a local copy, compressed with zstandard

Please report security issues to the FreeBSD Security Team at <ports-secteam@FreeBSD.org>. Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.

thunderbird-esr

thunderbird-esr at FreshPorts.org

Entered	Topic
2025-07-24	Mozilla -- 'javascript:' URLs execution
	Mozilla -- cookie shadowing
	Mozilla -- CORS circumvention
	Mozilla -- HTTP Basic Authentication credentials leak
	Mozilla -- Ignored paths while checking navigations
	Mozilla -- Incorrect computation of branch address
	Mozilla -- Insufficient input escaping
	Mozilla -- IonMonkey-JIT bad stack write
	Mozilla -- Memory safety bugs
	Mozilla -- Memory safety bugs
	Mozilla -- Memory safety bugs
	Mozilla -- nullptr dereference
	Mozilla -- Persisted search terms in the URL bar
	Mozilla -- XSLT document CSP bypass