FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Mozilla -- memory corruption

Affected packages
firefox-esr < 128.10
thunderbird < 128.10

Details

VuXML ID 4f17db64-30bd-11f0-81be-b42e991fc52e
Discovery 2025-04-29
Entry 2025-05-14

security@mozilla.org reports:

Memory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbitrary code.

References

CVE Name CVE-2025-4093
URL https://nvd.nist.gov/vuln/detail/CVE-2025-4093