FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Firefox -- memory corruption due to race condition

Affected packages
firefox < 137.0.2,2

Details

VuXML ID 6529e5e7-36d5-11f0-8f57-b42e991fc52e
Discovery 2025-04-15
Entry 2025-05-22

security@mozilla.org reports:

A race condition existed in nsHttpTransaction that could have been exploited to cause memory corruption, potentially leading to an exploitable condition.

References

CVE Name CVE-2025-3608
URL https://nvd.nist.gov/vuln/detail/CVE-2025-3608