FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Mozilla -- memory corruption in GMP

Affected packages
firefox < 142,2
firefox-esr < 140.2
thunderbird < 140.2

Details

VuXML ID f42ee983-7eb0-11f0-ba14-b42e991fc52e
Discovery 2025-08-19
Entry 2025-08-21

security@mozilla.org reports:

An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process.

[source]

References

CVE Name CVE-2025-9179
URL https://nvd.nist.gov/vuln/detail/CVE-2025-9179

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.