FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Mozilla -- Incorrect boundary conditions

Affected packages
firefox < 143.0.0,2
firefox-esr < 140.3
thunderbird < 143.0

Details

VuXML ID f60c790a-a394-11f0-9617-b42e991fc52e
Discovery 2025-09-16
Entry 2025-10-07

security@mozilla.org reports:

The vulnerability has been assessed to have moderate impact on affected systems, potentially allowing attackers to exploit incorrect boundary conditions in the JavaScript Garbage Collection component. In Thunderbird specifically, these flaws cannot be exploited through email as scripting is disabled when reading mail, but remain potential risks in browser or browser-like contexts

[source]

References

CVE Name CVE-2025-10532
URL https://nvd.nist.gov/vuln/detail/CVE-2025-10532

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.