FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Mozilla -- Memory disclosure

Affected packages
firefox < 144.0.0,2
firefox-esr < 140.4.0
thunderbird < 144.0.0

Details

VuXML ID f7047dfc-ad02-11f0-b2aa-b42e991fc52e
Discovery 2025-10-14
Entry 2025-10-19

security@mozilla.org reports:

A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process.

References

CVE Name CVE-2025-11710
URL https://nvd.nist.gov/vuln/detail/CVE-2025-11710