跳转到帖子

Ubuntu: USN-7191-1 (CVE-2025-0240): Firefox vulnerabilities

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

Ubuntu: USN-7191-1 (CVE-2025-0240): Firefox vulnerabilities

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
01/07/2025
Created
01/11/2025
Added
01/10/2025
Modified
02/06/2025

Description

Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

Solution(s)

  • ubuntu-upgrade-firefox

References

  • https://attackerkb.com/topics/cve-2025-0240
  • CVE - 2025-0240
  • USN-7191-1
  • https://bugzilla.mozilla.org/show_bug.cgi?id=1929623
  • https://ubuntu.com/security/notices/USN-7191-1
  • https://www.cve.org/CVERecord?id=CVE-2025-0240
  • https://www.mozilla.org/en-US/security/advisories/mfsa2025-01/#CVE-2025-0240
  • https://www.mozilla.org/en-US/security/advisories/mfsa2025-02/#CVE-2025-0240
  • https://www.mozilla.org/security/advisories/mfsa2025-01/
  • https://www.mozilla.org/security/advisories/mfsa2025-02/
View more
  • 引用
  • Mention
    • 查看数 700
    • 已创建
    • 最后回复

    参与讨论

    你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。

    游客
    回帖…
    转到主题列表