VDB
GCVE-110-MAGEIA-2025-10
GCVE-110-MAGEIA-2025-10
Advisory Published
WebChannel APIs susceptible to confused deputy attack. (CVE-2025-0237)
Use-after-free when breaking lines in text. (CVE-2025-0238)
Alt-Svc ALPN validation failure when redirected. (CVE-2025-0239)
Compartment mismatch when parsing JavaScript JSON module.
(CVE-2025-0240)
Memory corruption when using JavaScript Text Segmentation.
(CVE-2025-0241)
Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR
115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6.
(CVE-2025-0242)
Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR
128.6, and Thunderbird 128.6. (CVE-2025-0243)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | opencpn-ais-radar-plugin | 1.4.19.0-1.mga9 (unaffected), 0 (affected) | — |
| Mageia | opencpn-polar-plugin | 0 (affected), 1.2.36.0-1.mga9 (unaffected) | — |
| Mageia | opencpn-weatherfax-plugin | 0 (affected), 1.10.12.0-1.mga9 (unaffected) | — |
| Mageia | thunderbird | 0 (affected), 0 (affected), 128.6.0-1.mga9 (unaffected), 128.6.0-1.mga9 (unaffected) | — |
| Mageia | opencpn-climatology-plugin | 1.6.33.0-1.mga9 (unaffected), 0 (affected) | — |
| Mageia | opencpn-watchdog-plugin | 0 (affected), 2.4.112.0-1.mga9 (unaffected) | — |
| Mageia | opencpn-celestial-navigation-plugin | 0 (affected), 2.4.43.0-1.mga9 (unaffected) | — |
| Mageia | opencpn-squiddio-plugin | 0 (affected), 1.3.93.0-1.mga9 (unaffected) | — |
| Mageia | opencpn-weather-routing-plugin | 1.15.21.0-1.mga9 (unaffected), 0 (affected) | — |
| Mageia | opencpn-statusbar-plugin | 0 (affected), 1.1.14.0-1.mga9 (unaffected) | — |
| Mageia | thunderbird-l10n | 0 (affected), 128.6.0-1.mga9 (unaffected), 0 (affected), 128.6.0-1.mga9 (unaffected) | — |
References
Browse GCVE Records
72,096 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.