VDB

GCVE-110-MAGEIA-2025-125

GCVE-110-MAGEIA-2025-125
Advisory Published
Vulnetix · Advisory published April 5, 2025
Use-after-free triggered by XSLTProcessor. (CVE-2025-3028) URL Bar Spoofing via non-BMP Unicode characters. (CVE-2025-3029) Memory safety bugs fixed in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9. (CVE-2025-3030)

Affected Products

VendorProductVersionsPlatforms
Mageiafirefox0 (affected), 128.9.0-1.mga9 (unaffected)
Mageiafirefox-l10n0 (affected), 128.9.0-1.mga9 (unaffected)
Mageianss0 (affected), 3.110.0-1.mga9 (unaffected)

Browse GCVE Records

73,053 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›