VDB
GCVE-110-MAGEIA-2025-227
GCVE-110-MAGEIA-2025-227
Advisory Published
JavaScript engine only wrote partial return value to stack.
(CVE-2025-8027)
Large branch table could lead to truncated instruction. (CVE-2025-8028)
Javascript: URLs executed on object and embed tags. (CVE-2025-8029)
Potential user-assisted code execution in “Copy as cURL” command.
(CVE-2025-8030)
Incorrect URL stripping in CSP reports. (CVE-2025-8031)
XSLT documents could bypass CSP. (CVE-2025-8032)
Incorrect JavaScript state machine for generators. (CVE-2025-8033)
Memory safety bugs fixed in Firefox ESR 115.26, Firefox ESR 128.13,
Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1,
Firefox 141 and Thunderbird 141. (CVE-2025-8034)
Memory safety bugs fixed in Firefox ESR 128.13, Thunderbird ESR 128.13,
Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird
141. (CVE-2025-8035)
Sandbox escape due to invalid pointer in the Audio/Video: GMP component.
(CVE-2025-9179)
Same-origin policy bypass in the Graphics: Canvas2D component.
(CVE-2025-9180)
Uninitialized memory in the JavaScript Engine component. (CVE-2025-9181)
Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14,
Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2,
Firefox 142 and Thunderbird 142. (CVE-2025-9185)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | firefox | 0 (affected), 128.14.0-1.4.mga9 (unaffected) | — |
| Mageia | firefox-l10n | 0 (affected), 128.14.0-1.mga9 (unaffected) | — |
| Mageia | rootcerts | 0 (affected), 20250808.00-1.mga9 (unaffected) | — |
| Mageia | nss | 0 (affected), 3.115.1-1.mga9 (unaffected) | — |
| Mageia | nspr | 0 (affected), 4.37-1.mga9 (unaffected) | — |
References
Browse GCVE Records
73,393 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.