VDB
GCVE-110-MAGEIA-2025-9
GCVE-110-MAGEIA-2025-9
Advisory Published
WebChannel APIs susceptible to confused deputy attack. (CVE-2025-0237)
Use-after-free when breaking lines in text. (CVE-2025-0238)
Alt-Svc ALPN validation failure when redirected. (CVE-2025-0239)
Compartment mismatch when parsing JavaScript JSON module.
(CVE-2025-0240)
Memory corruption when using JavaScript Text Segmentation.
(CVE-2025-0241)
Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR
115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6.
(CVE-2025-0242)
Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR
128.6, and Thunderbird 128.6. (CVE-2025-0243)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | firefox | 0 (affected), 128.6.0-1.mga9 (unaffected), 0 (affected), 128.6.0-1.mga9 (unaffected) | — |
| Mageia | firefox-l10n | 0 (affected), 128.6.0-1.mga9 (unaffected), 128.6.0-1.mga9 (unaffected), 0 (affected) | — |
| Mageia | python-websockets | 0 (affected), 14.1-1.mga9 (unaffected) | — |
| Mageia | yt-dlp | 0 (affected), 2025.01.26-1.mga9 (unaffected) | — |
References
Browse GCVE Records
73,834 records in the GCVE database · Updated July 19, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.