Уязвимость CVE-2025-1934

Пакет	Статус	Версия исправления	Тип
firefox	fixed	136.0-1	package
firefox-esr	fixed	128.8.0esr-1	package
thunderbird	fixed	1:128.8.0esr-1	package

CVE-2025-1934

CVSS3: 6.5

ubuntu

8 месяцев назад

It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. This vulnerability affects Firefox < 136, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8.

CVE-2025-1934

CVSS3: 6.5

redhat

8 месяцев назад

It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. This vulnerability affects Firefox < 136, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8.

CVE-2025-1934

CVSS3: 6.5

nvd

8 месяцев назад

It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. This vulnerability affects Firefox < 136, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8.

GHSA-8454-mw8r-4mjq

CVSS3: 6.5

github

8 месяцев назад

It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. This vulnerability affects Firefox < 136 and Firefox ESR < 128.8.

BDU:2025-02605

CVSS3: 6.5

fstec

8 месяцев назад

Уязвимость компонента RegExp браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, Thunderbird ESR, позволяющая нарушителю оказать влияние на конфиденциальность, целостность защищаемой информации

exploitDog

CVE-2025-1934

Описание

Пакеты

Примечания

Связанные уязвимости