Opened 6 days ago
Last modified 36 hours ago
#21354 assigned enhancement
js-128.9.0 (spidermonkey) and firefox-128.9.0
| Reported by: | Bruce Dubbs | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | elevated | Milestone: | 12.4 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
New point version.
Change History (3)
comment:1 by , 5 days ago
| Milestone: | 12.4 → 99-Waiting |
|---|
comment:2 by , 36 hours ago
| Milestone: | 99-Waiting → 12.4 |
|---|---|
| Priority: | normal → elevated |
| Summary: | js-128.8.0 (spidermonkey) and firefox-128.8.1 → js-128.9.0 (spidermonkey) and firefox-128.9.0 |
The latest Firefox ESR update is available, containing fixes for the following vulnerabilities:
- CVE-2025-3028: Use-after-free triggered by XSLTProcessor (High)
- CVE-2025-3029: URL Bar Spoofing via non-BMP Unicode characters (Moderate)
- CVE-2025-3030: Memory safety bugs fixed in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9 (High)
comment:3 by , 36 hours ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
Note:
See TracTickets
for help on using tickets.
This can wait until 128.9.0 as the issue it fixes is Windows specific.