| 2023-12-19 | CVE-2023-6861 | Out-of-bounds Write vulnerability in multiple products
The `nsWindow::PickerOpen(void)` method was susceptible to a heap buffer overflow when running in headless mode. | 8.8 |
| 2023-12-19 | CVE-2023-6862 | Use After Free vulnerability in multiple products
A use-after-free was identified in the `nsDNSService::Init`. | 8.8 |
| 2023-12-19 | CVE-2023-6863 | The `ShutdownObserver()` was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor. | 8.8 |
| 2023-12-19 | CVE-2023-6864 | Out-of-bounds Write vulnerability in multiple products
Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. | 8.8 |
| 2023-11-21 | CVE-2023-6207 | Use After Free vulnerability in multiple products
Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5. | 8.8 |
| 2023-11-21 | CVE-2023-6208 | When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage not unlike the clipboard. *This bug only affects Firefox on X11. | 8.8 |
| 2023-11-21 | CVE-2023-6212 | Out-of-bounds Write vulnerability in multiple products
Memory safety bugs present in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4. | 8.8 |
| 2023-10-25 | CVE-2023-5724 | Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash. | 7.5 |
| 2023-10-25 | CVE-2023-5728 | During garbage collection extra operations were performed on a object that should not be. | 7.5 |
| 2023-09-28 | CVE-2023-5217 | Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |