Mozilla Foundation Security Advisory 2025-65

Security Vulnerabilities fixed in Firefox ESR 115.27

Announced

August 19, 2025

Impact

high

Products

Firefox ESR

Fixed in

Firefox ESR 115.27

#CVE-2025-9179: Sandbox escape due to invalid pointer in the Audio/Video: GMP component

Reporter: Oskar
Impact: high

Description

An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process.

References

Bug 1979527

#CVE-2025-9180: Same-origin policy bypass in the Graphics: Canvas2D component

Reporter: Tom Van Goethem
Impact: high

Description

'Same-origin policy bypass in the Graphics: Canvas2D component.'

References

Bug 1979782

#CVE-2025-9185: Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14, Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142

Reporter: The Mozilla Fuzzing Team
Impact: high

Description

Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

References

Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14, Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142

Mozilla VPN

Mozilla Monitor

Firefox Relay

Pocket

MDN Plus

Thunderbird

About Mozilla

The Mozilla Manifesto

Get Involved

Blog