Help us improve your Mozilla experience

In addition to Cookies necessary for this site to function, we’d like your permission to set some additional Cookies to better understand your browsing needs and improve your experience. Rest assured — we value your privacy.

Cookie settings
Mozilla
  • Firefox browsers
  • Products
    • Mozilla VPN

    • Mozilla Monitor

    • Firefox Relay

    • MDN Plus

    • Thunderbird

    All products

  • About us

    Our Mission

    • About Mozilla

    • The Mozilla Manifesto

    • Get Involved

    • Blog

    Our Work

    • Mozilla Foundation

    • Mozilla.ai

    • Mozilla Ventures

    • Mozilla Advertising

    • Mozilla Builders

    • Mozilla New Products

Menu

  • Mozilla Security

Mozilla Security

  • Advisories
  • Known Vulnerabilities
  • Mozilla Security Blog
  • Security Bug Bounty
  • Third-party Injection Policy

Client Bug Bounty

  • Frequently Asked Questions
  • Hall of Fame

Web Bug Bounty

  • Eligible Websites
  • Frequently Asked Questions
  • Hall of Fame

Mozilla Foundation Security Advisory 2025-80

Security Vulnerabilities fixed in Firefox 143.0.3

Announced
September 30, 2025
Impact
high
Products
Firefox
Fixed in
  • Firefox 143.0.3

#CVE-2025-11152: Sandbox escape due to integer overflow in the Graphics: Canvas2D component

Reporter
Oskar L
Impact
high
References
  • Bug 1987246

#CVE-2025-11153: JIT miscompilation in the JavaScript Engine: JIT component

Reporter
Nan Wang
Impact
high
References
  • Bug 1987481

Mozilla Ads

Extend reach and deepen trust.

Learn more about Mozilla Ads

Company

  • Leadership
  • Press Center
  • Careers
  • Contact

Support

  • Product Help
  • File a Bug
  • Localize Mozilla
  • Security

Developers

  • Developer Edition
  • Enterprise
  • Tools
  • MDN
  • Firefox Release Notes

Follow @Mozilla

  • Bluesky (@mozilla.org)
  • Instagram (@mozilla)
  • LinkedIn (@mozilla)
  • TikTok (@mozilla)
  • Spotify (@mozilla)

Follow @Firefox

  • Bluesky (@firefox.com)
  • Instagram (@firefox)
  • YouTube (@firefoxchannel)
  • TikTok (@firefox)
Donate

Visit Mozilla Corporation’s not-for-profit parent, Mozilla Foundation.
Portions of this content are ©1998–2025 by individual mozilla.org contributors. Content available under a Creative Commons license.

  • Website Privacy Notice
  • Cookies
  • Legal
  • Community Participation Guidelines
  • About this site