maintainer-feedback requested: [Bug 273766] www/firefox < 117.0 and mail/thunderbird < 102.15.0 have critical security vuln

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 273766] www/firefox < 117.0 and mail/thunderbird < 102.15.0 have critical security vuln"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 13 Sep 2023 19:32:02 UTC

Bugzilla Automation <bugzilla@FreeBSD.org> has asked freebsd-gecko (Nobody)
<gecko@FreeBSD.org> for maintainer-feedback:
Bug 273766: www/firefox < 117.0 and mail/thunderbird < 102.15.0 have critical
security vuln
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=273766



--- Description ---
This was reported today:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/

"Opening a malicious WebP image could lead to a heap buffer overflow in the
content process. We are aware of this issue being exploited in other products
in the wild."