Francisco A

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 41.0 **Description** The issue is related to the improper use of the Cairo library in the gfx/2d/DataSurfaceHelpers.cpp component, which can lead to an out-of-bounds read or a denial of service. This can be triggered by using a CANVAS element to switch to 2D rendering mode, causing errors in the Cairo library. The estimated number of potentially affected devices is not specified. **Recommendations** For versions prior to 41.0, update to version 41.0 or later to resolve the issue. As a temporary workaround, consider avoiding the use of the CANVAS element to trigger 2D rendering until a patch is available. Restrict access to the vulnerable component gfx/2d/DataSurfaceHelpers.cpp to minimize the risk of exploitation.