Alex Mayorga

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 148 Firefox ESR versions prior to 140.8 Thunderbird versions prior to 148 Thunderbird versions prior to 140.8 **Description** The software contains incorrect boundary conditions within the Networking: JAR component. This issue could potentially allow for unexpected behavior or security implications due to improper handling of data boundaries. **Recommendations** Update Firefox to version 148 or later. Update Firefox ESR to version 140.8 or later. Update Thunderbird to version 148 or later. Update Thunderbird to version 140.8 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 78 **Description** A use-after-free issue in the VideoStreamEncoder may occur due to a race condition with VideoBroadcaster::AddOrUpdateSink, potentially leading to memory corruption and a crash. This issue may allow a remote attacker to access confidential data, compromise data integrity, and cause a denial of service. **Recommendations** For versions prior to 78, update to version 78 or later to resolve the issue.