Fffvr

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 117 Firefox ESR versions prior to 115.2 Thunderbird versions prior to 115.2 **Description** The issue is related to an integer overflow in `RecordedSourceSurfaceCreation`, which could result in a heap buffer overflow, potentially leaking sensitive data and leading to a sandbox escape. This bug only affects Firefox on Windows, with other operating systems being unaffected. **Recommendations** For Firefox versions prior to 117, update to version 117 or later. For Firefox ESR versions prior to 115.2, update to version 115.2 or later. For Thunderbird versions prior to 115.2, update to version 115.2 or later. As a temporary workaround, consider restricting access to the `RecordedSourceSurfaceCreation` function until a patch is available.