Julien Wajsberg

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 136 Firefox ESR versions prior to 128.8 Thunderbird versions prior to 136 Thunderbird ESR versions prior to 128.8 **Description** The issue is related to memory safety bugs that could potentially lead to memory corruption. It is presumed that with sufficient effort, some of these bugs could be exploited to run arbitrary code. **Recommendations** For Firefox versions prior to 136, update to version 136 or later. For Firefox ESR versions prior to 128.8, update to version 128.8 or later. For Thunderbird versions prior to 136, update to version 136 or later. For Thunderbird ESR versions prior to 128.8, update to version 128.8 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 87 Firefox ESR versions prior to 78.9 Thunderbird versions prior to 78.9 **Description** The issue is related to memory safety bugs and buffer copying without checking the size of input data, which could potentially allow an attacker to execute arbitrary code using a specially crafted website. Some of these bugs showed evidence of memory corruption. **Recommendations** For Firefox versions prior to 87, update to version 87 or later. For Firefox ESR versions prior to 78.9, update to version 78.9 or later. For Thunderbird versions prior to 78.9, update to version 78.9 or later.