M.Cooolie

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 120 Firefox ESR versions prior to 115.5.0 Thunderbird versions prior to 115.5 **Description** The issue is related to the use of a MessagePort after it has been freed, potentially leading to an exploitable crash. This could allow a remote attacker to cause a denial of service or other impact. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For Firefox versions prior to 120, update to version 120 or later. For Firefox ESR versions prior to 115.5.0, update to version 115.5.0 or later. For Thunderbird versions prior to 115.5, update to version 115.5 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 118 **Description** The issue is related to the use of memory after it has been freed, which can lead to a potentially exploitable crash. This can allow a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. The vulnerability is associated with the creation of an `ImageBitmap` during process shutdown, which can later be used after being freed from a different code path. **Recommendations** For versions prior to 118, update to Firefox version 118 or later to resolve the issue. As a temporary workaround, consider restricting the use of `ImageBitmap` until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 105.0.5195.52 Microsoft Edge (affected versions not specified) **Description** The issue is related to a use after free in the Layout component, which can be exploited by a remote attacker to potentially execute arbitrary code via a crafted HTML page. This could lead to heap corruption. **Recommendations** For Google Chrome versions prior to 105.0.5195.52, update to version 105.0.5195.52 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 93 Thunderbird versions prior to 91.2 Firefox ESR versions prior to 91.2 **Description** The issue is related to a use-after-free of a languages service object during process shutdown, potentially leading to memory corruption and a crash. This could be exploited by a remote attacker to execute arbitrary code. **Recommendations** For Firefox versions prior to 93, update to version 93 or later. For Thunderbird versions prior to 91.2, update to version 91.2 or later. For Firefox ESR versions prior to 91.2, update to version 91.2 or later.