PT-2025-25206 · Mozilla+2 · Firefox+2

Steven Michaud

+1

·

Published

2025-06-10

·

Updated

2025-11-19

·

CVE-2025-49709

CVSS v2.0

10

Critical

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 139.0.4
Description Certain canvas operations could have led to memory corruption.
Recommendations For versions prior to 139.0.4, update to version 139.0.4 or later to resolve the issue.

Fix

Memory Corruption

Weakness Enumeration

CWE-787

Related Identifiers

ALT-PU-2025-11100
ALT-PU-2025-11497
ALT-PU-2025-14599
ALT-PU-2025-8725
BDU:2025-07758
CVE-2025-49709
OPENSUSE-SU-2025:15203-1

Affected Products

Alt Linux
Astra Linux
Firefox