Threats Tagged 'cve-2025-8033'

Multiple security vulnerabilities affecting Mozilla Firefox and Thunderbird have been addressed in a Red Hat Enterprise Linux 8 update. These include memory safety bugs, incorrect URL handling in Content Security Policy (CSP) reports, partial return value writes in the JavaScript engine, potential user-assisted code execution via the 'Copy as cURL' command, and bypasses of CSP through XSLT documents. The update is rated as important by Red Hat Product Security and affects various architectures of Red Hat Enterprise Linux 8.

A security advisory from Red Hat addresses multiple vulnerabilities in Mozilla Firefox and Thunderbird, including memory safety bugs, incorrect URL handling in Content Security Policy (CSP) reports, JavaScript engine flaws, and potential user-assisted code execution. These issues affect Red Hat Enterprise Linux 9 variants and related extended support versions. The update fixes nine distinct CVEs, each addressing different security weaknesses in Firefox and Thunderbird components.

A security advisory from Red Hat addresses multiple vulnerabilities in Mozilla Firefox and Thunderbird, including memory safety bugs, incorrect URL stripping in CSP reports, JavaScript engine flaws, and potential user-assisted code execution. These issues affect Red Hat Enterprise Linux 10 across various architectures. The update is rated as Important by Red Hat Product Security. Users are advised to apply the provided security update to mitigate these vulnerabilities.

Multiple security vulnerabilities affecting Mozilla Firefox and Thunderbird have been addressed in a Red Hat security update for Red Hat Enterprise Linux 9.4 Extended Update Support. The issues include memory safety bugs, incorrect URL stripping in Content Security Policy (CSP) reports, partial return value writes in the JavaScript engine, potential user-assisted code execution, and bypasses of CSP via XSLT documents and javascript: URLs. These vulnerabilities have been assigned CVE identifiers CVE-2025-8027 through CVE-2025-8035. Red Hat has released updated packages to fix these issues.

Multiple security vulnerabilities affecting Mozilla Firefox and Thunderbird have been addressed in a Red Hat security update for Red Hat Enterprise Linux 9.2. The issues include memory safety bugs, incorrect URL handling in Content Security Policy (CSP) reports, JavaScript engine flaws, and potential user-assisted code execution. These vulnerabilities have been rated as having an important security impact by Red Hat Product Security. The update fixes nine CVEs related to Firefox and Thunderbird components, improving browser security and stability.

A security advisory from Red Hat addresses multiple vulnerabilities in Mozilla Firefox and Thunderbird, including memory safety bugs, incorrect URL handling, JavaScript engine flaws, and potential user-assisted code execution. These issues affect Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions across multiple architectures. The advisory rates the update as important and provides fixes for nine CVEs related to Firefox and Thunderbird components.

Multiple security vulnerabilities affecting Mozilla Thunderbird in Red Hat Enterprise Linux 9 have been addressed in an important security update. These include memory safety bugs, incorrect URL stripping in CSP reports, JavaScript engine issues, potential user-assisted code execution, and CSP bypasses. The update fixes nine CVEs related to these issues. Red Hat has released updated Thunderbird packages for various RHEL 9 variants to remediate these vulnerabilities.

Multiple security vulnerabilities affecting Mozilla Thunderbird as packaged by Red Hat Enterprise Linux 10 have been addressed. These include memory safety bugs, JavaScript engine flaws, incorrect URL handling in Content Security Policy (CSP) reports, and potential user-assisted code execution via the 'Copy as cURL' command. The update fixes issues that could lead to truncated instructions, partial return values written to the stack, CSP bypasses, and execution of javascript: URLs in object and embed tags. Red Hat has released an important security update to remediate these issues in Thunderbird for various architectures and extended support versions.

Multiple security vulnerabilities affecting Mozilla Firefox and Thunderbird have been addressed in a Red Hat Enterprise Linux 7 Extended Lifecycle Support update. These include memory safety bugs, incorrect URL handling in Content Security Policy (CSP) reports, partial return value writes in the JavaScript engine, potential user-assisted code execution, and bypasses of CSP via XSLT documents. The update fixes nine CVEs related to these issues. Red Hat rates the security impact as Important and has released patches for affected packages.

Multiple security vulnerabilities affecting Mozilla Firefox and Thunderbird have been addressed in a Red Hat security update for Red Hat Enterprise Linux 8.4. These include memory safety bugs, incorrect URL stripping in Content Security Policy (CSP) reports, partial return value writes in the JavaScript engine, potential user-assisted code execution, and CSP bypass via XSLT documents. The update fixes nine CVEs related to these issues. The advisory rates the security impact as Important (high severity).