Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allo…

A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this v…

Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 a…

The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x before 38.1.1, and Firefox OS…

Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thu…

Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and pa…

Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to …

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in …

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and lib…

An attacker was able to achieve code execution in the content process by exploiting a use-after…

Removing an XSLT parameter during processing could have lead to an exploitable use-after-free. …

Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thu…

Under certain conditions, when handling a ReadableStream, a race condition can cause a use-afte…

Under certain conditions, when running the nsDocShell destructor, a race condition can cause a …

An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitabl…