Firefox

20531 readers

76 users here now

/c/firefox

A place to discuss the news and latest developments on the open-source browser Firefox.

Rules

1. Adhere to the instance rules

2. Be kind to one another

3. Communicate in a civil manner

Reporting

If you would like to bring an issue to the moderators attention, please use the "Create Report" feature on the offending comment or post and it will be reviewed as time allows.

founded 5 years ago

MODERATORS

k_o_t@lemmy.ml

golden_zealot@lemmy.ml

125

Firefox 118.1 released (www.mozilla.org)

submitted 2 years ago by hal_5700X@lemmy.world to c/firefox@lemmy.ml

3 comments fedilink hide all child comments

Release Notes

you are viewing a single comment's thread
view the rest of the comments

[–] TwinHaelix@reddthat.com 15 points 2 years ago (1 children)

Fix is to address a critical CVE:

Specific handling of an attacker-controlled VP8 media stream could lead to a heap buffer overflow in the content process. We are aware of this issue being exploited in other products in the wild.

[–] pivot_root@lemmy.world 2 points 2 years ago (1 children)

Any idea if it's the same root cause as CVE-2023-4863 (libwebp heap buffer overflow)? WEBP is a derivative of VP8, after all.

[–] Audacity9961@feddit.ch 4 points 2 years ago

It is apparently a new one in libvpx