FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-03-03 16:31:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
ea51e89a-116c-11f0-8b2c-b42e991fc52e	Mozilla -- privilege escalation attack security@mozilla.org reports: The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. Discovery 2025-01-07 Entry 2025-04-04 firefox < 134.0,2 librewolf < 134.0 firefox-esr < 128.6.0 thunderbird < 128.6 CVE-2025-0237 https://nvd.nist.gov/vuln/detail/CVE-2025-0237

VuXML ID

Description

ea51e89a-116c-11f0-8b2c-b42e991fc52e

Mozilla -- privilege escalation attack

security@mozilla.org reports:

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks.

Discovery 2025-01-07
Entry 2025-04-04
firefox

< 134.0,2

librewolf

< 134.0

firefox-esr

< 128.6.0

thunderbird

< 128.6

CVE-2025-0237
https://nvd.nist.gov/vuln/detail/CVE-2025-0237