Skip Navigation

Firefox @fedia.io Nemeski @lemm.ee 2mo ago

Firefox 138.0.4 Release Notes

www.mozilla.org Firefox 138.0.4, See All New Features, Updates and Fixes

Firefox 138.0.4, See All New Features, Updates and Fixes

Firefox @lemmy.world cm0002 @lemmy.world 2mo ago

Firefox 138.0.4 Release Notes

www.mozilla.org /en-US/firefox/138.0.4/releasenotes/

Firefox @lemmy.ml sabreW4K3 @lazysoci.al 2mo ago

Firefox 138.0.4 Release Notes

www.mozilla.org /en-US/firefox/138.0.4/releasenotes/

2 comments

Fixed:

https://www.mozilla.org/en-US/security/advisories/mfsa2025-36/#CVE-2025-4920

An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object.

https://www.mozilla.org/en-US/security/advisories/mfsa2025-36/#CVE-2025-4921

An attacker was able to perform an out-of-bounds read or write on a JavaScript object by confusing array index sizes.
- Another reason the rust rewrite would have helped Firefox