First published: Tue Feb 04 2025(Updated: )
Last updated 11 February 2025
Credit: security@mozilla.org
Affected Software | Affected Version | How to fix |
---|---|---|
debian/firefox | 135.0-1 | |
Thunderbird | <135 | 135 |
Firefox | <135.0 | |
Thunderbird | >=131.0<135.0 | |
Firefox | <135 | 135 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2025-1020 is considered a high-severity vulnerability due to the potential for arbitrary code execution.
To fix CVE-2025-1020, upgrade to Firefox or Thunderbird version 135 or later.
Firefox versions up to and including 134 are affected by CVE-2025-1020.
Thunderbird versions up to and including 134 are affected by CVE-2025-1020.
CVE-2025-1020 includes memory safety bugs that could potentially lead to memory corruption.