CVE-2025-1943 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-1943 Interim 1 3 2025-03-09T00:11:48Z current 2025-03-07T00:13:17Z 2025-03-09T00:11:48Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-1943 Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 136 and Thunderbird < 136. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ELFCIRFYZHSULQ4OOF6EEX5F4HJ65XAG/ E-Mail link for openSUSE-SU-2025:14861-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed MozillaFirefox-136.0-1.1 MozillaFirefox-branding-upstream-136.0-1.1 MozillaFirefox-devel-136.0-1.1 MozillaFirefox-translations-common-136.0-1.1 MozillaFirefox-translations-other-136.0-1.1 MozillaFirefox-136.0-1.1 as a component of openSUSE Tumbleweed MozillaFirefox-branding-upstream-136.0-1.1 as a component of openSUSE Tumbleweed MozillaFirefox-devel-136.0-1.1 as a component of openSUSE Tumbleweed MozillaFirefox-translations-common-136.0-1.1 as a component of openSUSE Tumbleweed MozillaFirefox-translations-other-136.0-1.1 as a component of openSUSE Tumbleweed Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 136 and Thunderbird < 136. CVE-2025-1943 openSUSE Tumbleweed:MozillaFirefox-136.0-1.1 openSUSE Tumbleweed:MozillaFirefox-branding-upstream-136.0-1.1 openSUSE Tumbleweed:MozillaFirefox-devel-136.0-1.1 openSUSE Tumbleweed:MozillaFirefox-translations-common-136.0-1.1 openSUSE Tumbleweed:MozillaFirefox-translations-other-136.0-1.1 critical