Mozilla Foundation Security Advisory 2025-12

Security Vulnerabilities fixed in Firefox 135.0.1

Announced

February 18, 2025

Impact

high

Products

Firefox

Fixed in

Firefox 135.0.1

#CVE-2025-1414: Memory safety bugs fixed in Firefox 135.0.1

Reporter: Andrew McCreight
Impact: high

Description

Memory safety bugs present in Firefox 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

References

Memory safety bugs fixed in Firefox 135.0.1

Firefox for Desktop

Firefox for iOS

Firefox for Android

Firefox Focus

Firefox blog

Mozilla VPN

Mozilla Monitor

Firefox Relay

Pocket

MDN Plus

Fakespot

Thunderbird

About Mozilla

The Mozilla Manifesto

Get Involved

Innovation Projects

Blog

Mozilla Foundation

Mozilla.ai

Mozilla Ventures

Mozilla Advertising

Mozilla Builders