The MarkStack assignment operator, part of the JavaScript engine, could access uninitialized memory if it were used in a self-assignment. This vulnerability affects Firefox < 125.
{ "binaries": [ { "binary_name": "firefox", "binary_version": "125.0.2+build1-0ubuntu0.20.04.2" }, { "binary_name": "firefox-dev", "binary_version": "125.0.2+build1-0ubuntu0.20.04.2" }, { "binary_name": "firefox-geckodriver", "binary_version": "125.0.2+build1-0ubuntu0.20.04.2" }, { "binary_name": "firefox-mozsymbols", "binary_version": "125.0.2+build1-0ubuntu0.20.04.2" } ], "availability": "No subscription required" }