公告编号: Mozilla Foundation Security Advisory 2026-03 发布时间: January 13, 2026 影响程度: High 涉及产品: Firefox ESR, Firefox ESR 140.7 漏洞列表 1. CVE-2026-0877 - 描述: Mitigation bypass in the DOM: Security component - 报告者: mingjung - 影响程度: High - 参阅: Bug 1999257 2. CVE-2026-0878 - 描述: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component - 报告者: Oskar L - 影响程度: High - 参阅: Bug 2003989 3. CVE-2026-0879 - 描述: Sandbox escape due to incorrect boundary conditions in the Graphics component - 报告者: Oskar L - 影响程度: High - 参阅: Bug 2004602 4. CVE-2026-0880 - 描述: Sandbox escape due to integer overflow in the Graphics component - 报告者: Oskar L - 影响程度: High - 参阅: Bug 2005014 5. CVE-2026-0882 - 描述: Use-after-free in the IPC component - 报告者: Randell Jesup - 影响程度: High - 参阅: Bug 1924125 6. CVE-2025-14327 - 描述: Spoofing issue in the Downloads Panel component - 报告者: Caro Kann - 影响程度: Moderate - 参阅: Bug 1970743 7. CVE-2026-0883 - 描述: Information disclosure in the Networking component - 报告者: Vladislav Plyatsok - 影响程度: Moderate - 参阅: Bug 1989340 8. CVE-2026-0884 - 描述: Use-after-free in the JavaScript Engine component - 报告者: Gary Kwong and Nan Wang - 影响程度: Moderate - 参阅: Bug 2003588 9. CVE-2026-0885 - 描述: Use-after-free in the JavaScript: GC component - 报告者: Irvan Kurniawan - 影响程度: Moderate - 参阅: Bug 2003607 10. CVE-2026-0886 - 描述: Incorrect boundary conditions in the Graphics component - 报告者: Oskar L - 影响程度: Moderate - 参阅: Bug 2005658 11. CVE-2026-0887 - 描述: Clickjacking issue, information disclosure in the PDF Viewer component - 报告者: Lyra Rebane - 影响程度: Moderate - 参阅: Bug 2006500 12. CVE-2026-0890 - 描述: Spoofing issue in the DOM: Copy & Paste and Drag & Drop component - 报告者: Edgar Chen - 影响程度: Low - 参阅: Bug 2005081 13. CVE-2026-0891 - 描述: Memory safety bugs fixed in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147 - 报告者: Andrew McCreight, Dennis Jackson and the Mozilla Fuzzing Team - 影响程度: High - 描述补充: Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. - 参阅: Memory safety bugs fixed in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147