Mozilla Firefox ESR 140.12 Security Advisory: Sandbox Escape and RCE Fixes

Mozilla Foundation Security Advisory 2026-58 安全漏洞概述 Mozilla Foundation 发布了安全公告 2026-58，修复了 Firefox ESR 140.12 中的多个安全漏洞。 影响范围 Firefox ESR Thunderbird ESR 修复方案 Firefox ESR 140.12 Thunderbird ESR 140.12 漏洞详情 CVE-2026-12289: 特权升级在 Graphics: WebRender 组件中 Reporter: choeseyong Impact: high References: Bug 2023443 CVE-2026-12290: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: JayJayJazz Impact: high References: Bug 2024852 CVE-2026-12291: 网络组件中的 HTTP 使用后释放 Reporter: Zijie Zhao Impact: high References: Bug 2026929 CVE-2026-12292: Web Audio 组件中的边界条件错误 Reporter: Zijie Zhao Impact: high References: Bug 2028405 CVE-2026-12294: DOM: Workers 组件中的沙箱逃逸 Reporter: Quy Pham Impact: high References: Bug 2029873 CVE-2026-12295: DOM: Navigation 组件中的沙箱逃逸 Reporter: Yaqoub Aldurayhim Impact: high References: Bug 2040169 CVE-2026-12298: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Haruka Yamazaki Impact: high References: Bug 2041991 CVE-2026-12296: Security: Process Sandboxing 组件中的沙箱逃逸 Reporter: Yaqoub Aldurayhim Impact: high References: Bug 2040515 CVE-2026-12297: 网络组件中因边界条件错误导致的沙箱逃逸 Reporter: ZX Impact: high References: Bug 2041818 CVE-2026-12299: DOM: Core & HTML 组件中的 JIT 误编译 Reporter: Hyeonjun Ahn Impact: high References: Bug 2043139 CVE-2026-12320: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Michael Froman Impact: high References: Bug 2044738 CVE-2026-12302: DOM: Security 组件中的缓解措施绕过 Reporter: lebr0nli Impact: moderate References: Bug 2034489 CVE-2026-12304: 网络组件中的 Cookies 组件同源策略绕过 Reporter: Yaqoub Aldurayhim Impact: moderate References: Bug 2034944 CVE-2026-12305: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Zijie Zhao Impact: moderate References: Bug 2037200 CVE-2026-12306: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Mihalis Haatainen Impact: moderate References: Bug 2037323 CVE-2026-12307: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Atsushi Sada Impact: moderate References: Bug 2038133 CVE-2026-12308: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Mihalis Haatainen Impact: moderate References: Bug 2038302 CVE-2026-12309: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Yaqoub Aldurayhim Impact: moderate References: Bug 2038478 CVE-2026-12310: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Carl Pearson Impact: moderate References: Bug 2039707 CVE-2026-12311: 信息泄露，Security: Process Sandboxing 组件中的沙箱逃逸 Reporter: Yaqoub Aldurayhim Impact: moderate References: Bug 2040177 CVE-2026-12312: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: Rintaro Kawasugi Impact: moderate References: Bug 2040393 CVE-2026-12313: 信息泄露，Security: Process Sandboxing 组件中的沙箱逃逸 Reporter: evyatar Impact: moderate References: Bug 2040477 CVE-2026-12314: 内存安全漏洞修复在 Firefox ESR 140.12 Reporter: satyamasd Impact: moderate References: Bug 2041850 CVE-2026-12315: DOM: Security 组件中的缓解措施绕过 Reporter: Nguyen Minh Impact: moderate References: Bug 2042058 CVE-2026-12330: 国际化组件中的边界条件错误 Reporter: Mozilla Fuzzing Team Impact: moderate References: Bug 2029326 CVE-2026-12324: 图形组件中的 CanvasWebGL 组件边界条件错误 Reporter: Mihalis Haatainen Impact: low References: Bug 2038444 CVE-2026-12325: 图形组件中的 ImageLib 组件拒绝服务 Reporter: SecurIn Impact: low References: Bug 2038443 CVE-2026-12327: 内存安全漏洞修复在 Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 和 Thunderbird 152 Reporter: Christian Holler, Jens Stutte, Nika Layzell, Randall Jesup, Tom Schuster 和 Mozilla Fuzzing Team Impact: moderate Description: Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 和 Thunderbird 151 中的内存安全漏洞。其中一些漏洞显示了内存损坏的证据，我们推测，通过足够的努力，其中一些漏洞可能被利用来运行任意代码。 References: Moderate Severity memory safety bugs fixed in Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 and Thunderbird 152 CVE-2026-12328: 内存安全漏洞修复在 Firefox ESR 115.37, Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 和 Thunderbird 152 Reporter: Andrew McCreight, Randall Jesup, Tom Ritter 和 Mozilla Fuzzing Team Impact: high Description: Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 和 Thunderbird 151 中的内存安全漏洞。其中一些漏洞显示了内存损坏的证据，我们推测，通过足够的努力，其中一些漏洞可能被利用来运行任意代码。 References: High Severity memory safety bugs fixed in Firefox ESR 115.37, Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 and Thunderbird 152

目標達成 すべての支援者に感謝 — 100%達成しました！

Mozilla Firefox ESR 140.12 Security Advisory: Sandbox Escape and RCE Fixes

目標達成すべての支援者に感謝 — 100%達成しました！