Firefox Zero-Day Under Attack: Update Your Browser Immediately
thehackernews.com
Mozilla urges users to update Firefox after critical CVE-2024-9680 vulnerability is actively exploited.

In case someone missed this (i did :(, story from a week ago), forks also should be updated by now meow-floppy

Mozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come under active exploitation in the wild.

The vulnerability, tracked as CVE-2024-9680 (CVSS score: 9.8), has been described as a use-after-free bug in the Animation timeline component.

The issue has been addressed in the following versions of the web browser -

Firefox 131.0.2
Firefox ESR 128.3.1, and
Firefox ESR 115.16.1.
  • plinky [he/him]
    ·
    12 hours ago

    I haven't seen mentions of mobile anywhere soviet-hmm maybe its sufficiently different?