In case someone missed this (i did :(, story from a week ago), forks also should be updated by now meow-floppy

Mozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come under active exploitation in the wild.

The vulnerability, tracked as CVE-2024-9680 (CVSS score: 9.8), has been described as a use-after-free bug in the Animation timeline component.

The issue has been addressed in the following versions of the web browser -

Firefox 131.0.2
Firefox ESR 128.3.1, and
Firefox ESR 115.16.1.
  • 4am@lemm.ee
    link
    fedilink
    English
    arrow-up
    4
    ·
    edit-2
    1 month ago

    Has flatpak Firefox been updated yet? Last time I checked it was still (I think) 131.0 but that was a few days ago.