Firefox Zero-Day Under Attack: Update Your Browser Immediately
thehackernews.com
Mozilla urges users to update Firefox after critical CVE-2024-9680 vulnerability is actively exploited.

In case someone missed this (i did :(, story from a week ago), forks also should be updated by now meow-floppy

Mozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come under active exploitation in the wild.

The vulnerability, tracked as CVE-2024-9680 (CVSS score: 9.8), has been described as a use-after-free bug in the Animation timeline component.

The issue has been addressed in the following versions of the web browser -

Firefox 131.0.2
Firefox ESR 128.3.1, and
Firefox ESR 115.16.1.
  • 4am@lemm.eeEnglish
    4·
    19 hours ago

    Has flatpak Firefox been updated yet? Last time I checked it was still (I think) 131.0 but that was a few days ago.