CVE-2025-6426 – “Firefox macOS Terminal File Warning Vulnerability”

June 24, 2025

CVE ID : CVE-2025-6426

Published : June 24, 2025, 1:15 p.m. | 1 hour, 23 minutes ago

Description : The executable file warning did not warn users before opening files with the `terminal` extension.
*This bug only affects Firefox for macOS. Other versions of Firefox are unaffected.* This vulnerability affects Firefox
Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6425 – Mozilla Firefox Persistent UUID Disclosure

Next Article CVE-2025-39205 – “MicroSCADA X SYS600 IEC 61850 TLS Certificate Validation Vulnerability”

Highlights

CVE-2022-50221 – Linux Kernel DRM/FB-Helper Out-of-Bounds Access Vulnerability

June 18, 2025

CVE ID : CVE-2022-50221

Published : June 18, 2025, 11:15 a.m. | 3 hours, 16 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

drm/fb-helper: Fix out-of-bounds access

Clip memory range to screen-buffer size to avoid out-of-bounds access
in fbdev deferred I/O’s damage handling.

Fbdev’s deferred I/O can only track pages. From the range of pages, the
damage handler computes the clipping rectangle for the display update.
If the fbdev screen buffer ends near the beginning of a page, that page
could contain more scanlines. The damage handler would then track these
non-existing scanlines as dirty and provoke an out-of-bounds access
during the screen update. Hence, clip the maximum memory range to the
size of the screen buffer.

While at it, rename the variables min/max to min_off/max_off in
drm_fb_helper_deferred_io(). This avoids confusion with the macros of
the same name.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Neptune 9.0

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Distribution Release: Neptune 9.0

Distribution Release: Neptune 9.0

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

CVE-2025-6426 – “Firefox macOS Terminal File Warning Vulnerability”

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

A first look at Laravel Nightwatch

CVE-2024-40570 – SeaCMS SQL Injection Vulnerability

Russian basketball player arrested in ransomware case despite being “useless with computers”

CVE-2025-4441 – D-Link DIR-605L Remote Buffer Overflow Vulnerability

CVE-2022-50221 – Linux Kernel DRM/FB-Helper Out-of-Bounds Access Vulnerability

CVE-2025-37811 – “Qualcomm Chipidea USB Driver Null Pointer Dereference”

Xbox Unveils Big Lineup at Gamescom 2025, Including Fallout TV Show Teaser

How AI Agents Store, Forget, and Retrieve? A Fresh Look at Memory Operations for the Next-Gen LLMs

CVE-2025-6426 – “Firefox macOS Terminal File Warning Vulnerability”

Related Posts