Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:mozilla/Thunderbird@140.4.0
purl pkg:mozilla/Thunderbird@140.4.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-4gsx-puz4-a3f1 Use-after-free in MediaTrackGraphImpl::GetInstance() CVE-2025-11708

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:16:55.892953+00:00 Mozilla Importer Fixing VCID-4gsx-puz4-a3f1 https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2025/mfsa2025-85.yml 38.0.0