Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2026/VULN583
_____________________________________________________________________

DATE                : 03/06/2026

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Mozilla Firefox versions prior
                              to 151.0.3, for iOS 151.2.

=====================================================================
https://www.mozilla.org/en-US/security/advisories/mfsa2026-54/
https://www.mozilla.org/en-US/security/advisories/mfsa2026-53/
_____________________________________________________________________

Mozilla Foundation Security Advisory 2026-54

Security Vulnerabilities fixed in Firefox 151.0.3

Announced
    June 2, 2026
Impact
    high
Products
    Firefox
Fixed in

        Firefox 151.0.3

#CVE-2026-10701: Incorrect boundary conditions in the Graphics: Text
component

Reporter
    taiho kim
Impact
    high

References

    Bug 2038537


#CVE-2026-10702: JIT miscompilation in the JavaScript Engine: JIT component

Reporter
    Nebula Security
Impact
    high

References

    Bug 2040903

_____________________________________________________________________

Mozilla Foundation Security Advisory 2026-53

Security Vulnerabilities fixed in Firefox for iOS 151.2

Announced
    June 1, 2026
Impact
    high
Products
    Firefox for iOS
Fixed in

        Firefox for iOS 151.2

#CVE-2026-9308: Arbitrary JavaScript execution in Reader View due to wrong
HTML replacement order

Reporter
    Muneaki Nishimura
Impact
    high

Description

Firefox for iOS Reader View replaced page content in its HTML template before
replacing other internal placeholders. A malicious page could include a
placeholder string that was later substituted with JSON-LD data, potentially
resulting in arbitrary JavaScript execution.

References

    Bug 2039422


#CVE-2026-9309: Arbitrary JavaScript execution in internal pages via Reader
View JSON-LD injection

Reporter
    Muneaki Nishimura
Impact
    high

Description

Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata.
A malicious page could inject markup that changed Reader View behavior and leaked
sensitive URL parameters. These parameters could then be used to access internal
pages, potentially resulting in arbitrary JavaScript execution in an internal
origin.


References

    Bug 2036573

=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================