CVE-2025-5262

URGENT: Patch Thunderbird NOW! CVE-2025-5262 (CVSS 7.5) lets attackers crash systems remotely. Also fixes payment card leaks (CVE-2025-5267). Read more:👉 https://t.co/qH1UU7wFHC #InfoSec #PatchTuesday https://t.co/7IlMROBZdn

Mozilla patched a critical Firefox vulnerability (CVE-2025-5262) that allowed attackers to execute arbitrary code via WebRTC. Users should update to version 139 immediately. https://t.co/MbCWWGrxfd

Mozilla releases urgent updates for Firefox to fix a critical libvpx vulnerability (CVE-2025-5262) allowing remote code execution without user interaction. Update now! https://t.co/MnGEReHFA0 #Security #Vulnerability #Patch #Browser #Safety #Mozilla #Internet #Web #Software https

🚨 ¡ALERTA DE SEGURIDAD URGENTE PARA USUARIOS DE FIREFOX! 🚨 Mozilla ha lanzado actualizaciones de emergencia para corregir una vulnerabilidad crítica (CVE-2025-5262) en Firefox.  #nextcom #ciberseguridad #firefox https://t.co/5w4lWoD6d9

⚠️Actualizaciones de seguridad para los productos de Mozilla ❗CVE-2025-5262 ➡️Más info: https://t.co/uvs6X9FSik https://t.co/z7OkfI6Iko

🚨 Emergency Firefox Update Alert A 0-click vulnerability (CVE-2025-5262) in libvpx lets attackers run arbitrary code without any user interaction. 🔥Patch it now: Mozilla just pushed urgent security updates. 🧵Details: A double-free bug in VP8/VP9 handling via WebRTC.

CVE-2025-5262 ... -> vpx_codec_enc_init_multi() -> vp8e_init() fails -> vpx_codec_destroy(ctx) frees buffer -> init-loop error-handler frees buffer again -> caller vpx_codec_destroy(ctx) frees yet again -> double-free https://t.co/qHAVKLGzgu

CVE-2025-5262 A double-free could have occurred in `vpx_codec_enc_init_multi` after a failed allocation when initializing the encoder for WebRTC. This could have caused memory corrup… https://t.co/VZsDR3o5ZO