CVE-2026-2806: firefox: thunderbird: Uninitialized memory in the Graphics: Text component

Severity: Critical

CVSS Score: 9.1

Uninitialized memory in the Graphics: Text component. This vulnerability affects Firefox < 148 and Thunderbird < 148.