Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution

**Executive summary:** Multiple memory-safety and graphics-related vulnerabilities (CVE-2026-5731, CVE-2026-5734, CVE-2026-5735, CVE-2026-5732, CVE-2026-5733) were fixed in Firefox and Thunderbird releases and ESR builds; the most severe could permit arbitrary code execution, allowing attackers to install programs, view/change/delete data, or create accounts depending on user privileges.