Firefox has been released for focal(USN-6367-1) and other releases(as snap). I am now marking this issue as closed. thanks
** Changed in: firefox (Ubuntu) Status: New => Fix Released -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to firefox in Ubuntu. https://bugs.launchpad.net/bugs/2035300 Title: CVE-2023-4863: Heap buffer overflow in libwebp Status in firefox package in Ubuntu: Fix Released Bug description: Mozilla released a new version under https://www.mozilla.org/en- US/security/advisories/mfsa2023-40/ fixing a critical bug. $ lsb_release -rd Description: Ubuntu 22.04.3 LTS Release: 22.04 $ apt-cache policy firefox firefox: Installiert: 1:1snap1-0ubuntu2 Installationskandidat: 1:1snap1-0ubuntu2 Versionstabelle: *** 1:1snap1-0ubuntu2 500 500 http://mirror.init7.net/ubuntu jammy/main amd64 Packages 500 http://archive.ubuntu.com/ubuntu jammy/main amd64 Packages 100 /var/lib/dpkg/status As of now the latest version doesn't include this critical fix. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/firefox/+bug/2035300/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp