Mozilla Firefox 127, Mozilla Firefox ESR 115.12 and Mozilla Thunderbird 115.12.0 : Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy.