[ALSA-2026:19160] Important: firefox security update
Type:
security
Severity:
important
Release date:
2026-05-26
Description:
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fix(es): * firefox: Other issue in the WebRTC component (CVE-2026-8094) * firefox: Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2 (CVE-2026-8092) * firefox: Use-after-free in the DOM: Networking component (CVE-2026-8090) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 firefox-140.10.2-1.el10_2.aarch64.rpm 5e1aab1ced4bfbb68f73732be1ed55cedc75c16f19aaf86e0f9979b25a95e3b9
ppc64le firefox-140.10.2-1.el10_2.ppc64le.rpm 813d44ab6893793819494c647a726df26e86ca4620682e57cdf8ee994cedaf7c
s390x firefox-140.10.2-1.el10_2.s390x.rpm e2795bcc4a4c1a0b5d6e96537b553656e40d8c1fd794cfaecdce1486da3c0394
x86_64 firefox-140.10.2-1.el10_2.x86_64.rpm 95275af175e5b4eeaff079107605f2bf7d1d6ee9dea2094126953baa2cb5d7d0
x86_64_v2 firefox-140.10.2-1.el10_2.x86_64_v2.rpm d2c1835a07e92c5901f36abae80103438014624549bb2aef0fbc174000a65cc6
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.