Description:
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
Security Fix(es):
* firefox: Mitigation bypass in the DOM: Security component (CVE-2025-13018)
* firefox: Use-after-free in the Audio/Video component (CVE-2025-13014)
* firefox: Incorrect boundary conditions in the JavaScript: WebAssembly component (CVE-2025-13016)
* firefox: Same-origin policy bypass in the DOM: Workers component (CVE-2025-13019)
* firefox: Use-after-free in the WebRTC: Audio/Video component (CVE-2025-13020)
* firefox: Race condition in the Graphics component (CVE-2025-13012)
* firefox: Spoofing issue in Firefox (CVE-2025-13015)
* firefox: Mitigation bypass in the DOM: Core & HTML component (CVE-2025-13013)
* firefox: Same-origin policy bypass in the DOM: Notifications component (CVE-2025-13017)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
firefox-140.5.0-1.el8_10.alma.1.aarch64.rpm |
0eb50330c5cdd360b7896149cb85e76f05fbaa1fec8dbc51c5ab93fd7eb10535 |
| ppc64le |
firefox-140.5.0-1.el8_10.alma.1.ppc64le.rpm |
f227510fe487311b38401ac21b88fa8f2f8eb996d1f05c1dd4ada8382dbf1904 |
| s390x |
firefox-140.5.0-1.el8_10.alma.1.s390x.rpm |
9290054e5f74f4cfe149764fd0124661cb849cf0403becad31cb622ddfd6420b |
| x86_64 |
firefox-140.5.0-1.el8_10.alma.1.x86_64.rpm |
04f409961d4fc7dff0839ff12e8b239f9f4316a4001ff832e19007708777b3e1 |
