[ALSA-2026:19588] Important: firefox security update
Type:
security
Severity:
important
Release date:
2026-05-21
Description:
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fix(es): * firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1 (CVE-2026-7323) * firefox: thunderbird: Information disclosure due to incorrect boundary conditions in the Audio/Video component (CVE-2026-7320) * firefox: thunderbird: Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1 (CVE-2026-7322) * firefox: thunderbird: webrtc: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component (CVE-2026-7321) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 firefox-140.10.1-1.el8_10.alma.1.aarch64.rpm d1564915c3cc3c7d9b80986803c4d16baa06d2d401add5bb08d492bee35c470f
ppc64le firefox-140.10.1-1.el8_10.alma.1.ppc64le.rpm 3f4489fc358cf9a28b91f6fb323870173130981b0dc25fa86b41f608b3fa8370
s390x firefox-140.10.1-1.el8_10.alma.1.s390x.rpm a91a0957df813c308cc1d63d5c1dac0517e66e3f9d9e666b4e2818a8d5c681dc
x86_64 firefox-140.10.1-1.el8_10.alma.1.x86_64.rpm 919c1bacc06902441758520bc3e830afe09777451546f99af6fbc938b9002ae4
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.