Description:
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
Security Fix(es):
* firefox: 115.16/128.3 ESR ()
* firefox: thunderbird: Memory safety bugs fixed in Firefox 131, Firefox ESR 115.16, Firefox ESR 128.3, Thunderbird 131, and Thunderbird 128.3 (CVE-2024-9401)
* firefox: thunderbird: Memory safety bugs fixed in Firefox 131, Firefox ESR 128.3, Thunderbird 131, and Thunderbird 128.3 (CVE-2024-9402)
* firefox: thunderbird: Cross-origin access to PDF contents through multipart responses (CVE-2024-9393)
* firefox: thunderbird: Cross-origin access to JSON contents through multipart responses (CVE-2024-9394)
* firefox: thunderbird: Compromised content process can bypass site isolation (CVE-2024-9392)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
firefox-128.3.0-1.el9_4.alma.1.aarch64.rpm |
65e9689296c10795cb9f1c1e4ba53dd5a9afe35ae9a28c02a402932f57a81c5d |
| aarch64 |
firefox-x11-128.3.0-1.el9_4.alma.1.aarch64.rpm |
76c2e97b34677cd53a54676395eb0c5efb11015ffc83c2609240873ae8f0ddf2 |
| ppc64le |
firefox-x11-128.3.0-1.el9_4.alma.1.ppc64le.rpm |
65aac984b5cd1e9a995e45f397d26b5065160b66381e998769747e5e0fd24498 |
| ppc64le |
firefox-128.3.0-1.el9_4.alma.1.ppc64le.rpm |
8d1b8e792786d67ac25a42f5662b6c87fc972d8527a79d65cbbc7a0545ea01b5 |
| s390x |
firefox-128.3.0-1.el9_4.alma.1.s390x.rpm |
36b0f80801d3e67c82eb0cd971f2f19cfa4796b15fb9271ef22ce3830f6b7351 |
| s390x |
firefox-x11-128.3.0-1.el9_4.alma.1.s390x.rpm |
dae509fcfed81977691f41083558e1f11d34155f3867205d8c1d7ad33c77dc90 |
| x86_64 |
firefox-x11-128.3.0-1.el9_4.alma.1.x86_64.rpm |
5d81577e0c47f908ade80bb1a4a6a856f6dadb22217f0d4f0c9043c3bd97d72d |
| x86_64 |
firefox-128.3.0-1.el9_4.alma.1.x86_64.rpm |
a3ba36dbf9587175a8827ed7f437a24be897c4e7a8c3751b4bd30789ec7c325d |
