ALSA-2026:20574

[ALSA-2026:20574] Important: firefox security update

Type:

security

Severity:

important

Release date:

2026-05-26

Description:

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.  

Security Fix(es):  

  * firefox: Other issue in the WebRTC component (CVE-2026-8094)
  * firefox: Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2 (CVE-2026-8092)
  * firefox: Use-after-free in the DOM: Networking component (CVE-2026-8090)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	firefox-x11-140.10.2-1.el9_8.aarch64.rpm	28a9ee766959da4c07fc0892e3c9a62d1265a421f7db60b7a5c4f79f403b5858
aarch64	firefox-140.10.2-1.el9_8.aarch64.rpm	2cd51220fbbb492ca984a5542d9092ea91f520defa7fc02abc32eab1478a3da3
ppc64le	firefox-140.10.2-1.el9_8.ppc64le.rpm	88bdd831b3a19b1846ac1cebc0eca61be310cd2f6cf4f24b3c5f73cb1ba15f61
ppc64le	firefox-x11-140.10.2-1.el9_8.ppc64le.rpm	bf681b95d075e027620a7e8f674835b0255101b69042cc3403748dde6f4ae032
s390x	firefox-x11-140.10.2-1.el9_8.s390x.rpm	69c867901ca8628c11b439b4559dc0f2f7df696b11bdb3e87204983ece1ef136
s390x	firefox-140.10.2-1.el9_8.s390x.rpm	8718ced2b3c5cc2b49ccc7905d9b20ebee8803f2af5a88195aaca00598041871
x86_64	firefox-x11-140.10.2-1.el9_8.x86_64.rpm	2c56a229231f45e43883ed32b24c710c151b8a6202b0940d551a00121a7ce804
x86_64	firefox-140.10.2-1.el9_8.x86_64.rpm	81479ea27b3654cda1424836aef0b3dab6645efc8b5bf4a9cb673c05bfa384e0

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.