This Red Hat advisory addresses four high-severity vulnerabilities (CVE-2026-7320 through CVE-2026-7323, CVSS scores 7.3-7.5) affecting Firefox and Thunderbird, including memory safety bugs, an information disclosure in the Audio/Video component, and a sandbox escape in WebRTC Networking. Affected versions are Firefox prior to 115.35.1, 140.10.1, or 150.0.1, and Thunderbird prior to 140.10.1 or 150.0.1, depending on the specific CVE. The fix requires updating to the patched versions specified for each CVE.
Red Hat Product Errata RHSA-2026:22324 - Security Advisory Issued: 2026-06-01 Updated: 2026-06-01 RHSA-2026:22324 - Security Advisory Overview Updated Packages Synopsis Important: firefox security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for firefox is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fix(es): firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1 (CVE-2026-7323) firefox: thunderbird: Information disclosure due to incorrect boundary conditions in the Audio/Video component (CVE-2026-7320) firefox: thunderbird: Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1 (CVE-2026-7322) firefox: thunderbird: webrtc: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component (CVE-2026-7321) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x Fixes BZ - 2463481 - CVE-2026-7323 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1 BZ - 2463483 - CVE-2026-7320 firefox: thunderbird: Information disclosure due to incorrect boundary conditions in the Audio/Video component BZ - 2463484 - CVE-2026-7322 firefox: thunderbird: Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1 BZ - 2463485 - CVE-2026-7321 firefox: thunderbird: webrtc: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component CVEs CVE-2026-7320 CVE-2026-7321 CVE-2026-7322 CVE-2026-7323 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 x86_64 firefox-140.10.1-1.el9_4.x86_64.rpm SHA-256: 95ec7887e611d525eeceb9dcadf286c7ea1e6b1f14f7a9aa16d5ec41813d8b28 firefox-debuginfo-140.10.1-1.el9_4.x86_64.rpm SHA-256: 760a2665669e020b243f307990f31d915e116e812514108d7e72a33ae7d2dbc3 firefox-debugsource-140.10.1-1.el9_4.x86_64.rpm SHA-256: 483605ed0599dc93a63620bfd70fc37ab67167f053cbe60264e910553d7fd5fb firefox-x11-140.10.1-1.el9_4.x86_64.rpm SHA-256: a28700d7ad2fbee85f121b17059a40660f5648f651b3a4b7724f37d89ac81821 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 ppc64le firefox-140.10.1-1.el9_4.ppc64le.rpm SHA-256: 7d4658602464b151f5f9642e639c53e9206ec4811fd98d280016b4dfee3a563e firefox-debuginfo-140.10.1-1.el9_4.ppc64le.rpm SHA-256: b28ce03da6fbd9905a02487f7fa480facf095523858228b1c5268d71acd2a002 firefox-debugsource-140.10.1-1.el9_4.ppc64le.rpm SHA-256: d53c4a39490185c0875c4f1cbd139ab204a530aa45cbbb3a63cb2ec2ac82dea5 firefox-x11-140.10.1-1.el9_4.ppc64le.rpm SHA-256: 070c6825cdc0c4996e9256d9b30fa615e4435220ce8eb35e4ffd5755998414d6 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 x86_64 firefox-140.10.1-1.el9_4.x86_64.rpm SHA-256: 95ec7887e611d525eeceb9dcadf286c7ea1e6b1f14f7a9aa16d5ec41813d8b28 firefox-debuginfo-140.10.1-1.el9_4.x86_64.rpm SHA-256: 760a2665669e020b243f307990f31d915e116e812514108d7e72a33ae7d2dbc3 firefox-debugsource-140.10.1-1.el9_4.x86_64.rpm SHA-256: 483605ed0599dc93a63620bfd70fc37ab67167f053cbe60264e910553d7fd5fb firefox-x11-140.10.1-1.el9_4.x86_64.rpm SHA-256: a28700d7ad2fbee85f121b17059a40660f5648f651b3a4b7724f37d89ac81821 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 aarch64 firefox-140.10.1-1.el9_4.aarch64.rpm SHA-256: 463157664673fdd4a5ebbe1cd2dbd89fdfe51e1eb8eb3cf21d7f7cc26991fa54 firefox-debuginfo-140.10.1-1.el9_4.aarch64.rpm SHA-256: 4ad1cd3ca867ec388210746ee10efc8802a6f2d766522dc773bee58a67372e1b firefox-debugsource-140.10.1-1.el9_4.aarch64.rpm SHA-256: 8dcb2366578c308f85724095a3d2a37dbcddfc31e7441afc46d499925f64d216 firefox-x11-140.10.1-1.el9_4.aarch64.rpm SHA-256: 511eba5adb469b27e7d004ce454568a2b7a4f2dba8d29e23a4c4c04226288ac7 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 s390x firefox-140.10.1-1.el9_4.s390x.rpm SHA-256: e0632cb7803ab4ca70e70ea765e0953d72c48f4ddb6befafe989d9e480f2277d firefox-debuginfo-140.10.1-1.el9_4.s390x.rpm SHA-256: 0854d4f82cdfcf35cbd28abf8abcc01c105e4d12e959954d37f0e206f1dbd6d2 firefox-debugsource-140.10.1-1.el9_4.s390x.rpm SHA-256: 5661b401b934ae6790f454e64ec421d2f4cbca5459906db56dff53649d0cdb4f firefox-x11-140.10.1-1.el9_4.s390x.rpm SHA-256: 4280d516a71c5a99eb9260d5046dbf969e133ef8faaf5bd5b59a78004c245a24 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 x86_64 firefox-140.10.1-1.el9_4.x86_64.rpm SHA-256: 95ec7887e611d525eeceb9dcadf286c7ea1e6b1f14f7a9aa16d5ec41813d8b28 firefox-debuginfo-140.10.1-1.el9_4.x86_64.rpm SHA-256: 760a2665669e020b243f307990f31d915e116e812514108d7e72a33ae7d2dbc3 firefox-debugsource-140.10.1-1.el9_4.x86_64.rpm SHA-256: 483605ed0599dc93a63620bfd70fc37ab67167f053cbe60264e910553d7fd5fb firefox-x11-140.10.1-1.el9_4.x86_64.rpm SHA-256: a28700d7ad2fbee85f121b17059a40660f5648f651b3a4b7724f37d89ac81821 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 aarch64 firefox-140.10.1-1.el9_4.aarch64.rpm SHA-256: 463157664673fdd4a5ebbe1cd2dbd89fdfe51e1eb8eb3cf21d7f7cc26991fa54 firefox-debuginfo-140.10.1-1.el9_4.aarch64.rpm SHA-256: 4ad1cd3ca867ec388210746ee10efc8802a6f2d766522dc773bee58a67372e1b firefox-debugsource-140.10.1-1.el9_4.aarch64.rpm SHA-256: 8dcb2366578c308f85724095a3d2a37dbcddfc31e7441afc46d499925f64d216 firefox-x11-140.10.1-1.el9_4.aarch64.rpm SHA-256: 511eba5adb469b27e7d004ce454568a2b7a4f2dba8d29e23a4c4c04226288ac7 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 ppc64le firefox-140.10.1-1.el9_4.ppc64le.rpm SHA-256: 7d4658602464b151f5f9642e639c53e9206ec4811fd98d280016b4dfee3a563e firefox-debuginfo-140.10.1-1.el9_4.ppc64le.rpm SHA-256: b28ce03da6fbd9905a02487f7fa480facf095523858228b1c5268d71acd2a002 firefox-debugsource-140.10.1-1.el9_4.ppc64le.rpm SHA-256: d53c4a39490185c0875c4f1cbd139ab204a530aa45cbbb3a63cb2ec2ac82dea5 firefox-x11-140.10.1-1.el9_4.ppc64le.rpm SHA-256: 070c6825cdc0c4996e9256d9b30fa615e4435220ce8eb35e4ffd5755998414d6 Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 SRPM firefox-140.10.1-1.el9_4.src.rpm SHA-256: 65c80a45c76f4f3ba0958a6662f7868d74ab914945da20c7ead042982d3b9bb0 s390x firefox-140.10.1-1.el9_4.s390x.rpm SHA-256: e0632cb7803ab4ca70e70ea765e0953d72c48f4ddb6befafe989d9e480f2277d firefox-debuginfo-140.10.1-1.el9_4.s390x.rpm SHA-256: 0854d4f82cdfcf35cbd28abf8abcc01c105e4d12e959954d37f0e206f1dbd6d2 firefox-debugsource-140.10.1-1.el9_4.s390x.rpm SHA-256: 5661b401b934ae6790f454e64ec421d2f4cbca5459906db56dff53649d0cdb4f firefox-x11-140.10.1-1.el9_4.s390x.rpm SHA-256: 4280d516a71c5a99eb9260d5046dbf969e133ef8faaf5bd5b59a78004c245a24 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .