Security News

Cybersecurity news aggregator

🦊
HIGH Updates Red Hat Errata

RHSA-2026:24508: Important: firefox security update

firefoxcve-2026-8094security_updatecve-2026-8092cve-2026-8090
This Red Hat advisory addresses three vulnerabilities in Firefox, including a critical (CVSS 9.8) unspecified issue in the WebRTC component (CVE-2026-8094) and two high-severity flaws: memory safety bugs (CVE-2026-8092, CVSS 8.1) and a use-after-free in the DOM: Networking component (CVE-2026-8090, CVSS 7.3). Affected versions vary per CVE, with Firefox versions prior to 115.35.2, between 128.0 and 140.10.2, and between 150.0 and 150.0.2 being vulnerable. The fixed versions are Firefox ESR 115.35.2, Firefox ESR 140.10.2, and Firefox 150.0.2.
Read Full Article →

Red Hat Product Errata RHSA-2026:24508 - Security Advisory Issued: 2026-06-08 Updated: 2026-06-08 RHSA-2026:24508 - Security Advisory Overview Updated Packages Synopsis Important: firefox security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for firefox is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fix(es): firefox: Other issue in the WebRTC component (CVE-2026-8094) firefox: Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2 (CVE-2026-8092) firefox: Use-after-free in the DOM: Networking component (CVE-2026-8090) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2467706 - CVE-2026-8094 firefox: thunderbird: Other issue in the WebRTC component BZ - 2467708 - CVE-2026-8092 firefox: Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2 BZ - 2467709 - CVE-2026-8090 firefox: thunderbird: Use-after-free in the DOM: Networking component CVEs CVE-2026-8090 CVE-2026-8092 CVE-2026-8094 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 x86_64 firefox-140.10.2-1.el9_6.x86_64.rpm SHA-256: a09af245d1428644dd2ca9b244222081c26b22c931778d5563f3447a3f4ff9fb firefox-debuginfo-140.10.2-1.el9_6.x86_64.rpm SHA-256: 6d337d2f8232c4709485a87b206e639116f5fc2e7e98eb5de81c6474abf88aac firefox-debugsource-140.10.2-1.el9_6.x86_64.rpm SHA-256: 67e92ade22bd0f3a973b2d713a68894aff3d980e35c160d1deda9a7947c78f0c firefox-x11-140.10.2-1.el9_6.x86_64.rpm SHA-256: 4ca639b6e0c7ef590a44e68ff54745575ae32d7a8af76e9ec190f3249423ab5e Red Hat Enterprise Linux Server - AUS 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 x86_64 firefox-140.10.2-1.el9_6.x86_64.rpm SHA-256: a09af245d1428644dd2ca9b244222081c26b22c931778d5563f3447a3f4ff9fb firefox-debuginfo-140.10.2-1.el9_6.x86_64.rpm SHA-256: 6d337d2f8232c4709485a87b206e639116f5fc2e7e98eb5de81c6474abf88aac firefox-debugsource-140.10.2-1.el9_6.x86_64.rpm SHA-256: 67e92ade22bd0f3a973b2d713a68894aff3d980e35c160d1deda9a7947c78f0c firefox-x11-140.10.2-1.el9_6.x86_64.rpm SHA-256: 4ca639b6e0c7ef590a44e68ff54745575ae32d7a8af76e9ec190f3249423ab5e Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 s390x firefox-140.10.2-1.el9_6.s390x.rpm SHA-256: 2f66ea07c1cf99955941002748192595c16bd6a3155f981b464b275532f7def1 firefox-debuginfo-140.10.2-1.el9_6.s390x.rpm SHA-256: 324958e00f0b1c683aa6310c4c7223c58cbbae7ebc8a46297b0387aa063f4133 firefox-debugsource-140.10.2-1.el9_6.s390x.rpm SHA-256: 7bf1fd9f32526d1482d7dc9859e9a744160163817dc9168ee8cebc29bb85d027 firefox-x11-140.10.2-1.el9_6.s390x.rpm SHA-256: aa1e80edf6d56a513148a83648f2e54f100d34807fb9ab8bc1d5d528ca3fbf6b Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 ppc64le firefox-140.10.2-1.el9_6.ppc64le.rpm SHA-256: 96124d66ab5ae02bcb91df2939a14fe47af9a97bc4487a950f463f805e62f6ac firefox-debuginfo-140.10.2-1.el9_6.ppc64le.rpm SHA-256: bda02751b817b5a1f7a13a05d88e88aaf97c6770acaf8b2463e0c250692625d4 firefox-debugsource-140.10.2-1.el9_6.ppc64le.rpm SHA-256: 5d849bed7807da1fc775e69f0f67227dd34749c24a1c0c189795b8742740e9c6 firefox-x11-140.10.2-1.el9_6.ppc64le.rpm SHA-256: 14c74310c98feed5123cbb07941d423bf5cdf592a5bf81810a1195a97f839605 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 aarch64 firefox-140.10.2-1.el9_6.aarch64.rpm SHA-256: 593e18298b0da31d174a2ef3e671cb3d8a90152fe5519a3fda43999948f93a0c firefox-debuginfo-140.10.2-1.el9_6.aarch64.rpm SHA-256: b07ed089a9c9f661cd1d6393a93f4af2775ce80d77436ef8768381e732c44ae7 firefox-debugsource-140.10.2-1.el9_6.aarch64.rpm SHA-256: ba2bc6ce2325f612082d206558c3c3ff2cd3a24d0aab4f937df4ed56a488ef6c firefox-x11-140.10.2-1.el9_6.aarch64.rpm SHA-256: 7258e38613185b89b50c688f16fbe22e0524160ddb6a4c5fe0ef354ae450becb Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 ppc64le firefox-140.10.2-1.el9_6.ppc64le.rpm SHA-256: 96124d66ab5ae02bcb91df2939a14fe47af9a97bc4487a950f463f805e62f6ac firefox-debuginfo-140.10.2-1.el9_6.ppc64le.rpm SHA-256: bda02751b817b5a1f7a13a05d88e88aaf97c6770acaf8b2463e0c250692625d4 firefox-debugsource-140.10.2-1.el9_6.ppc64le.rpm SHA-256: 5d849bed7807da1fc775e69f0f67227dd34749c24a1c0c189795b8742740e9c6 firefox-x11-140.10.2-1.el9_6.ppc64le.rpm SHA-256: 14c74310c98feed5123cbb07941d423bf5cdf592a5bf81810a1195a97f839605 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 x86_64 firefox-140.10.2-1.el9_6.x86_64.rpm SHA-256: a09af245d1428644dd2ca9b244222081c26b22c931778d5563f3447a3f4ff9fb firefox-debuginfo-140.10.2-1.el9_6.x86_64.rpm SHA-256: 6d337d2f8232c4709485a87b206e639116f5fc2e7e98eb5de81c6474abf88aac firefox-debugsource-140.10.2-1.el9_6.x86_64.rpm SHA-256: 67e92ade22bd0f3a973b2d713a68894aff3d980e35c160d1deda9a7947c78f0c firefox-x11-140.10.2-1.el9_6.x86_64.rpm SHA-256: 4ca639b6e0c7ef590a44e68ff54745575ae32d7a8af76e9ec190f3249423ab5e Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 aarch64 firefox-140.10.2-1.el9_6.aarch64.rpm SHA-256: 593e18298b0da31d174a2ef3e671cb3d8a90152fe5519a3fda43999948f93a0c firefox-debuginfo-140.10.2-1.el9_6.aarch64.rpm SHA-256: b07ed089a9c9f661cd1d6393a93f4af2775ce80d77436ef8768381e732c44ae7 firefox-debugsource-140.10.2-1.el9_6.aarch64.rpm SHA-256: ba2bc6ce2325f612082d206558c3c3ff2cd3a24d0aab4f937df4ed56a488ef6c firefox-x11-140.10.2-1.el9_6.aarch64.rpm SHA-256: 7258e38613185b89b50c688f16fbe22e0524160ddb6a4c5fe0ef354ae450becb Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 s390x firefox-140.10.2-1.el9_6.s390x.rpm SHA-256: 2f66ea07c1cf99955941002748192595c16bd6a3155f981b464b275532f7def1 firefox-debuginfo-140.10.2-1.el9_6.s390x.rpm SHA-256: 324958e00f0b1c683aa6310c4c7223c58cbbae7ebc8a46297b0387aa063f4133 firefox-debugsource-140.10.2-1.el9_6.s390x.rpm SHA-256: 7bf1fd9f32526d1482d7dc9859e9a744160163817dc9168ee8cebc29bb85d027 firefox-x11-140.10.2-1.el9_6.s390x.rpm SHA-256: aa1e80edf6d56a513148a83648f2e54f100d34807fb9ab8bc1d5d528ca3fbf6b Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 x86_64 firefox-140.10.2-1.el9_6.x86_64.rpm SHA-256: a09af245d1428644dd2ca9b244222081c26b22c931778d5563f3447a3f4ff9fb firefox-debuginfo-140.10.2-1.el9_6.x86_64.rpm SHA-256: 6d337d2f8232c4709485a87b206e639116f5fc2e7e98eb5de81c6474abf88aac firefox-debugsource-140.10.2-1.el9_6.x86_64.rpm SHA-256: 67e92ade22bd0f3a973b2d713a68894aff3d980e35c160d1deda9a7947c78f0c firefox-x11-140.10.2-1.el9_6.x86_64.rpm SHA-256: 4ca639b6e0c7ef590a44e68ff54745575ae32d7a8af76e9ec190f3249423ab5e Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 SRPM firefox-140.10.2-1.el9_6.src.rpm SHA-256: 62b64f6e285666cb87372acab53cea42e6b7d9b9068bd324605614f7c9f6f864 aarch64 firefox-140.10.2-1.el9_6.aarch64.rpm SHA-256: 593e18298b0da31d174a2ef3e671cb3d8a90152fe5519a3fda43999948f93a0c firefox-debuginfo-140.10.2-1.el9_6.aarch64.rpm SHA-256: b07ed089a9c9f661cd1d6393a93f4af2775ce80d77436ef8768381e732c44ae7 firefox-debugsource-140.10.2

Related Articles

HIGH RHSA-2026:24509: Important: firefox security update Red Hat Errata HIGH RHSA-2026:24510: Important: firefox security update Red Hat Errata HIGH DSA-6254-1 firefox-esr - security update Debian Security HIGH Multiples vulnérabilités dans les produits Mozilla (11 mai 2026) CERT-FR (ANSSI)
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn