Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2025:0080 - Security Advisory
Issued:
2025-01-08
Updated:
2025-01-08

RHSA-2025:0080 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: firefox security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for firefox is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.

Security Fix(es):

  • firefox: Use-after-free when breaking lines in text (CVE-2025-0238)
  • firefox: Memory corruption when using JavaScript Text Segmentation (CVE-2025-0241)
  • firefox: Alt-Svc ALPN validation failure when redirected (CVE-2025-0239)
  • firefox: thunderbird: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6 (CVE-2025-0243)
  • firefox: thunderbird: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6 (CVE-2025-0242)
  • firefox: WebChannel APIs susceptible to confused deputy attack (CVE-2025-0237)
  • firefox: Compartment mismatch when parsing JavaScript JSON module (CVE-2025-0240)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

  • BZ - 2336165 - CVE-2025-0238 firefox: Use-after-free when breaking lines in text
  • BZ - 2336168 - CVE-2025-0241 firefox: Memory corruption when using JavaScript Text Segmentation
  • BZ - 2336170 - CVE-2025-0239 firefox: Alt-Svc ALPN validation failure when redirected
  • BZ - 2336175 - CVE-2025-0243 firefox: thunderbird: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6
  • BZ - 2336181 - CVE-2025-0242 firefox: thunderbird: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6
  • BZ - 2336182 - CVE-2025-0237 firefox: WebChannel APIs susceptible to confused deputy attack
  • BZ - 2336188 - CVE-2025-0240 firefox: Compartment mismatch when parsing JavaScript JSON module

CVEs

  • CVE-2025-0237
  • CVE-2025-0238
  • CVE-2025-0239
  • CVE-2025-0240
  • CVE-2025-0241
  • CVE-2025-0242
  • CVE-2025-0243

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 9

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
x86_64
firefox-128.6.0-1.el9_5.x86_64.rpm SHA-256: ac071b4d1e54d2ca21a8f8ffda4a8dd3dd7e05ec68529ad15732ca58a7517153
firefox-debuginfo-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29d22a5f17e49cf5de7ab4d619ff79da6f0959f11dc6c7a86a1cee8d81ffe130
firefox-debugsource-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29ce7db1694b5433a180dfcdf2718b52642d48466dd2f0a3def28d3f5294fe70
firefox-x11-128.6.0-1.el9_5.x86_64.rpm SHA-256: 0e2607fc552b0b9f0abc450fc5f73bcdf529ef2b39dc73a473116a52bd068d84

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
x86_64
firefox-128.6.0-1.el9_5.x86_64.rpm SHA-256: ac071b4d1e54d2ca21a8f8ffda4a8dd3dd7e05ec68529ad15732ca58a7517153
firefox-debuginfo-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29d22a5f17e49cf5de7ab4d619ff79da6f0959f11dc6c7a86a1cee8d81ffe130
firefox-debugsource-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29ce7db1694b5433a180dfcdf2718b52642d48466dd2f0a3def28d3f5294fe70
firefox-x11-128.6.0-1.el9_5.x86_64.rpm SHA-256: 0e2607fc552b0b9f0abc450fc5f73bcdf529ef2b39dc73a473116a52bd068d84

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
x86_64
firefox-128.6.0-1.el9_5.x86_64.rpm SHA-256: ac071b4d1e54d2ca21a8f8ffda4a8dd3dd7e05ec68529ad15732ca58a7517153
firefox-debuginfo-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29d22a5f17e49cf5de7ab4d619ff79da6f0959f11dc6c7a86a1cee8d81ffe130
firefox-debugsource-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29ce7db1694b5433a180dfcdf2718b52642d48466dd2f0a3def28d3f5294fe70
firefox-x11-128.6.0-1.el9_5.x86_64.rpm SHA-256: 0e2607fc552b0b9f0abc450fc5f73bcdf529ef2b39dc73a473116a52bd068d84

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
s390x
firefox-128.6.0-1.el9_5.s390x.rpm SHA-256: 8319e6517573c28e93902f7d41f63aab6c2784cf174c488673fd837183359f31
firefox-debuginfo-128.6.0-1.el9_5.s390x.rpm SHA-256: 1dec7caadb6100e2680743b19b341a070f9863bea6424816cc40f38ee04d16da
firefox-debugsource-128.6.0-1.el9_5.s390x.rpm SHA-256: d54eae3850e10fe965b2d0d4a3d1a1989119cbc4d1b52c9a5689111a1ad8d08f
firefox-x11-128.6.0-1.el9_5.s390x.rpm SHA-256: cadefde12b58fd74d393b2679442b678baba44928ab4bf74879a8dbb8b06ea1b

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
s390x
firefox-128.6.0-1.el9_5.s390x.rpm SHA-256: 8319e6517573c28e93902f7d41f63aab6c2784cf174c488673fd837183359f31
firefox-debuginfo-128.6.0-1.el9_5.s390x.rpm SHA-256: 1dec7caadb6100e2680743b19b341a070f9863bea6424816cc40f38ee04d16da
firefox-debugsource-128.6.0-1.el9_5.s390x.rpm SHA-256: d54eae3850e10fe965b2d0d4a3d1a1989119cbc4d1b52c9a5689111a1ad8d08f
firefox-x11-128.6.0-1.el9_5.s390x.rpm SHA-256: cadefde12b58fd74d393b2679442b678baba44928ab4bf74879a8dbb8b06ea1b

Red Hat Enterprise Linux for Power, little endian 9

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
ppc64le
firefox-128.6.0-1.el9_5.ppc64le.rpm SHA-256: ae0267cefea4f5c6c97c5d07b871b5fb7dae999b60efc8e0909a398be20c1f06
firefox-debuginfo-128.6.0-1.el9_5.ppc64le.rpm SHA-256: ba060620183e8c849f75291c92d724eae5fe49f0a249317858c2b4f085195eec
firefox-debugsource-128.6.0-1.el9_5.ppc64le.rpm SHA-256: 656855a4c79d076bcec1060515a801d18548c81c1211a3e66fd4ed4a219af54a
firefox-x11-128.6.0-1.el9_5.ppc64le.rpm SHA-256: 4ccb00d3b5d81f6399fb472bf7c9a96ba32b05215561754d1217d5568a0e767d

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
ppc64le
firefox-128.6.0-1.el9_5.ppc64le.rpm SHA-256: ae0267cefea4f5c6c97c5d07b871b5fb7dae999b60efc8e0909a398be20c1f06
firefox-debuginfo-128.6.0-1.el9_5.ppc64le.rpm SHA-256: ba060620183e8c849f75291c92d724eae5fe49f0a249317858c2b4f085195eec
firefox-debugsource-128.6.0-1.el9_5.ppc64le.rpm SHA-256: 656855a4c79d076bcec1060515a801d18548c81c1211a3e66fd4ed4a219af54a
firefox-x11-128.6.0-1.el9_5.ppc64le.rpm SHA-256: 4ccb00d3b5d81f6399fb472bf7c9a96ba32b05215561754d1217d5568a0e767d

Red Hat Enterprise Linux for ARM 64 9

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
aarch64
firefox-128.6.0-1.el9_5.aarch64.rpm SHA-256: bac005387d74211a8c8f69241ace46ced829f25f866134e573d324a10391d899
firefox-debuginfo-128.6.0-1.el9_5.aarch64.rpm SHA-256: 3d091faf2480b815560b62f920898d513cb547032e5f58a89196af3e8f6f1507
firefox-debugsource-128.6.0-1.el9_5.aarch64.rpm SHA-256: dfbb7285d9be826a5191c0bc93a088129930278514722aba5c3de045aab212f3
firefox-x11-128.6.0-1.el9_5.aarch64.rpm SHA-256: 2ba80facec017d64e8222290b10676463b52f931ddc1dd2cab64059398965387

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
aarch64
firefox-128.6.0-1.el9_5.aarch64.rpm SHA-256: bac005387d74211a8c8f69241ace46ced829f25f866134e573d324a10391d899
firefox-debuginfo-128.6.0-1.el9_5.aarch64.rpm SHA-256: 3d091faf2480b815560b62f920898d513cb547032e5f58a89196af3e8f6f1507
firefox-debugsource-128.6.0-1.el9_5.aarch64.rpm SHA-256: dfbb7285d9be826a5191c0bc93a088129930278514722aba5c3de045aab212f3
firefox-x11-128.6.0-1.el9_5.aarch64.rpm SHA-256: 2ba80facec017d64e8222290b10676463b52f931ddc1dd2cab64059398965387

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
ppc64le
firefox-128.6.0-1.el9_5.ppc64le.rpm SHA-256: ae0267cefea4f5c6c97c5d07b871b5fb7dae999b60efc8e0909a398be20c1f06
firefox-debuginfo-128.6.0-1.el9_5.ppc64le.rpm SHA-256: ba060620183e8c849f75291c92d724eae5fe49f0a249317858c2b4f085195eec
firefox-debugsource-128.6.0-1.el9_5.ppc64le.rpm SHA-256: 656855a4c79d076bcec1060515a801d18548c81c1211a3e66fd4ed4a219af54a
firefox-x11-128.6.0-1.el9_5.ppc64le.rpm SHA-256: 4ccb00d3b5d81f6399fb472bf7c9a96ba32b05215561754d1217d5568a0e767d

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
x86_64
firefox-128.6.0-1.el9_5.x86_64.rpm SHA-256: ac071b4d1e54d2ca21a8f8ffda4a8dd3dd7e05ec68529ad15732ca58a7517153
firefox-debuginfo-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29d22a5f17e49cf5de7ab4d619ff79da6f0959f11dc6c7a86a1cee8d81ffe130
firefox-debugsource-128.6.0-1.el9_5.x86_64.rpm SHA-256: 29ce7db1694b5433a180dfcdf2718b52642d48466dd2f0a3def28d3f5294fe70
firefox-x11-128.6.0-1.el9_5.x86_64.rpm SHA-256: 0e2607fc552b0b9f0abc450fc5f73bcdf529ef2b39dc73a473116a52bd068d84

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
aarch64
firefox-128.6.0-1.el9_5.aarch64.rpm SHA-256: bac005387d74211a8c8f69241ace46ced829f25f866134e573d324a10391d899
firefox-debuginfo-128.6.0-1.el9_5.aarch64.rpm SHA-256: 3d091faf2480b815560b62f920898d513cb547032e5f58a89196af3e8f6f1507
firefox-debugsource-128.6.0-1.el9_5.aarch64.rpm SHA-256: dfbb7285d9be826a5191c0bc93a088129930278514722aba5c3de045aab212f3
firefox-x11-128.6.0-1.el9_5.aarch64.rpm SHA-256: 2ba80facec017d64e8222290b10676463b52f931ddc1dd2cab64059398965387

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
firefox-128.6.0-1.el9_5.src.rpm SHA-256: 512cb9f0c6c66a88bf89b8f88c6ac5a89c039b6845f2270b396c44c2abf025a5
s390x
firefox-128.6.0-1.el9_5.s390x.rpm SHA-256: 8319e6517573c28e93902f7d41f63aab6c2784cf174c488673fd837183359f31
firefox-debuginfo-128.6.0-1.el9_5.s390x.rpm SHA-256: 1dec7caadb6100e2680743b19b341a070f9863bea6424816cc40f38ee04d16da
firefox-debugsource-128.6.0-1.el9_5.s390x.rpm SHA-256: d54eae3850e10fe965b2d0d4a3d1a1989119cbc4d1b52c9a5689111a1ad8d08f
firefox-x11-128.6.0-1.el9_5.s390x.rpm SHA-256: cadefde12b58fd74d393b2679442b678baba44928ab4bf74879a8dbb8b06ea1b

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility