Issued:: 2025-10-07
Updated:: 2025-10-07

RHSA-2025:17453 - Security Advisory

Overview
Updated Packages

Synopsis

Important: firefox security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for firefox is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.

Security Fix(es):

firefox: thunderbird: Sandbox escape due to use-after-free in the Graphics: Canvas2D component (CVE-2025-10527)
firefox: thunderbird: Incorrect boundary conditions in the JavaScript: GC component (CVE-2025-10532)
firefox: thunderbird: Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component (CVE-2025-10528)
firefox: thunderbird: Same-origin policy bypass in the Layout component (CVE-2025-10529)
firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143 (CVE-2025-10537)
firefox: thunderbird: Information disclosure in the Networking: Cache component (CVE-2025-10536)
firefox: thunderbird: Integer overflow in the SVG component (CVE-2025-10533)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le

Fixes

BZ - 2395745 - CVE-2025-10527 firefox: thunderbird: Sandbox escape due to use-after-free in the Graphics: Canvas2D component
BZ - 2395754 - CVE-2025-10532 firefox: thunderbird: Incorrect boundary conditions in the JavaScript: GC component
BZ - 2395755 - CVE-2025-10528 firefox: thunderbird: Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component
BZ - 2395756 - CVE-2025-10529 firefox: thunderbird: Same-origin policy bypass in the Layout component
BZ - 2395759 - CVE-2025-10537 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143
BZ - 2395764 - CVE-2025-10536 firefox: thunderbird: Information disclosure in the Networking: Cache component
BZ - 2395766 - CVE-2025-10533 firefox: thunderbird: Integer overflow in the SVG component

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - Extended Life Cycle Support 7

SRPM
firefox-140.3.0-1.el7_9.src.rpm	SHA-256: 81bc765b4036db2560fd746fd127834fceaa72136f93ad37a58c836f1e4fcbf5
x86_64
firefox-140.3.0-1.el7_9.x86_64.rpm	SHA-256: 91d112048142069105023310aac99be008a706984edddb3b24a37241ca105bd3

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7

SRPM
firefox-140.3.0-1.el7_9.src.rpm	SHA-256: 81bc765b4036db2560fd746fd127834fceaa72136f93ad37a58c836f1e4fcbf5
s390x
firefox-140.3.0-1.el7_9.s390x.rpm	SHA-256: 80751eefb5935319cb905a2b852aad3e6aaf23bacba69ab960de592b05fab147
firefox-debuginfo-140.3.0-1.el7_9.s390x.rpm	SHA-256: 7694aea4dbb6230955077504a89bee45344a8d2cf61c803b04ffb140980c0670

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7

SRPM
firefox-140.3.0-1.el7_9.src.rpm	SHA-256: 81bc765b4036db2560fd746fd127834fceaa72136f93ad37a58c836f1e4fcbf5
ppc64
firefox-140.3.0-1.el7_9.ppc64.rpm	SHA-256: bb4db7d581664a767f9bec338b9c796e9724d9237192ec44b7a94c90e2384012
firefox-debuginfo-140.3.0-1.el7_9.ppc64.rpm	SHA-256: 38316f39b0087a3bb12ab48fd8e12c4f4dc3e3454a2b2018966c806cf90b9e94

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7

SRPM
firefox-140.3.0-1.el7_9.src.rpm	SHA-256: 81bc765b4036db2560fd746fd127834fceaa72136f93ad37a58c836f1e4fcbf5
ppc64le
firefox-140.3.0-1.el7_9.ppc64le.rpm	SHA-256: 13b4294f3caeac62b475d166dc61e615a5e89f55fd5423cc959cb7c02fbf2a9c
firefox-debuginfo-140.3.0-1.el7_9.ppc64le.rpm	SHA-256: 4a8c36e7655430c75d0481e85eeba6b707427f27acb97000da7f9a53dbcb81e9

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation