概述
Important: firefox security update
类型/严重性
Security Advisory: Important
Red Hat Lightspeed patch analysis
标题
An update for firefox is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
描述
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
Security Fix(es):
- firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details (CVE-2025-5267)
- firefox: thunderbird: Potential local code execution in ?Copy as cURL? command (CVE-2025-5264)
- firefox: thunderbird: Memory safety bugs (CVE-2025-5268)
- firefox: thunderbird: Script element events leaked cross-origin resource status (CVE-2025-5266)
- firefox: thunderbird: Error handling for script execution was incorrectly isolated from web content (CVE-2025-5263)
- firefox: thunderbird: Memory safety bug (CVE-2025-5269)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
受影响的产品
-
Red Hat Enterprise Linux for x86_64 9 x86_64
-
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
-
Red Hat Enterprise Linux Server - AUS 9.6 x86_64
-
Red Hat Enterprise Linux for IBM z Systems 9 s390x
-
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
-
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
-
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
-
Red Hat Enterprise Linux for ARM 64 9 aarch64
-
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
-
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
-
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
-
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
-
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x
修复
-
BZ - 2368750
- CVE-2025-5267 firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details
-
BZ - 2368751
- CVE-2025-5264 firefox: thunderbird: Potential local code execution in ?Copy as cURL? command
-
BZ - 2368752
- CVE-2025-5268 firefox: thunderbird: Memory safety bugs
-
BZ - 2368755
- CVE-2025-5266 firefox: thunderbird: Script element events leaked cross-origin resource status
-
BZ - 2368756
- CVE-2025-5263 firefox: thunderbird: Error handling for script execution was incorrectly isolated from web content
-
BZ - 2368757
- CVE-2025-5269 firefox: thunderbird: Memory safety bug
注::
可能有这些软件包的更新版本。
点击软件包名称查看详情。
Red Hat Enterprise Linux for x86_64 9
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| x86_64 |
|
firefox-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 716080eee24e9712c7035a73f7ece702549c38aa69d47bf9a3b5591b0cda59a1 |
|
firefox-debuginfo-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: d40395706ef7c48fb88a8d2de7648d6a0e1041a647e30be5a7c3d5746536b12a |
|
firefox-debugsource-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 52926ac0d360a73110c5ef6dd003591df4ee7fef60fabd245f427df0c4215deb |
|
firefox-x11-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: e0a144e5fd01764f41a5f420372a36c4bbb268fc8bde49479349c1ae273fb43a |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| x86_64 |
|
firefox-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 716080eee24e9712c7035a73f7ece702549c38aa69d47bf9a3b5591b0cda59a1 |
|
firefox-debuginfo-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: d40395706ef7c48fb88a8d2de7648d6a0e1041a647e30be5a7c3d5746536b12a |
|
firefox-debugsource-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 52926ac0d360a73110c5ef6dd003591df4ee7fef60fabd245f427df0c4215deb |
|
firefox-x11-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: e0a144e5fd01764f41a5f420372a36c4bbb268fc8bde49479349c1ae273fb43a |
Red Hat Enterprise Linux Server - AUS 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| x86_64 |
|
firefox-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 716080eee24e9712c7035a73f7ece702549c38aa69d47bf9a3b5591b0cda59a1 |
|
firefox-debuginfo-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: d40395706ef7c48fb88a8d2de7648d6a0e1041a647e30be5a7c3d5746536b12a |
|
firefox-debugsource-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 52926ac0d360a73110c5ef6dd003591df4ee7fef60fabd245f427df0c4215deb |
|
firefox-x11-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: e0a144e5fd01764f41a5f420372a36c4bbb268fc8bde49479349c1ae273fb43a |
Red Hat Enterprise Linux for IBM z Systems 9
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| s390x |
|
firefox-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 05e4fc17b84a9f9bb25ba300782e615995dc17bb619a94a97a7e13b10d81dfc3 |
|
firefox-debuginfo-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: c2e197b24b2a3773753b4a3093c3319e28974b3299fec1e70e8e0f23db6673f5 |
|
firefox-debugsource-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 60ecce39693ae77f8ae7e9fc19fafc2378a891f8374f4aecb45b9c495e27b5e3 |
|
firefox-x11-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 5ca412b0241b73ddca26c026c2995ce07be09724b710a3ef5d091b465617367a |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| s390x |
|
firefox-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 05e4fc17b84a9f9bb25ba300782e615995dc17bb619a94a97a7e13b10d81dfc3 |
|
firefox-debuginfo-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: c2e197b24b2a3773753b4a3093c3319e28974b3299fec1e70e8e0f23db6673f5 |
|
firefox-debugsource-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 60ecce39693ae77f8ae7e9fc19fafc2378a891f8374f4aecb45b9c495e27b5e3 |
|
firefox-x11-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 5ca412b0241b73ddca26c026c2995ce07be09724b710a3ef5d091b465617367a |
Red Hat Enterprise Linux for Power, little endian 9
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| ppc64le |
|
firefox-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 153e1e73b3a8a1c7d5f4d39ce4c24b4a5c06ac42727bd9b95cae2711b3905e7f |
|
firefox-debuginfo-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 3306ba244b6d408d9e4e098bd38502034ca2d61d6e6521ec9dd997a0267830d9 |
|
firefox-debugsource-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 66cd2adfd06c6ddad16517e320b12ced801a98f574ffedf0708c6167d6462df0 |
|
firefox-x11-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 6d2ef8f7fba45af491006168ac60afe362deb2db474b4fc1bd6cbd03565a570b |
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| ppc64le |
|
firefox-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 153e1e73b3a8a1c7d5f4d39ce4c24b4a5c06ac42727bd9b95cae2711b3905e7f |
|
firefox-debuginfo-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 3306ba244b6d408d9e4e098bd38502034ca2d61d6e6521ec9dd997a0267830d9 |
|
firefox-debugsource-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 66cd2adfd06c6ddad16517e320b12ced801a98f574ffedf0708c6167d6462df0 |
|
firefox-x11-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 6d2ef8f7fba45af491006168ac60afe362deb2db474b4fc1bd6cbd03565a570b |
Red Hat Enterprise Linux for ARM 64 9
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| aarch64 |
|
firefox-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: 401bc51fd847410a89ecf33390924613fa5a6f54fbf604f2cb7bdc1fa04d3cd3 |
|
firefox-debuginfo-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: e98cf34623fcb1a773608c4fb54f8938ddc3f12e21cfc658df03ff70f5b8b7bc |
|
firefox-debugsource-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: 55d03c183e9bf2b849fabf706b72cf7e10dbf9f8c0811d0aac75951fe65fd641 |
|
firefox-x11-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: d1fc2325f09a1eec80bdd6f0dee344199a493725b7690f50b4db41535323e29b |
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| aarch64 |
|
firefox-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: 401bc51fd847410a89ecf33390924613fa5a6f54fbf604f2cb7bdc1fa04d3cd3 |
|
firefox-debuginfo-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: e98cf34623fcb1a773608c4fb54f8938ddc3f12e21cfc658df03ff70f5b8b7bc |
|
firefox-debugsource-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: 55d03c183e9bf2b849fabf706b72cf7e10dbf9f8c0811d0aac75951fe65fd641 |
|
firefox-x11-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: d1fc2325f09a1eec80bdd6f0dee344199a493725b7690f50b4db41535323e29b |
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| ppc64le |
|
firefox-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 153e1e73b3a8a1c7d5f4d39ce4c24b4a5c06ac42727bd9b95cae2711b3905e7f |
|
firefox-debuginfo-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 3306ba244b6d408d9e4e098bd38502034ca2d61d6e6521ec9dd997a0267830d9 |
|
firefox-debugsource-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 66cd2adfd06c6ddad16517e320b12ced801a98f574ffedf0708c6167d6462df0 |
|
firefox-x11-128.11.0-1.el9_6.ppc64le.rpm
|
SHA-256: 6d2ef8f7fba45af491006168ac60afe362deb2db474b4fc1bd6cbd03565a570b |
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| x86_64 |
|
firefox-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 716080eee24e9712c7035a73f7ece702549c38aa69d47bf9a3b5591b0cda59a1 |
|
firefox-debuginfo-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: d40395706ef7c48fb88a8d2de7648d6a0e1041a647e30be5a7c3d5746536b12a |
|
firefox-debugsource-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: 52926ac0d360a73110c5ef6dd003591df4ee7fef60fabd245f427df0c4215deb |
|
firefox-x11-128.11.0-1.el9_6.x86_64.rpm
|
SHA-256: e0a144e5fd01764f41a5f420372a36c4bbb268fc8bde49479349c1ae273fb43a |
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| aarch64 |
|
firefox-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: 401bc51fd847410a89ecf33390924613fa5a6f54fbf604f2cb7bdc1fa04d3cd3 |
|
firefox-debuginfo-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: e98cf34623fcb1a773608c4fb54f8938ddc3f12e21cfc658df03ff70f5b8b7bc |
|
firefox-debugsource-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: 55d03c183e9bf2b849fabf706b72cf7e10dbf9f8c0811d0aac75951fe65fd641 |
|
firefox-x11-128.11.0-1.el9_6.aarch64.rpm
|
SHA-256: d1fc2325f09a1eec80bdd6f0dee344199a493725b7690f50b4db41535323e29b |
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6
| SRPM |
|
firefox-128.11.0-1.el9_6.src.rpm
|
SHA-256: eb868e95fbd0d07c8270558d7b335627ada53702266d3770310dcbd3d1ade2e6 |
| s390x |
|
firefox-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 05e4fc17b84a9f9bb25ba300782e615995dc17bb619a94a97a7e13b10d81dfc3 |
|
firefox-debuginfo-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: c2e197b24b2a3773753b4a3093c3319e28974b3299fec1e70e8e0f23db6673f5 |
|
firefox-debugsource-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 60ecce39693ae77f8ae7e9fc19fafc2378a891f8374f4aecb45b9c495e27b5e3 |
|
firefox-x11-128.11.0-1.el9_6.s390x.rpm
|
SHA-256: 5ca412b0241b73ddca26c026c2995ce07be09724b710a3ef5d091b465617367a |
