{"affected":[{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"140.1.0-112.273.1","MozillaFirefox-devel":"140.1.0-112.273.1","MozillaFirefox-translations-common":"140.1.0-112.273.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP5-LTSS","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.1.0-112.273.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"140.1.0-112.273.1","MozillaFirefox-devel":"140.1.0-112.273.1","MozillaFirefox-translations-common":"140.1.0-112.273.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server LTSS Extended Security 12 SP5","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.1.0-112.273.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for MozillaFirefox fixes the following issues:\n\n- Firefox Extended Support Release 140.1.0 ESR\n  * MFSA-RESERVE-2025-1968423 (bmo#1968423)\n    JavaScript engine only wrote partial return value to stack\n  * MFSA-RESERVE-2025-1971581 (bmo#1971581)\n    Large branch table could lead to truncated instruction\n  * MFSA-RESERVE-2025-1928021 (bmo#1928021)\n    CSP does not block javascript: URLs on object and embed tags\n  * MFSA-RESERVE-2025-1960834 (bmo#1960834)\n    DNS rebinding circumvents CORS\n  * MFSA-RESERVE-2025-1964767 (bmo#1964767)\n    Nameless cookies shadow secure cookies\n  * MFSA-RESERVE-2025-1968414 (bmo#1968414)\n    Potential user-assisted code execution in “Copy as cURL”\n    command\n  * MFSA-RESERVE-2025-1971719 (bmo#1971719)\n    Incorrect URL stripping in CSP reports\n  * MFSA-RESERVE-2025-1974407 (bmo#1974407)\n    XSLT documents could by-pass CSP\n  * MFSA-RESERVE-2025-1808979 (bmo#1808979)\n    CSP frame-src was not correctly enforced for paths\n  * MFSA-RESERVE-2025-1970997 (bmo#1970997)\n    Search terms persist in URL bar\n  * MFSA-RESERVE-2025-1973990 (bmo#1973990)\n    Incorrect JavaScript state machine for generators\n  * MFSA-RESERVE-2025-1 (bmo#1970422, bmo#1970422, bmo#1970422,\n    bmo#1970422)\n    Memory safety bugs fixed in Firefox ESR 115.26, Thunderbird\n    ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1,\n    Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141\n  * MFSA-RESERVE-2025-2 (bmo#1975058, bmo#1975058, bmo#1975998,\n    bmo#1975998)\n    Memory safety bugs fixed in Firefox ESR 140.1, Thunderbird\n    ESR 140.1, Firefox 141 and Thunderbird 141\n  * MFSA-RESERVE-2025-3 (bmo#1975961, bmo#1975961, bmo#1975961)\n    Memory safety bugs fixed in Firefox ESR 128.13, Firefox ESR\n    140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141\n    \nVarious security fixes MFSA 2025-59 (bsc#1246664):\n- CVE-2025-8027: JavaScript engine only wrote partial return value to stack\n- CVE-2025-8028: Large branch table could lead to truncated instruction\n- CVE-2025-8029: javascript: URLs executed on object and embed tags\n- CVE-2025-8036: DNS rebinding circumvents CORS\n- CVE-2025-8037: Nameless cookies shadow secure cookies\n- CVE-2025-8030: Potential user-assisted code execution in “Copy as cURL” command\n- CVE-2025-8031: Incorrect URL stripping in CSP reports\n- CVE-2025-8032: XSLT documents could bypass CSP\n- CVE-2025-8038: CSP frame-src was not correctly enforced for paths\n- CVE-2025-8039: Search terms persisted in URL bar\n- CVE-2025-8033: Incorrect JavaScript state machine for generators\n- CVE-2025-8034: Memory safety bugs fixed in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141\n- CVE-2025-8040: Memory safety bugs fixed in Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141\n- CVE-2025-8035: Memory safety bugs fixed in Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141 \n","id":"SUSE-SU-2025:02531-1","modified":"2025-07-28T06:04:33Z","published":"2025-07-28T06:04:33Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202502531-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1246664"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8027"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8028"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8029"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8030"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8031"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8032"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8033"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8034"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8035"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8036"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8037"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8038"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8039"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-8040"}],"related":["CVE-2025-8027","CVE-2025-8028","CVE-2025-8029","CVE-2025-8030","CVE-2025-8031","CVE-2025-8032","CVE-2025-8033","CVE-2025-8034","CVE-2025-8035","CVE-2025-8036","CVE-2025-8037","CVE-2025-8038","CVE-2025-8039","CVE-2025-8040"],"summary":"Security update for MozillaFirefox","upstream":["CVE-2025-8027","CVE-2025-8028","CVE-2025-8029","CVE-2025-8030","CVE-2025-8031","CVE-2025-8032","CVE-2025-8033","CVE-2025-8034","CVE-2025-8035","CVE-2025-8036","CVE-2025-8037","CVE-2025-8038","CVE-2025-8039","CVE-2025-8040"]}