{"affected":[{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"140.5.0-160000.1.1","MozillaFirefox-branding-upstream":"140.5.0-160000.1.1","MozillaFirefox-devel":"140.5.0-160000.1.1","MozillaFirefox-translations-common":"140.5.0-160000.1.1","MozillaFirefox-translations-other":"140.5.0-160000.1.1"}]},"package":{"ecosystem":"openSUSE:Leap 16.0","name":"MozillaFirefox","purl":"pkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Leap%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.5.0-160000.1.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for MozillaFirefox fixes the following issues:\n\nChanges in MozillaFirefox:\n\nFirefox Extended Support Release 140.5.0 ESR:\n\n* Fixed: Various security fixes (MFSA 2025-88 bsc#1253188):\n\n  * CVE-2025-13012\n    Race condition in the Graphics component\n  * CVE-2025-13016\n    Incorrect boundary conditions in the JavaScript: WebAssembly\n    component\n  * CVE-2025-13017\n    Same-origin policy bypass in the DOM: Notifications component\n  * CVE-2025-13018\n    Mitigation bypass in the DOM: Security component\n  * CVE-2025-13019\n    Same-origin policy bypass in the DOM: Workers component\n  * CVE-2025-13013\n    Mitigation bypass in the DOM: Core & HTML component\n  * CVE-2025-13020\n    Use-after-free in the WebRTC: Audio/Video component\n  * CVE-2025-13014\n    Use-after-free in the Audio/Video component\n  * CVE-2025-13015\n    Spoofing issue in Firefox\n\n- Firefox Extended Support Release 140.4.0 ESR\n  * Fixed: Various security fixes.\n  MFSA 2025-83 (bsc#1251263)\n  * CVE-2025-11708\n    Use-after-free in MediaTrackGraphImpl::GetInstance()\n  * CVE-2025-11709\n    Out of bounds read/write in a privileged process triggered by\n    WebGL textures\n  * CVE-2025-11710\n    Cross-process information leaked due to malicious IPC\n    messages\n  * CVE-2025-11711\n    Some non-writable Object properties could be modified\n  * CVE-2025-11712\n    An OBJECT tag type attribute overrode browser behavior on web\n    resources without a content-type\n  * CVE-2025-11713\n    Potential user-assisted code execution in “Copy as cURL”\n    command\n  * CVE-2025-11714\n    Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR\n    140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144\n  * CVE-2025-11715\n    Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird\n    ESR 140.4, Firefox 144 and Thunderbird 144\n\n- Firefox Extended Support Release 140.3.1 ESR (bsc#1250452)\n  * Fixed: Improved reliability when HTTP/3 connections fail:\n    Firefox no longer forces HTTP/2 during fallback, allowing the\n    server to choose the protocol and preventing stalls on some\n    sites.\n\nFirefox Extended Support Release 140.3.0 ESR\n\n* Fixed: Various security fixes (MFSA 2025-75 bsc#1249391)\n\n  * CVE-2025-10527\n    Sandbox escape due to use-after-free in the Graphics:\n    Canvas2D component\n  * CVE-2025-10528\n    Sandbox escape due to undefined behavior, invalid pointer in\n    the Graphics: Canvas2D component\n  * CVE-2025-10529\n    Same-origin policy bypass in the Layout component\n  * CVE-2025-10532\n    Incorrect boundary conditions in the JavaScript: GC component\n  * CVE-2025-10533\n    Integer overflow in the SVG component\n  * CVE-2025-10536\n    Information disclosure in the Networking: Cache component\n  * CVE-2025-10537\n    Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird\n    ESR 140.3, Firefox 143 and Thunderbird 143\n","id":"openSUSE-SU-2025-20065-1","modified":"2025-11-19T16:45:48Z","published":"2025-11-19T16:45:48Z","references":[{"type":"ADVISORY","url":null},{"type":"REPORT","url":"https://bugzilla.suse.com/1249391"},{"type":"REPORT","url":"https://bugzilla.suse.com/1250452"},{"type":"REPORT","url":"https://bugzilla.suse.com/1251263"},{"type":"REPORT","url":"https://bugzilla.suse.com/1253188"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10527"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10528"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10529"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10532"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10533"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10536"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10537"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11708"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11709"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11710"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11711"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11712"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11713"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11714"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11715"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13012"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13013"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13014"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13015"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13016"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13017"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13018"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13019"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13020"}],"related":["CVE-2025-10527","CVE-2025-10528","CVE-2025-10529","CVE-2025-10532","CVE-2025-10533","CVE-2025-10536","CVE-2025-10537","CVE-2025-11708","CVE-2025-11709","CVE-2025-11710","CVE-2025-11711","CVE-2025-11712","CVE-2025-11713","CVE-2025-11714","CVE-2025-11715","CVE-2025-13012","CVE-2025-13013","CVE-2025-13014","CVE-2025-13015","CVE-2025-13016","CVE-2025-13017","CVE-2025-13018","CVE-2025-13019","CVE-2025-13020"],"summary":"Security update for MozillaFirefox","upstream":["CVE-2025-10527","CVE-2025-10528","CVE-2025-10529","CVE-2025-10532","CVE-2025-10533","CVE-2025-10536","CVE-2025-10537","CVE-2025-11708","CVE-2025-11709","CVE-2025-11710","CVE-2025-11711","CVE-2025-11712","CVE-2025-11713","CVE-2025-11714","CVE-2025-11715","CVE-2025-13012","CVE-2025-13013","CVE-2025-13014","CVE-2025-13015","CVE-2025-13016","CVE-2025-13017","CVE-2025-13018","CVE-2025-13019","CVE-2025-13020"]}