Описание
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
Update to Firefox Extended Support Release 128.10.1 ESR.
- MFSA 2025-37 (bsc#1243303)
- CVE-2025-4918: Out-of-bounds access when resolving Promise objects
- CVE-2025-4919: Out-of-bounds access when optimizing linear sums
Список пакетов
SUSE Enterprise Storage 7.1
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise Server 15 SP3-LTSS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise Server 15 SP4-LTSS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise Server 15 SP5-LTSS
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
openSUSE Leap 15.6
MozillaFirefox-128.10.1-150200.152.182.1
MozillaFirefox-branding-upstream-128.10.1-150200.152.182.1
MozillaFirefox-devel-128.10.1-150200.152.182.1
MozillaFirefox-translations-common-128.10.1-150200.152.182.1
MozillaFirefox-translations-other-128.10.1-150200.152.182.1
Ссылки
- Link for SUSE-SU-2025:01701-1
- E-Mail link for SUSE-SU-2025:01701-1
- SUSE Security Ratings
- SUSE Bug 1243303
- SUSE CVE CVE-2025-4918 page
- SUSE CVE CVE-2025-4919 page
Описание
An attacker was able to perform an out-of-bounds read or write on a JavaScript `Promise` object. This vulnerability affects Firefox < 138.0.4, Firefox ESR < 128.10.1, Firefox ESR < 115.23.1, Thunderbird < 128.10.2, and Thunderbird < 138.0.2.
Затронутые продукты
SUSE Enterprise Storage 7.1:MozillaFirefox-128.10.1-150200.152.182.1
SUSE Enterprise Storage 7.1:MozillaFirefox-devel-128.10.1-150200.152.182.1
SUSE Enterprise Storage 7.1:MozillaFirefox-translations-common-128.10.1-150200.152.182.1
SUSE Enterprise Storage 7.1:MozillaFirefox-translations-other-128.10.1-150200.152.182.1
Ссылки
- CVE-2025-4918
- SUSE Bug 1243303
Описание
An attacker was able to perform an out-of-bounds read or write on a JavaScript object by confusing array index sizes. This vulnerability affects Firefox < 138.0.4, Firefox ESR < 128.10.1, Firefox ESR < 115.23.1, Thunderbird < 128.10.2, and Thunderbird < 138.0.2.
Затронутые продукты
SUSE Enterprise Storage 7.1:MozillaFirefox-128.10.1-150200.152.182.1
SUSE Enterprise Storage 7.1:MozillaFirefox-devel-128.10.1-150200.152.182.1
SUSE Enterprise Storage 7.1:MozillaFirefox-translations-common-128.10.1-150200.152.182.1
SUSE Enterprise Storage 7.1:MozillaFirefox-translations-other-128.10.1-150200.152.182.1
Ссылки
- CVE-2025-4919
- SUSE Bug 1243303