An update for firefox is now available for openEuler-22.03-LTS-SP4 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2026-2105 Final 1.0 1.0 2026-04-25 Initial 2026-04-25 2026-04-25 openEuler SA Tool V1.0 2026-04-25 firefox security update An update for firefox is now available for openEuler-22.03-LTS-SP4 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global moz_debug_prefix /lib/debug %global moz_debug_dir /lib/debug/ %global uname_m %(uname -m) %global symbols_file_name -.en-US.-%(uname.crashreporter-symbols.zip %global symbols_file_path /lib/debug//-.en-US.-%(uname.crashreporter-symbols.zip %global _find_debuginfo_opts -p /lib/debug//-.en-US.-%(uname.crashreporter-symbols.zip -o debugcrashreporter.list %global crashreporter_pkg_name mozilla-crashreporter--debuginfo Security Fix(es): Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6746) Use-after-free vulnerability in the WebRTC component of Firefox. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6747) Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6748) Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6749) Privilege escalation vulnerability in the WebRender graphics component of Firefox browser. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6750) An uninitialized memory vulnerability exists in the Audio/Video: Web Codecs component of Firefox browser. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6751) Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6752) Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.(CVE-2026-6753) A use-after-free vulnerability exists in the JavaScript Engine component of Mozilla Firefox. An attacker could potentially exploit this vulnerability to execute arbitrary code or cause the application to crash. This vulnerability has been fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6754) Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.(CVE-2026-6757) Use-after-free in the Widget: Cocoa component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6759) Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6761) Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.(CVE-2026-6762) Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6763) Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6764) Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6765) Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6766) Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6767) Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6769) Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6770) Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6771) Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6772) Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6776) Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.(CVE-2026-6785) Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.(CVE-2026-6786) An update for firefox is now available for master/openEuler-20.03-LTS-SP4/openEuler-22.03-LTS-SP4/openEuler-24.03-LTS/openEuler-24.03-LTS-Next/openEuler-24.03-LTS-SP1/openEuler-24.03-LTS-SP2/openEuler-24.03-LTS-SP3/openEuler-24.03-LTS-SP4. openEuler Security has rated this update as having a security impact of critical. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Critical firefox https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6746 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6747 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6748 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6749 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6750 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6751 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6752 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6753 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6754 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6757 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6759 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6761 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6762 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6763 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6764 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6765 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6766 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6767 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6769 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6770 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6771 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6772 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6776 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6785 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-6786 https://nvd.nist.gov/vuln/detail/CVE-2026-6746 https://nvd.nist.gov/vuln/detail/CVE-2026-6747 https://nvd.nist.gov/vuln/detail/CVE-2026-6748 https://nvd.nist.gov/vuln/detail/CVE-2026-6749 https://nvd.nist.gov/vuln/detail/CVE-2026-6750 https://nvd.nist.gov/vuln/detail/CVE-2026-6751 https://nvd.nist.gov/vuln/detail/CVE-2026-6752 https://nvd.nist.gov/vuln/detail/CVE-2026-6753 https://nvd.nist.gov/vuln/detail/CVE-2026-6754 https://nvd.nist.gov/vuln/detail/CVE-2026-6757 https://nvd.nist.gov/vuln/detail/CVE-2026-6759 https://nvd.nist.gov/vuln/detail/CVE-2026-6761 https://nvd.nist.gov/vuln/detail/CVE-2026-6762 https://nvd.nist.gov/vuln/detail/CVE-2026-6763 https://nvd.nist.gov/vuln/detail/CVE-2026-6764 https://nvd.nist.gov/vuln/detail/CVE-2026-6765 https://nvd.nist.gov/vuln/detail/CVE-2026-6766 https://nvd.nist.gov/vuln/detail/CVE-2026-6767 https://nvd.nist.gov/vuln/detail/CVE-2026-6769 https://nvd.nist.gov/vuln/detail/CVE-2026-6770 https://nvd.nist.gov/vuln/detail/CVE-2026-6771 https://nvd.nist.gov/vuln/detail/CVE-2026-6772 https://nvd.nist.gov/vuln/detail/CVE-2026-6776 https://nvd.nist.gov/vuln/detail/CVE-2026-6785 https://nvd.nist.gov/vuln/detail/CVE-2026-6786 openEuler-22.03-LTS-SP4 firefox-140.10.0-1.oe2203sp4.aarch64.rpm firefox-debuginfo-140.10.0-1.oe2203sp4.aarch64.rpm firefox-debugsource-140.10.0-1.oe2203sp4.aarch64.rpm firefox-140.10.0-1.oe2203sp4.src.rpm firefox-140.10.0-1.oe2203sp4.x86_64.rpm firefox-debuginfo-140.10.0-1.oe2203sp4.x86_64.rpm firefox-debugsource-140.10.0-1.oe2203sp4.x86_64.rpm Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6746 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Use-after-free vulnerability in the WebRTC component of Firefox. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6747 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6748 openEuler-22.03-LTS-SP4 Critical 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6749 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Privilege escalation vulnerability in the WebRender graphics component of Firefox browser. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6750 openEuler-22.03-LTS-SP4 High 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 An uninitialized memory vulnerability exists in the Audio/Video: Web Codecs component of Firefox browser. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6751 openEuler-22.03-LTS-SP4 High 7.3 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6752 openEuler-22.03-LTS-SP4 High 7.3 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. 2026-04-25 CVE-2026-6753 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 A use-after-free vulnerability exists in the JavaScript Engine component of Mozilla Firefox. An attacker could potentially exploit this vulnerability to execute arbitrary code or cause the application to crash. This vulnerability has been fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6754 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. 2026-04-25 CVE-2026-6757 openEuler-22.03-LTS-SP4 Medium 6.1 AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Use-after-free in the Widget: Cocoa component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6759 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6761 openEuler-22.03-LTS-SP4 High 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. 2026-04-25 CVE-2026-6762 openEuler-22.03-LTS-SP4 Medium 6.1 AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6763 openEuler-22.03-LTS-SP4 Medium 6.5 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6764 openEuler-22.03-LTS-SP4 Medium 6.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6765 openEuler-22.03-LTS-SP4 Medium 5.3 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6766 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6767 openEuler-22.03-LTS-SP4 Medium 5.3 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6769 openEuler-22.03-LTS-SP4 High 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6770 openEuler-22.03-LTS-SP4 Medium 6.5 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6771 openEuler-22.03-LTS-SP4 Critical 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6772 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6776 openEuler-22.03-LTS-SP4 High 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. 2026-04-25 CVE-2026-6785 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105 Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10. 2026-04-25 CVE-2026-6786 openEuler-22.03-LTS-SP4 High 7.5 AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2026-04-25 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2105