openSUSE: MozillaFirefox Important Vulnerability Fix 2025-20065-1

opensuse

November 21, 2025

An update that solves 24 vulnerabilities and has 4 bug fixes can now be installed.

Description

This update for MozillaFirefox fixes the following issues:

Changes in MozillaFirefox:

Firefox Extended Support Release 140.5.0 ESR:

* Fixed: Various security fixes (MFSA 2025-88 bsc#1253188):

* CVE-2025-13012

Race condition in the Graphics component

* CVE-2025-13016

Incorrect boundary conditions in the JavaScript: WebAssembly

component

* CVE-2025-13017

Same-origin policy bypass in the DOM: Notifications component

* CVE-2025-13018

Mitigation bypass in the DOM: Security component

* CVE-2025-13019

Same-origin policy bypass in the DOM: Workers component

* CVE-2025-13013

Mitigation bypass in the DOM: Core & HTML component

* CVE-2025-13020

Use-after-free in the WebRTC: Audio/Video component

* CVE-2025-13014

Use-after-free in the Audio/Video component

* CVE-2025-13015

Spoofing issue in Firefox

- Firefox Extended Support Release 140.4.0 ESR

* Fixed: Various security fixes.

MFSA 2025-83 (bsc#1251263)

* CVE-2025-11708

...

Read the Full Advisory

Topics Covered

security advisory security issue DoS important OpenSUSE MozillaFirefox

Patch

Package List

- openSUSE Leap 16.0:

MozillaFirefox-140.5.0-160000.1.1

MozillaFirefox-branding-upstream-140.5.0-160000.1.1

MozillaFirefox-devel-140.5.0-160000.1.1

MozillaFirefox-translations-common-140.5.0-160000.1.1

MozillaFirefox-translations-other-140.5.0-160000.1.1

References

* bsc#1249391

* bsc#1250452

* bsc#1251263

* bsc#1253188

References:

* https://www.suse.com/security/cve/CVE-2025-10527.html

* https://www.suse.com/security/cve/CVE-2025-10528.html

* https://www.suse.com/security/cve/CVE-2025-10529.html

* https://www.suse.com/security/cve/CVE-2025-10532.html

* https://www.suse.com/security/cve/CVE-2025-10533.html

* https://www.suse.com/security/cve/CVE-2025-10536.html

* https://www.suse.com/security/cve/CVE-2025-10537.html

* https://www.suse.com/security/cve/CVE-2025-11708.html

* https://www.suse.com/security/cve/CVE-2025-11709.html

* https://www.suse.com/security/cve/CVE-2025-11710.html

* https://www.suse.com/security/cve/CVE-2025-11711.html

* https://www.suse.com/security/cve/CVE-2025-11712.html

* https://www.suse.com/security/cve/CVE-2025-11713.html

* https://www.suse.com/security/cve/CVE-2025-11714.html

* https://www.suse.com/security/cve/CVE-2025-11715.html

* https://www.suse.com/security/cve/CVE-2025-13012.html

* https://www.suse.com/security/cve/CVE-2025-13013.html

*...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: openSUSE-SU-2025-20065-1

Rating: important

Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Topics Covered

security advisory security issue DoS important OpenSUSE MozillaFirefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE: MozillaFirefox Important Vulnerability Fix 2025-20065-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE: MozillaFirefox Important Vulnerability Fix 2025-20065-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!