Alerts This Week
Warning Icon 1 1,153
Alerts This Week
Warning Icon 1 1,153

openSUSE Leap 16.0 MozillaFirefox Important Update 2026-20486-1

opensuse
Calendar Grey April 21, 2026
Dist Opensuse Esm H88
Update for MozillaFirefox on openSUSE addresses three critical issues and includes a bug fix to enhance safety.
An update that solves 3 vulnerabilities and has one bug fix can now be installed.

Description

This update for MozillaFirefox fixes the following issues:

Update to Firefox Extended Support Release 140.9.1 ESR (bsc#1261663).

- MFSA 2026-27:

* CVE-2026-5731: memory safety bugs fixed in Firefox ESR 115.34.1, Firefox ESR 140.9.1, Thunderbird ESR 140.9.1,

Firefox 149.0.2 and Thunderbird 149.0.2.

* CVE-2026-5732: incorrect boundary conditions, integer overflow in the Graphics: Text component.

* CVE-2026-5734: memory safety bugs fixed in Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and

Thunderbird 149.0.2.

Patch instructions:

To install this openSUSE security update use the suse recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 16.0

zypper in -t patch openSUSE-Leap-16.0-501=1

Patch

Package List

- openSUSE Leap 16.0:

MozillaFirefox-140.9.1-160000.1.1

MozillaFirefox-branding-upstream-140.9.1-160000.1.1

MozillaFirefox-devel-140.9.1-160000.1.1

MozillaFirefox-translations-common-140.9.1-160000.1.1

MozillaFirefox-translations-other-140.9.1-160000.1.1

References

* bsc#1261663

References:

* https://www.suse.com/security/cve/CVE-2026-5731.html

* https://www.suse.com/security/cve/CVE-2026-5732.html

* https://www.suse.com/security/cve/CVE-2026-5734.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:20486-1
Rating: important
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here