openSUSE Leap 16.0 MozillaFirefox Important Security Update 2026-20621-1

opensuse

April 27, 2026

An update that solves 25 vulnerabilities and has one bug fix can now be installed.

Description

This update for MozillaFirefox fixes the following issues:

Update to Firefox Extended Support Release 140.10.0 ESR.

- MFSA 2026-32 (bsc#1262230):

* CVE-2026-6746: Use-after-free in the DOM: Core & HTML component

* CVE-2026-6747: Use-after-free in the WebRTC component

* CVE-2026-6748: Uninitialized memory in the Audio/Video: Web Codecs component

* CVE-2026-6749: Information disclosure due to uninitialized memory in the Graphics: Canvas2D component

* CVE-2026-6750: Privilege escalation in the Graphics: WebRender component

* CVE-2026-6751: Uninitialized memory in the Audio/Video: Web Codecs component

* CVE-2026-6752: Incorrect boundary conditions in the WebRTC component

* CVE-2026-6753: Incorrect boundary conditions in the WebRTC component

* CVE-2026-6754: Use-after-free in the JavaScript Engine component

* CVE-2026-6757: Invalid pointer in the JavaScript: WebAssembly component

* CVE-2026-6759: Use-after-free in the Widget: Cocoa component

* CVE-2026-6761: Privilege...

Read the Full Advisory

Topics Covered

security advisory privilege escalation important information disclosure OpenSUSE MozillaFirefox

Patch

Package List

- openSUSE Leap 16.0:

MozillaFirefox-140.10.0-160000.1.1

MozillaFirefox-branding-upstream-140.10.0-160000.1.1

MozillaFirefox-devel-140.10.0-160000.1.1

MozillaFirefox-translations-common-140.10.0-160000.1.1

MozillaFirefox-translations-other-140.10.0-160000.1.1

References

* bsc#1262230

References:

* https://www.suse.com/security/cve/CVE-2026-6746.html

* https://www.suse.com/security/cve/CVE-2026-6747.html

* https://www.suse.com/security/cve/CVE-2026-6748.html

* https://www.suse.com/security/cve/CVE-2026-6749.html

* https://www.suse.com/security/cve/CVE-2026-6750.html

* https://www.suse.com/security/cve/CVE-2026-6751.html

* https://www.suse.com/security/cve/CVE-2026-6752.html

* https://www.suse.com/security/cve/CVE-2026-6753.html

* https://www.suse.com/security/cve/CVE-2026-6754.html

* https://www.suse.com/security/cve/CVE-2026-6757.html

* https://www.suse.com/security/cve/CVE-2026-6759.html

* https://www.suse.com/security/cve/CVE-2026-6761.html

* https://www.suse.com/security/cve/CVE-2026-6762.html

* https://www.suse.com/security/cve/CVE-2026-6763.html

* https://www.suse.com/security/cve/CVE-2026-6764.html

* https://www.suse.com/security/cve/CVE-2026-6765.html

* https://www.suse.com/security/cve/CVE-2026-6766.html

* https://www.suse.com/security/cve/CVE-2026-6767.html

*...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: openSUSE-SU-2026:20621-1

Rating: important

Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Topics Covered

security advisory privilege escalation important information disclosure OpenSUSE MozillaFirefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE Leap 16.0 MozillaFirefox Important Security Update 2026-20621-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE Leap 16.0 MozillaFirefox Important Security Update 2026-20621-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!