openSUSE-SU-2026:20253-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20253-1.json

JSON Data

https://api.test.osv.dev/v1/vulns/openSUSE-SU-2026:20253-1

Upstream

CVE-2026-2447

Related

CVE-2026-2447

Published

2026-02-19T11:09:58Z

Modified

2026-03-12T02:07:09.124261Z

Summary

Security update for MozillaFirefox

Details

This update for MozillaFirefox fixes the following issues:

Changes in MozillaFirefox:

Firefox Extended Support Release 140.7.1 ESR was released:

Fixed: Security fix.

MFSA 2026-10 (bsc#1258231):

CVE-2026-2447: Heap buffer overflow in libvpx.

References

Affected packages

openSUSE:Leap 16.0 / MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Leap%2016.0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

140.7.1-160000.1.1

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-branding-upstream": "140.7.1-160000.1.1",
            "MozillaFirefox": "140.7.1-160000.1.1",
            "MozillaFirefox-translations-other": "140.7.1-160000.1.1",
            "MozillaFirefox-devel": "140.7.1-160000.1.1",
            "MozillaFirefox-translations-common": "140.7.1-160000.1.1"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20253-1.json"