firefox-140.10.1-1.el9_8.ML.1
エラータID: AXSA:2026-1263:15
リリース日:
2026/07/15 Wednesday - 15:27
題名:
firefox-140.10.1-1.el9_8.ML.1
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- Firefox および Thunderbird には、メモリ領域の範囲外読み取りの
問題があるため、リモートの攻撃者により、情報の漏洩、データ破壊、
およびサービス拒否攻撃を可能とする脆弱性が存在します。
(CVE-2026-7320)
- Firefox および Thunderbird には、メモリ領域の範囲外読み取りの
問題があるため、リモートの攻撃者により、情報の漏洩、およびデータ
破壊を可能とする脆弱性が存在します。(CVE-2026-7321)
- Firefox および Thunderbird には、リモートの攻撃者により、
メモリ破壊、任意のコードの実行を可能とする脆弱性が存在します。
(CVE-2026-7322)
- Firefox および Thunderbird には、リモートの攻撃者により、
メモリ破壊、および任意のコードの実行を可能とする脆弱性が存在します。
(CVE-2026-7323)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2026-7320
Information disclosure due to incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Firefox ESR 115.35.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
Information disclosure due to incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Firefox ESR 115.35.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
CVE-2026-7321
Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1, and Thunderbird 140.10.1.
Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1, and Thunderbird 140.10.1.
CVE-2026-7322
Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Firefox ESR 115.35.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Firefox ESR 115.35.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
CVE-2026-7323
Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
追加情報:
N/A
ダウンロード:
SRPMS
- firefox-140.10.1-1.el9_8.ML.1.src.rpm
MD5: 46265adf0160f01e5534b5cce04b04c2
SHA-256: ee26ce45c7134cd7384c9c57228e0a394cf750ba299c7a8eb38799c37955b363
Size: 0.99 GB
Asianux Server 9 for x86_64
- firefox-140.10.1-1.el9_8.ML.1.x86_64.rpm
MD5: a4cb3a47afd1381b7c7edda30d3583ae
SHA-256: 87e10fb3f097179c6c4d18dac30bb858237eeea0df633e32f7d3b2672c2079ef
Size: 114.76 MB - firefox-x11-140.10.1-1.el9_8.ML.1.x86_64.rpm
MD5: 6f887194fb70a2f98552fa8ec5508b1e
SHA-256: 7ee4e1fd4310fdf3cb43f6803d374ca094bc0deff96294e20e46fd2a6c1972b6
Size: 13.07 kB