ELSA-2025-23034

ELSA-2025-23034 - firefox security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2025-12-10

Description

[140.6.0-1.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[140.6.0]
- Add debranding patches (Mustafa Gezen)
- Add OpenELA default preferences (Louis Abel)

[140.6.0-1]
- Update to 140.6.0 ESR

Related CVEs

CVE-2025-14321

CVE-2025-14322

CVE-2025-14323

CVE-2025-14324

CVE-2025-14325

CVE-2025-14328

CVE-2025-14329

CVE-2025-14330

CVE-2025-14331

CVE-2025-14333

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 9 (aarch64)	firefox-140.6.0-1.0.1.el9_7.src.rpm	f083a79f39b5c40f840faea6f8c37a48ae03da51867bf25daca735227d7becd4	-	ol9_aarch64_appstream
	firefox-140.6.0-1.0.1.el9_7.aarch64.rpm	ee9a15931ca60b112275cfa26c9bfff6fb89729940f169ca0d31accfd0dc6dc6	-	ol9_aarch64_appstream
	firefox-x11-140.6.0-1.0.1.el9_7.aarch64.rpm	68236862d16fde0b95f0040c69d7da2376aac5ecd6080adc216b19068761e4fa	-	ol9_aarch64_appstream
Oracle Linux 9 (x86_64)	firefox-140.6.0-1.0.1.el9_7.src.rpm	f083a79f39b5c40f840faea6f8c37a48ae03da51867bf25daca735227d7becd4	-	ol9_x86_64_appstream
	firefox-140.6.0-1.0.1.el9_7.x86_64.rpm	97e203b4aa0e9cc0f1db53fa81eca66f05d952a3ec6fe5b31b719c931d415f5c	-	ol9_x86_64_appstream
	firefox-x11-140.6.0-1.0.1.el9_7.x86_64.rpm	f7d37798bc21307cc7cc0ef1a5d19babfe1b16147a48e131f5e6160f1e5ffc2c	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team