ELSA-2025-4751

ULN >
Oracle Linux Errata repository >
ELSA-2025-4751

ELSA-2025-4751 - firefox security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2025-05-30

Description

[128.10.0-1.0.1]
- Updated to 128.10.0 build [Orabug: 37924620]
- Fixes CVE-2025-2817 CVE-2025-4083 CVE-2025-4087 CVE-2025-4091 and
- CVE-2025-4093

[128.9.0-2.0.1]
- Update to 128.9.0 build2 [Orabug: 37796786][CVE-2025-3028][CVE-2025-3029]
[CVE-2025-3030]

[128.8.0-1.0.1]
- Update to 128.8.0 build1 [Orabug: 37700882][CVE-2025-1930][CVE-2025-1931]
[CVE-2025-1932][CVE-2025-1933][CVE-2025-1934][CVE-2025-1935][CVE-2025-1936]
[CVE-2025-1937][CVE-2025-1938]

[128.7.0-1.0.1]
- Update to 128.7.0 build1 [Orabug: 37564202][CVE-2025-1009][CVE-2025-1010]
[CVE-2025-1011][CVE-2025-1012][CVE-2025-1013][CVE-2025-1014][CVE-2025-1016]
[CVE-2025-1017]

[128.6.0-1.0.1]
- Update to 128.6.0 build1 [Orabug: 37460830][CVE-2025-0237][CVE-2025-0238]
[CVE-2025-0239][CVE-2025-0240][CVE-2025-0241][CVE-2025-0242][CVE-2025-0243]
- Enable PipeWire camera support for RHEL 10
+ backport upstream fixes for PipeWire camera support
Fixes: RHEL-64749

[128.5.1-1.0.1]
- Update to 128.5.1 [Orabug: 37370369][CVE-2024-11692][CVE-2024-11694]
[CVE-2024-11695][CVE-2024-11696][CVE-2024-11697][CVE-2024-11699]

[128.4.0-1.0.1]
- Update to 128.4.0 build1 [Orabug: 37236498][CVE-2024-10458][CVE-2024-10459]
[CVE-2024-10460][CVE-2024-10461][CVE-2024-10462][CVE-2024-10463]
[CVE-2024-10464][CVE-2024-10465][CVE-2024-10466][CVE-2024-10467]

[128.3.1-2.0.1]
- Update to 128.3.1 [Orabug: 37168934]

[128.3.0-1.0.1]
- Update to 128.3.0 [Orabug: 37139909]

[128.2.0-1.0.1]
- Remove nomerge annotation from abort calls [Orabug: 37079143]
- Update to 128.2.0 [Orabug: 37079143]

[115.12.0-1.0.3]
- Security fixes [Orabug: 36904311][Orabug: 36948200][CVE-2024-6601]
[CVE-2024-6603][CVE-2024-6604][CVE-2024-7519][CVE-2024-7520][CVE-2024-7521]
[CVE-2024-7522][CVE-2024-7524][CVE-2024-7525][CVE-2024-7526][CVE-2024-7527]
[CVE-2024-7529]

[115.12.0-1.0.1]
- Remove upstream references [Orabug: 30143292]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[115.12.0-1]
- Update to 115.12.0 build1

[115.11.0-1]
- Update to 115.11.0 build1

[115.10.0-1]
- Update to 115.10.0 build1

[115.9.1-2]
- Removed expat CVE fix

[115.9.1-1]
- Update to 115.9.1

[115.9.0-2]
- Update to 115.9.0 build2

[115.9.0-1]
- Update to 115.9.0 build1
- Fix expat CVE-2023-52425

[115.8.0-1]
- Update to 115.8.0 build1

[115.7.0-1]
- Update to 115.7.0 build1

[115.6.0-1]
- Update to 115.6.0 build1

[115.5.0-1]
- Update to 115.5.0 build1

[115.4.0-1]
- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URL

[115.3.1-1]
- Update to 115.3.1

[115.3.0-1]
- Update to 115.3.0 ESR

[115.2.0-3]
- Update to 115.2.0 ESR

[115.1.0-1]
- Update to 115.1.0 ESR

[115.0.2-1]
- Update to 115.0.2 ESR

[115.0b8-1]
- Update to 115.0b8

[102.11.0-2]
- Update to 102.11.0 build2

[102.11.0-1]
- Update to 102.11.0 build1

[102.10.0-1]
- Update to 102.10.0 build1

[102.9.0-4]
- Update to 102.9.0 build2

[102.9.0-2]
- removed disable-openh264-download

[102.9.0-1]
- Update to 102.9.0 build1

[102.8.0-2]
- Update to 102.8.0 build2

[102.8.0-1]
- Update to 102.8.0 build1

[102.7.0-1]
- Update to 102.7.0 build1

[102.6.0-2]
- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9

[102.6.0-1]
- Update to 102.6.0 build1

[102.5.0-2]
- Added libwebrtc screencast patch for newer features

[102.5.0-1]
- Update to 102.5.0 build1

[102.4.0-1]
- Update to 102.4.0 build1

[102.3.0-7]
- Fix for expat CVE-2022-40674 and non functional webrtc

[102.3.0-6]
- Update to 102.3.0 build1

[91.12.0-1]
- Update to 91.12.0 build1

[91.11.0-2]
- Update to 91.11.0 build2

[91.11.0-1]
- Update to 91.11.0 build1

[91.10.0-1]
- Update to 91.10.0 build1

[91.9.1-1]
- Update to 91.9.1 build1

[91.9.0-1]
- Update to 91.9.0

[91.8.0-1]
- Update to 91.8.0

[91.7.0-3]
- Update to 91.7.0 build3

[91.7.0-2]
- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315

[91.7.0-1]
- Update to 91.7.0 build2

[91.6.0-2]
- Install langpacks to the browser/extensions to make them available in UI:
rhbz#2030190

[91.6.0-1]
- Update to 91.6.0 build1

[91.5.0-2]
- Use default update channel to fix non working enterprise policies:
rhbz#2044667

[91.5.0-1]
- Update to 91.5.0 build1

[91.4.0-2]
- Added fix for failing addons signatures.

[91.4.0-1]
- Update to 91.4.0 build1

[91.3.0-1]
- Update to 91.3.0 build1

[91.2.0-5]
- Fixed crashes when FIPS is enabled.

[91.2.0-4]
- Disable webrender on the s390x due to wrong colors: rhbz#2009503

[91.2.0-3]
- Update to 91.2.0 build1

[91.1.0-1]
- Update to 91.1.0 build1

* Tue Aug 17 2021 Jan Horak
- Update to 91.0.1 build1

[91.0-1]
- Update to 91.0 ESR

[91.0-1]
- Update to 91.0b8

[78.12.0-2]
- Rebuild to pickup older nss

[78.12.0-1]
- Update to 78.12.0 build1

[78.11.0-3]
- Update to 78.11.0 build2 (release)

[78.11.0-2]
- Fix rhel_minor_version for dist .el8_4 and .el8

[78.11.0-1]
- Update to 78.11.0 build1

[78.10.0-1]
- Update to 78.10.0

[78.9.0-1]
- Update to 78.9.0 build1

[78.8.0-1]
- Update to 78.8.0 build2

[78.7.1-1]
- Update to 78.7.1

[78.7.0-3]
- Fixing install prefix for the homepage

[78.7.0-2]
- Update to 78.7.0 build2

[78.7.0-1]
- Update to 78.7.0 build1

[78.6.1-1]
- Update to 78.6.1 build1

[78.6.0-1]
- Update to 78.6.0 build1

[78.5.0-1]
- Update to 78.5.0 build1

* Tue Nov 10 2020 erack@redhat.com - 78.4.1-1
- Update to 78.4.1

[78.4.0-3]
- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading

[78.4.0-2]
- Enable addon sideloading

[78.4.0-1]
- Update to 78.4.0 build2

* Fri Sep 18 2020 Jan Horak
- Update to 78.3.0 build1

[78.2.0-3]
- Update to 78.2.0 build1

* Fri Jul 24 2020 Jan Horak
- Update to 68.11.0 build1

* Fri Jun 26 2020 Jan Horak
- Update to 68.10.0 build1

* Fri May 29 2020 Jan Horak
- Update to 68.9.0 build1
- Added patch for pipewire 0.3

* Mon May 11 2020 Jan Horak
- Added s390x specific patches

* Wed Apr 29 2020 Jan Horak
- Update to 68.8.0 build1

[68.7.0-3]
- Added fix for rhbz#1821418

[68.7.0-2]
- Update to 68.7.0 build3

[68.6.1-1]
- Update to 68.6.1 ESR

* Wed Mar 04 2020 Jan Horak
- Update to 68.6.0 build1

[68.5.0-3]
- Added fix for rhbz#1805667
- Enabled mzbz@1170092 - Firefox prefs at /etc

* Fri Feb 07 2020 Jan Horak
- Update to 68.5.0 build2

* Wed Feb 05 2020 Jan Horak
- Update to 68.5.0 build1

* Wed Jan 08 2020 Jan Horak
- Update to 68.4.1esr build1

* Fri Jan 03 2020 Jan Horak
- Update to 68.4.0esr build1

* Wed Dec 18 2019 Jan Horak
- Fix for wrong intl.accept_lang when using non en-us langpack

[68.3.0-1]
- Update to 68.3.0 ESR

[68.2.0-4]
- Added patch for TLS 1.3 support.

[68.2.0-3]
- Rebuild

[68.2.0-2]
- Rebuild

[68.2.0-1]
- Update to 68.2.0 ESR

[68.1.0-6]
- Enable system nss on RHEL6

[68.1.0-2]
- Enable building langpacks

[68.1.0-1]
- Update to 68.1.0 ESR

[68.0.1-4]
- Enable system nss

[68.0.1-3]
- Enable official branding

[68.0.1-2]
- Enabled PipeWire on RHEL8

[68.0.1-1]
- Updated to 68.0.1 ESR

[68.0-0.11]
- Update to 68.0 ESR

[68.0-0.10]
- Updated to 68.0 alpha 13
- Enabled second arches

[68.0-0.1]
- Updated to 68.0 alpha

[60.6.0-3]
- Added Google API keys (mozbz#1531176)

[60.6.0-2]
- Update to 60.6.0 ESR (Build 2)

[60.6.0-1]
- Update to 60.6.0 ESR (Build 1)

[60.5.1-1]
- Update to 60.5.1 ESR

[60.5.0-3]
- Added fix for rhbz#1672424 - Firefox crashes on NFS drives.

[60.5.0-2]
- Updated to 60.5.0 ESR build2

[60.5.0-1]
- Updated to 60.5.0 ESR build1

[60.4.0-3]
- Fixing fontconfig warnings (rhbz#1601475)

[60.4.0-2]
- Added pipewire patch from Tomas Popela (rhbz#1664270)

[60.4.0-1]
- Update to 60.4.0 ESR

[60.3.0-2]
- Added firefox-gnome-shell-extension

[60.3.0-1]
- Update to 60.3.0 ESR

[60.2.2-2]
- Added patch for rhbz#1633932

[60.2.2-1]
- Update to 60.2.2 ESR

[60.2.1-1]
- Update to 60.2.1 ESR

[60.2.0-1]
- Update to 60.2.0 ESR

[60.1.0-9]
- Do not set user agent (rhbz#1608065)
- GTK dialogs are localized now (rhbz#1619373)
- JNLP association works again (rhbz#1607457)

[60.1.0-8]
- Fixed homepage and bookmarks (rhbz#1606778)
- Fixed missing file associations in RHEL6 (rhbz#1613565)

[60.1.0-7]
- Run at-spi-bus if not running already (for the bundled gtk3)

[60.1.0-6]
- Fix for missing schemes for bundled gtk3

[60.1.0-5]
- Added mesa-libEGL dependency to gtk3/rhel6

[60.1.0-4]
- Disabled jemalloc on all second arches

[60.1.0-3]
- Updated to 60.1.0 ESR build2

[60.1.0-2]
- Disabled jemalloc on second arches

[60.1.0-1]
- Updated to 60.1.0 ESR

[60.0-12]
- Fixing bundled libffi issues
- Readded some requirements

[60.0-10]
- Added fix for mozilla BZ#1436242 - IPC crashes.

[60.0-9]
- Bundling libffi for the sec-arches
- Added openssl-devel for the Python
- Fixing bundled gtk3

[60.0-8]
- Added fix for mozilla BZ#1458492

[60.0-7]
- Added patch from rhbz#1498561 to fix ppc64(le) crashes.

[60.0-6]
- Disabled jemalloc on second arches

[60.0-4]
- Update to 60.0 ESR

[52.7.0-1]
- Update to 52.7.0 ESR

[52.6.0-2]
- Build Firefox for desktop arches only (x86_64 and ppc64le)

[52.6.0-1]
- Update to 52.6.0 ESR

[52.5.0-1]
- Update to 52.5.0 ESR

[52.4.0-1]
- Update to 52.4.0 ESR

[52.3.0-3]
- Update to 52.3.0 ESR (b2)
- Require correct nss version

[52.2.0-1]
- Update to 52.2.0 ESR

[52.1.2-1]
- Update to 52.1.2 ESR

[52.0-7]
- Added fix for accept language (rhbz#1454322)

[52.0-6]
- Removing patch required for older NSS from RHEL 7.3
- Added patch for rhbz#1414564

[52.0-5]
- Added fix for mozbz#1348168/CVE-2017-5428

[52.0-4]
- Update to 52.0 ESR (b4)

[52.0-3]
- Added fix for rhbz#1423012 - ppc64 gfx crashes

[52.0-2]
- Enable system nss

[52.0-1]
- Update to 52.0ESR (B1)
- Build RHEL7 package for Gtk3

[52.0-0.13]
- Added fix for rhbz#1414535

[52.0-0.12]
- Update to 52.0b8

[52.0-0.11]
- Readded addons patch

[52.0-0.10]
- Update to 52.0b3

[52.0-0.9]
- Update to 52.0b2

[52.0-0.8]
- Update to 52.0b1

[52.0-0.5]
- Firefox Aurora 52 testing build

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	firefox-128.10.0-1.0.1.el7_9.src.rpm	a5a87009e31cc027b89227e87744c41bf6caa56f41b9c46ba68fae2ce51bff96	-	ol7_x86_64_latest_ELS
	firefox-128.10.0-1.0.1.el7_9.x86_64.rpm	0a618101385d616fd45224c320d21a844d019fde27ac1bb08b51c5f07d7004d4	-	ol7_x86_64_latest_ELS

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691