Updated rootcerts, nss & firefox packages fix security vulnerabilities

🗓️ 27 May 2025 18:46:33Reported by Gentoo FoundationType

mageia

mageia🔗 advisories.mageia.org👁 19 Views

Updated root certificates, NSS and Firefox packages to fix security vulnerabilities.

Reporter	Title	Published	Views	Family All 362
FreeBSD	firefox -- out-of-bounds read/write	17 May 202500:00	–	freebsd
Tenable Nessus	Amazon Linux 2023 : firefox (ALAS2023-2025-996)	12 Jun 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : thunderbird (ALAS-2025-2873)	12 Jun 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : firefox (ALASFIREFOX-2025-039)	11 Jun 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : firefox (ALSA-2025:8049)	21 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : firefox (ALSA-2025:8060)	21 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : thunderbird (ALSA-2025:8607)	3 Jul 202500:00	–	nessus
Tenable Nessus	AlmaLinux 10 : thunderbird (ALSA-2025:8608)	9 Oct 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : thunderbird (ALSA-2025:8756)	11 Jun 202500:00	–	nessus
Tenable Nessus	Debian dla-4172 : firefox-esr - security update	20 May 202500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	9	any	firefox	128.10.1-2	firefox-128.10.1-2.noarch.rpm
Mageia	9	any	firefox-l10n	128.10.1-1	firefox-l10n-128.10.1-1.noarch.rpm
Mageia	9	any	nss	3.111.0-1	nss-3.111.0-1.noarch.rpm
Mageia	9	any	rootcerts	20250424.00-1	rootcerts-20250424.00-1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
mozilla	www.mozilla.org/en-US/firefox/128.10.1/releasenotes/
mozilla	www.mozilla.org/en-US/security/advisories/mfsa2025-37/
firefox-source-docs	www.firefox-source-docs.mozilla.org/security/nss/releases/nss_3_111.html

27 May 2025 18:46Current

8.8High risk

Vulners AI Score8.8

CVSS 3.19.8

EPSS0.08927

SSVC

security vulnerabilities root certificates nss packages firefox packages out-of-bounds access