SUSE-SU-2026:0611-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Update to Firefox 140.7.1 ESR - CVE-2026-2447: Fixed a heap buffer overflow in libvpx. bsc1258231...

OPENSUSE-SU-2026:10212-1 firefox-esr-140.7.1-1.1 on GA media

These are all security issues fixed in the firefox-esr-140.7.1-1.1 package on the GA media of openSUSE Tumbleweed...

SUSE-SU-2026:0388-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 140.7.1 MFSA 2026-08 bsc1257397: - CVE-2026-0818: CSS-based exfiltration of the content from partially encrypted emails when allowing remote content...

Mozilla Thunderbird < 140.7.1

The version of Thunderbird installed on the remote Windows host is prior to 140.7.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2026-08 advisory. - When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of ...

Security Vulnerabilities fixed in Thunderbird 140.7.1 — Mozilla

When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of an email that was formatted and styled with HTML and CSS, then the decrypted contents were rendered in a context in which the CSS styles from the outer messages were active. If...