SUSE CVE-2025-49709

🗓️ 12 Jun 2025 03:31:18Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

SUSE vulnerability causing memory corruption in Firefox before 139.0.4 via canvas operations.

Reporter	Title	Published	Views	Family All 83
AlpineLinux	CVE-2025-49709	11 Jun 202512:15	–	alpinelinux
AstraLinux	Astra Linux – Vulnerability in Firefox	16 Jun 202511:28	–	astralinux
FreeBSD	Firefox -- Multiple vulnerabilities	11 Jun 202500:00	–	freebsd
BDU FSTEC	The vulnerability of the CanvasHandler component in the Mozilla Firefox browser allows a hacker to execute arbitrary code.	2 Jul 202500:00	–	bdu_fstec
Chainguard	CVE-2025-49709 vulnerabilities	16 Jun 202507:15	–	cgr
Circl	CVE-2025-49709	11 Jun 202515:17	–	circl
CNNVD	Mozilla Firefox 缓冲区错误漏洞	11 Jun 202500:00	–	cnnvd
CVE	CVE-2025-49709	11 Jun 202512:07	–	cve
Cvelist	CVE-2025-49709 Memory corruption in canvas surfaces	11 Jun 202512:07	–	cvelist
Debian CVE	CVE-2025-49709	11 Jun 202512:07	–	debiancve

OS	OS Version	Architecture	Package	Package Version	Filename
OpenSUSE Tumbleweed	–	any	mozillafirefox	139.0.4-1.1	MozillaFirefox-139.0.4-1.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	mozillafirefox-branding-upstream	139.0.4-1.1	MozillaFirefox-branding-upstream-139.0.4-1.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	mozillafirefox-devel	139.0.4-1.1	MozillaFirefox-devel-139.0.4-1.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	mozillafirefox-translations-common	139.0.4-1.1	MozillaFirefox-translations-common-139.0.4-1.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	mozillafirefox-translations-other	139.0.4-1.1	MozillaFirefox-translations-other-139.0.4-1.1.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2025-49709
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1244468

14 Apr 2026 08:44Current

7.3High risk

Vulners AI Score7.3

CVSS 3.18.1

EPSS0.0058

SUSE Firefox canvas operations memory corruption vulnerability