Red Hat Security Advisory: firefox security update
A security advisory from Red Hat addresses multiple vulnerabilities in Mozilla Firefox and Thunderbird, including memory safety bugs, incorrect URL handling in Content Security Policy (CSP) reports, JavaScript engine flaws, and potential user-assisted code execution. These issues affect Red Hat Enterprise Linux 9 variants and related extended support versions. The update fixes nine distinct CVEs, each addressing different security weaknesses in Firefox and Thunderbird components.
AI Analysis
Technical Summary
Red Hat Product Security issued an important security advisory (RHSA-2025:11748) for Mozilla Firefox and Thunderbird packages on Red Hat Enterprise Linux 9 and its extended update support versions. The advisory addresses nine vulnerabilities (CVE-2025-8027, CVE-2025-8028, CVE-2025-8029, CVE-2025-8030, CVE-2025-8031, CVE-2025-8032, CVE-2025-8033, CVE-2025-8034, CVE-2025-8035) including memory safety bugs, incorrect URL stripping in CSP reports, partial return value writes in the JavaScript engine, potential user-assisted code execution via the 'Copy as cURL' command, CSP bypass via XSLT documents, and execution of javascript: URLs in object/embed tags. These vulnerabilities collectively impact the security posture of Firefox and Thunderbird on affected Red Hat Enterprise Linux 9 platforms. The advisory references fixes available in updated Firefox packages (version 128.13.0-1.el9_6) for multiple architectures and support variants.
Potential Impact
The vulnerabilities include memory safety bugs that could lead to crashes or potentially exploitable conditions, incorrect handling of URLs in CSP reports that might weaken security policies, partial writes in the JavaScript engine that could cause unpredictable behavior, and a user-assisted code execution vector via the 'Copy as cURL' feature. Additionally, CSP bypass via XSLT documents and execution of javascript: URLs in object/embed tags could allow malicious content to execute in contexts where it should be restricted. These issues collectively pose a high security risk by potentially enabling code execution, policy bypass, or memory corruption.
Mitigation Recommendations
Red Hat has released updated Firefox packages addressing these vulnerabilities. Users and administrators should apply the security update as detailed in the Red Hat advisory RHSA-2025:11748 and the referenced article https://access.redhat.com/articles/11258. The update is available for Red Hat Enterprise Linux 9 and its extended update support versions across multiple architectures. Applying these official patches is the recommended remediation. Patch status is confirmed by the vendor advisory.
Red Hat Security Advisory: firefox security update
Description
A security advisory from Red Hat addresses multiple vulnerabilities in Mozilla Firefox and Thunderbird, including memory safety bugs, incorrect URL handling in Content Security Policy (CSP) reports, JavaScript engine flaws, and potential user-assisted code execution. These issues affect Red Hat Enterprise Linux 9 variants and related extended support versions. The update fixes nine distinct CVEs, each addressing different security weaknesses in Firefox and Thunderbird components.
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Red Hat Product Security issued an important security advisory (RHSA-2025:11748) for Mozilla Firefox and Thunderbird packages on Red Hat Enterprise Linux 9 and its extended update support versions. The advisory addresses nine vulnerabilities (CVE-2025-8027, CVE-2025-8028, CVE-2025-8029, CVE-2025-8030, CVE-2025-8031, CVE-2025-8032, CVE-2025-8033, CVE-2025-8034, CVE-2025-8035) including memory safety bugs, incorrect URL stripping in CSP reports, partial return value writes in the JavaScript engine, potential user-assisted code execution via the 'Copy as cURL' command, CSP bypass via XSLT documents, and execution of javascript: URLs in object/embed tags. These vulnerabilities collectively impact the security posture of Firefox and Thunderbird on affected Red Hat Enterprise Linux 9 platforms. The advisory references fixes available in updated Firefox packages (version 128.13.0-1.el9_6) for multiple architectures and support variants.
Potential Impact
The vulnerabilities include memory safety bugs that could lead to crashes or potentially exploitable conditions, incorrect handling of URLs in CSP reports that might weaken security policies, partial writes in the JavaScript engine that could cause unpredictable behavior, and a user-assisted code execution vector via the 'Copy as cURL' feature. Additionally, CSP bypass via XSLT documents and execution of javascript: URLs in object/embed tags could allow malicious content to execute in contexts where it should be restricted. These issues collectively pose a high security risk by potentially enabling code execution, policy bypass, or memory corruption.
Mitigation Recommendations
Red Hat has released updated Firefox packages addressing these vulnerabilities. Users and administrators should apply the security update as detailed in the Red Hat advisory RHSA-2025:11748 and the referenced article https://access.redhat.com/articles/11258. The update is available for Red Hat Enterprise Linux 9 and its extended update support versions across multiple architectures. Applying these official patches is the recommended remediation. Patch status is confirmed by the vendor advisory.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:11748
- Cve Count
- 9
- Additional Cves
- ["CVE-2025-8028","CVE-2025-8029","CVE-2025-8030","CVE-2025-8031","CVE-2025-8032","CVE-2025-8033","CVE-2025-8034","CVE-2025-8035"]
- Cvss Version
- null
Threat ID: 6a3cc29f4853345fc16d44ab
Added to database: 06/25/2026, 05:54:39 UTC
Last enriched: 06/25/2026, 06:01:01 UTC
Last updated: 06/25/2026, 07:00:48 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.