SUSE MozillaFirefox Denial-of-Service Vulnerabilities Addressed

SUSE has released updates for Mozilla Firefox to address multiple vulnerabilities, including privilege escalation and sandbox escapes. The updates include fixes for CVE-2026-12289, CVE-2026-12290, CVE-2026-12291, CVE-2026-12292, CVE-2026-12294, CVE-2026-12295, CVE-2026-12296, CVE-2026-12297, and CVE-2026-12298. These vulnerabilities were published on June 16, 2026, and affect the Firefox ESR 140.12. The issues include memory safety bugs and incorrect boundary conditions that could lead to denial-of-service attacks. The updates are rated as important, and users are encouraged to apply them promptly to mitigate risks. The vulnerabilities could potentially allow attackers to gain elevated privileges or escape sandbox protections, impacting user security. The release date for the updates was June 23, 2026.

Key Points: • SUSE released important updates for Mozilla Firefox addressing multiple vulnerabilities. • Key CVEs include privilege escalation and sandbox escape issues, with a CVSS score of up to 8.8. • Users are urged to update to Firefox ESR 140.12.0 to mitigate potential risks.