Back

SUSE Releases Critical Memory Safety Patches for Firefox and Thunderbird

Severity: High (Score: 70.5)

Sources: Linuxsecurity

Summary

On April 14 and 16, 2026, SUSE released important updates for Mozilla Firefox and Thunderbird addressing multiple memory safety vulnerabilities. The updates include fixes for CVE-2026-5731, CVE-2026-5732, and CVE-2026-5734, all published on April 7, 2026. Affected products include SUSE Linux Enterprise Desktop 15 SP7, SUSE Linux Enterprise High Performance Computing 15 SP4, and SUSE Linux Enterprise Workstation Extension 15 SP7. The vulnerabilities could lead to potential exploitation through memory safety bugs, with CVSS scores indicating high severity. Users are advised to apply the patches using SUSE's recommended installation methods. The updates aim to enhance the security posture of the affected applications against potential attacks. Current status indicates that these vulnerabilities are patched, but users must remain vigilant. Key Points: • SUSE released critical patches for Firefox and Thunderbird addressing multiple CVEs. • Vulnerabilities include memory safety issues with high CVSS scores up to 9.8. • Affected systems include SUSE Linux Enterprise Desktop and High Performance Computing.

Key Entities

  • CVE-2026-5731 (cve)
  • CVE-2026-5732 (cve)
  • CVE-2026-5734 (cve)
  • Cwe-190 - Integer Overflow Or Wraparound (cwe)
  • Cwe-787 - Out-of-bounds Write (cwe)
  • Desktop Applications Module 15-SP7 (platform)
  • Firefox ESR (platform)
  • MozillaFirefox (platform)
  • SUSE Linux Enterprise Desktop 15 SP7 (platform)
  • SUSE Linux Enterprise High Performance Computing Espos 15 SP4 (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed