This update for MozillaFirefox fixes the following issues:
Update to Firefox 140.7.1 ESR
CVE-2026-2447: Fixed a heap buffer overflow in libvpx. (bsc#1258231)
Affected Packages
MozillaFirefox
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Module for Desktop Applications 15 SP7
Fixed in:
140.7.1-150200.152.219.1
MozillaFirefox-devel
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Module for Desktop Applications 15 SP7
Fixed in:
140.7.1-150200.152.219.1
MozillaFirefox-translations-common
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Module for Desktop Applications 15 SP7
Fixed in:
140.7.1-150200.152.219.1
MozillaFirefox-translations-other
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Module for Desktop Applications 15 SP7