Fluid Attacks Database

Description

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Widget: Cocoa component

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel6	firefox	-	-
rpm rhel8	firefox	<0:140.10.0-1.el8_10	0:140.10.0-1.el8_10
rpm rhel9	firefox	<0:140.10.0-1.el9_8	0:140.10.0-1.el9_8
rpm rhel10	firefox-flatpak	-	-
rpm rhel10	thunderbird	<0:140.10.0-1.el10_2	0:140.10.0-1.el10_2
rpm rhel6	thunderbird	-	-
rpm rhel7	thunderbird	-	-
rpm rhel9	thunderbird	<0:140.10.0-1.el9_7 \|\| >=0:140.10.1, <0:140.10.1-1.el9_8	0:140.10.1-1.el9_8
rpm rhel10	thunderbird-flatpak	-	-
rpm rhel8	thunderbird	<0:140.10.0-1.el8_10	0:140.10.0-1.el8_10

1-10 of 19

Aliases

1. CVE-2026-67592. NVD-2026-67593. OSV-2026-6759

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.