CVS commit: pkgsrc/www/firefox140

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www/firefox140
From: "David H. Gutteridge" <gutteridge%netbsd.org@localhost>
Date: Tue, 24 Feb 2026 14:07:55 +0000

Module Name:    pkgsrc
Committed By:   gutteridge
Date:           Tue Feb 24 14:07:55 UTC 2026

Modified Files:
        pkgsrc/www/firefox140: Makefile distinfo

Log Message:
firefox140: update to 140.8

Mozilla Foundation Security Advisory 2026-15
Security Vulnerabilities fixed in Firefox ESR 140.8

Announced
    February 24, 2026
Impact
    high
Products
    Firefox ESR
Fixed in

        Firefox ESR 140.8

#CVE-2026-2757: Incorrect boundary conditions in the WebRTC: Audio/Video component

Reporter
    Igor Morgenstern
Impact
    high

References

    Bug 2001637

#CVE-2026-2758: Use-after-free in the JavaScript: GC component

Reporter
    Gary Kwong
Impact
    high

References

    Bug 2009608

#CVE-2026-2759: Incorrect boundary conditions in the Graphics: ImageLib component

Reporter
    stevej
Impact
    high

References

    Bug 2010933

#CVE-2026-2760: Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component

Reporter
    Oskar L
Impact
    high

References

    Bug 2011062

#CVE-2026-2761: Sandbox escape in the Graphics: WebRender component

Reporter
    Oskar L
Impact
    high

References

    Bug 2011063

#CVE-2026-2762: Integer overflow in the JavaScript: Standard Library component

Reporter
    André Bargull
Impact
    high

References

    Bug 2011649

#CVE-2026-2763: Use-after-free in the JavaScript Engine component

Reporter
    Information to follow
Impact
    high

References

    Bug 2012018

#CVE-2026-2764: JIT miscompilation, use-after-free in the JavaScript Engine: JIT component

Reporter
    Information to follow
Impact
    high

References

    Bug 2012608

#CVE-2026-2765: Use-after-free in the JavaScript Engine component

Reporter
    Information to follow
Impact
    high

References

    Bug 2013562

#CVE-2026-2766: Use-after-free in the JavaScript Engine: JIT component

Reporter
    Information to follow
Impact
    high

References

    Bug 2013583

#CVE-2026-2767: Use-after-free in the JavaScript: WebAssembly component

Reporter
    Sajeeb Lohani
Impact
    high

References

    Bug 2013741

#CVE-2026-2768: Sandbox escape in the Storage: IndexedDB component

Reporter
    Sajeeb Lohani
Impact
    high

References

    Bug 2014101

#CVE-2026-2769: Use-after-free in the Storage: IndexedDB component

Reporter
    Information to follow
Impact
    high

References

    Bug 2014550

#CVE-2026-2770: Use-after-free in the DOM: Bindings (WebIDL) component

Reporter
    Information to follow
Impact
    high

References

    Bug 2014585

#CVE-2026-2771: Undefined behavior in the DOM: Core & HTML component

Reporter
    Information to follow
Impact
    high

References

    Bug 2014593

#CVE-2026-2772: Use-after-free in the Audio/Video: Playback component

Reporter
    Information to follow
Impact
    high

References

    Bug 2014827

#CVE-2026-2773: Incorrect boundary conditions in the Web Audio component

Reporter
    Information to follow
Impact
    high

References

    Bug 2014832

#CVE-2026-2774: Integer overflow in the Audio/Video component

Reporter
    Information to follow
Impact
    high

References

    Bug 2014883

#CVE-2026-2775: Mitigation bypass in the DOM: HTML Parser component

Reporter
    Information to follow
Impact
    high

References

    Bug 2015199

#CVE-2026-2776: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

Reporter
    Sajeeb Lohani
Impact
    high

References

    Bug 2015266

#CVE-2026-2777: Privilege escalation in the Messaging System component

Reporter
    Richard Belisle
Impact
    high

References

    Bug 2015305

#CVE-2026-2778: Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component

Reporter
    Sajeeb Lohani
Impact
    high

References

    Bug 2016358

#CVE-2026-2779: Incorrect boundary conditions in the Networking: JAR component

Reporter
    Alex Mayorga
Impact
    moderate

References

    Bug 1164141

#CVE-2026-2780: Privilege escalation in the Netmonitor component

Reporter
    RyotaK
Impact
    moderate

References

    Bug 2007829

#CVE-2026-2781: Integer overflow in the Libraries component in NSS

Reporter
    Clay Ver Valen
Impact
    moderate

References

    Bug 2009552

#CVE-2026-2782: Privilege escalation in the Netmonitor component

Reporter
    Cody
Impact
    moderate

References

    Bug 2010743

#CVE-2026-2783: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component

Reporter
    x0e
Impact
    moderate

References

    Bug 2010943

#CVE-2026-2784: Mitigation bypass in the DOM: Security component

Reporter
    D. Santos
Impact
    moderate

References

    Bug 2012984

#CVE-2026-2785: Invalid pointer in the JavaScript Engine component

Reporter
    Information to follow
Impact
    moderate

References

    Bug 2013549

#CVE-2026-2786: Use-after-free in the JavaScript Engine component

Reporter
    Information to follow
Impact
    moderate

References

    Bug 2013612

#CVE-2026-2787: Use-after-free in the DOM: Window and Location component

Reporter
    Information to follow
Impact
    moderate

References

    Bug 2014560

#CVE-2026-2788: Incorrect boundary conditions in the Audio/Video: GMP component

Reporter
    Information to follow
Impact
    moderate

References

    Bug 2014824

#CVE-2026-2789: Use-after-free in the Graphics: ImageLib component

Reporter
    Information to follow
Impact
    moderate

References

    Bug 2015179

#CVE-2026-2790: Same-origin policy bypass in the Networking: JAR component

Reporter
    Surya Dev Singh
Impact
    low

References

    Bug 2008426

#CVE-2026-2791: Mitigation bypass in the Networking: Cache component

Reporter
    Information to follow
Impact
    low

References

    Bug 2015220

#CVE-2026-2792: Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

Reporter
    Andrew McCreight, Maurice Dauer, Olli Pettay, Ryan Hunt
Impact
    high

Description

Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort 
some of these could have been exploited to run arbitrary code.
References

    Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

#CVE-2026-2793: Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

Reporter
    Andrew McCreight, Christian Holler
Impact
    high

Description

Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume 
that with enough effort some of these could have been exploited to run arbitrary code.
References

    Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148


To generate a diff of this commit:
cvs rdiff -u -r1.10 -r1.11 pkgsrc/www/firefox140/Makefile
cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/firefox140/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/www/firefox140/Makefile
diff -u pkgsrc/www/firefox140/Makefile:1.10 pkgsrc/www/firefox140/Makefile:1.11
--- pkgsrc/www/firefox140/Makefile:1.10 Tue Feb 17 00:26:49 2026
+++ pkgsrc/www/firefox140/Makefile      Tue Feb 24 14:07:55 2026
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.10 2026/02/17 00:26:49 gutteridge Exp $
+# $NetBSD: Makefile,v 1.11 2026/02/24 14:07:55 gutteridge Exp $
 
 FIREFOX_VER=           ${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
-MOZ_BRANCH=            140.7
-MOZ_BRANCH_MINOR=      .1esr
+MOZ_BRANCH=            140.8
+MOZ_BRANCH_MINOR=      .0esr
 
 DISTNAME=      firefox-${FIREFOX_VER}.source
 PKGNAME=       ${DISTNAME:S/.source//:S/b/beta/:S/esr//:S/firefox-/firefox140-/}

Index: pkgsrc/www/firefox140/distinfo
diff -u pkgsrc/www/firefox140/distinfo:1.9 pkgsrc/www/firefox140/distinfo:1.10
--- pkgsrc/www/firefox140/distinfo:1.9  Tue Feb 17 00:26:49 2026
+++ pkgsrc/www/firefox140/distinfo      Tue Feb 24 14:07:55 2026
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.9 2026/02/17 00:26:49 gutteridge Exp $
+$NetBSD: distinfo,v 1.10 2026/02/24 14:07:55 gutteridge Exp $
 
-BLAKE2s (firefox-140.7.1esr.source.tar.xz) = d916a5d95215d3efba9cb45f083396a4a57b41c92ef5d5f85e4a7687ffaccc23
-SHA512 (firefox-140.7.1esr.source.tar.xz) = 7d867fa3c9c94903f6583be75ad4aa8d918f98f74c99c6615a0e40caf21c545a30149115214876693ef1758a320ebdccef017c484365c195e55998cce088663c
-Size (firefox-140.7.1esr.source.tar.xz) = 635535480 bytes
+BLAKE2s (firefox-140.8.0esr.source.tar.xz) = ddbe76491a3a5af88432b96b26a2ebb656819a780f2249d5198b4a8b94ac41ad
+SHA512 (firefox-140.8.0esr.source.tar.xz) = 3baca73c5c264884afa4b1d76ded4417119640e1161b8fed4ca406f0ec44e7f685258f5085f473dc9eff9057a6548a9b59cec3c696358dd1032503aa75f91d05
+Size (firefox-140.8.0esr.source.tar.xz) = 633564864 bytes
 BLAKE2s (nodejs-output-140.0.4.tgz) = 7ebb5993c8c9d7d5492afdb9fa7fef74fec7753fb0b14673817f24faf4a7fca4
 SHA512 (nodejs-output-140.0.4.tgz) = e421b0b6be8b5b8dfda705eefcf4573a1270df9012dca5eac9ba0ac2af2bcc47dd66b1057106f8c2336a10bdcc39b9f852041dd33da9e7a8929d981dbb4e1fb4
 Size (nodejs-output-140.0.4.tgz) = 245385 bytes

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index