Mozilla Product Security Update Advisory (CVE-2026-2447)

Feb 19 2026

Overview

We have released security updates to fix vulnerabilities in Mozilla products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2026-2447

Thunderbird versions: 14.7.0.2 and earlier
Thunderbird versions: 14.0.7.2 and earlier

Resolved Vulnerabilities

Heap Buffer Overflow Vulnerability in libvpx in Thunderbird (CVE-2026-2447)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2026-2447

Thunderbird version: 14.7.0.2
Thunderbird version: 14.0.7.2

References

[1] Mozilla Foundation Security Advisory 2026-11
https://www.mozilla.org/en-US/security/advisories/mfsa2026-11/

Mozilla Product Security Update Advisory (CVE-2026-2447)

GitLab Product Security Update Advisory

Google Chrome Browser (145.0.7632.75/76) Security Update Advisory

Tags:

GitLab Product Security Update Advisory

Google Chrome Browser (145.0.7632.75/76) Security Update Advisory