Security Advisory

Mozilla Product Security Update Advisory

Apr 27 2026

Mozilla Product Security Update Advisory

Security Update Advisory

Mozilla has issued security updates to address CVE-2026-6785 and CVE-2026-6786, memory safety vulnerabilities in Firefox, Firefox ESR, Thunderbird, and Thunderbird ESR.

Vulnerabilities

CVE-2026-6785 Affected products and versions are Firefox 150 and earlier, Firefox ESR 115.35 and earlier, Firefox ESR 140.10 and earlier, Thunderbird 150 and earlier, and Thunderbird ESR 140.10 and earlier.
CVE-2026-6786 Affected products and versions are Firefox below 150, Firefox ESR below 140.10, Thunderbird below 150, and Thunderbird ESR below 140.10.

Notes

Mozilla has provided a vulnerability patch in the latest update, and users of the affected products should follow the instructions on the reference site to update to the latest version of the Vulnerability Patch.
mozilla Foundation Security Advisories 2026-30, 2026-31, 2026-32, 2026-33, and 2026-34 are listed as references.

Previous Post

Mozilla Product Security Update Advisory

Next Post

PackageKit Security Update Advisory