{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"High" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"firefox security update", "category":"general", "title":"Synopsis" }, { "text":"An update for firefox is now available for openEuler-22.03-LTS-SP3", "category":"general", "title":"Summary" }, { "text":"Security Fix(es):\n\nIf temporary one-time permissions, such as the ability to use the Camera, were granted to a document loaded using a file: URL, that permission persisted in that tab for all other documents loaded from a file: URL. This is potentially dangerous if the local files came from different sources, such as in a download directory. This vulnerability affects Firefox < 111.(CVE-2023-28161)\n\nAn attacker could have caused memory corruption and a potentially exploitable use-after-free of a pointer in a global object s debugger vector. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.(CVE-2023-29543)\n\nMemory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.(CVE-2023-29551)\n\nMemory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 142, Firefox ESR < 115.27, Firefox ESR < 128.14, Firefox ESR < 140.2, Thunderbird < 142, Thunderbird < 128.14, and Thunderbird < 140.2.(CVE-2025-9185)", "category":"general", "title":"Description" }, { "text":"An update for firefox is now available for openEuler-22.03-LTS-SP3.\n\nopenEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"High", "category":"general", "title":"Severity" }, { "text":"firefox", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2025-2592", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2592" }, { "summary":"CVE-2023-28161", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-28161&packageName=firefox" }, { "summary":"CVE-2023-29543", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-29543&packageName=firefox" }, { "summary":"CVE-2023-29551", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-29551&packageName=firefox" }, { "summary":"CVE-2025-9185", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-9185&packageName=firefox" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-28161" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-29543" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-29551" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9185" }, { "summary":"openEuler-SA-2025-2592 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2025/csaf-openEuler-SA-2025-2592.json" } ], "title":"An update for firefox is now available for openEuler-22.03-LTS-SP3", "tracking":{ "initial_release_date":"2025-11-06T17:04:05+08:00", "revision_history":[ { "date":"2025-11-06T17:04:05+08:00", "summary":"Initial", "number":"1.0.0" } ], "generator":{ "date":"2025-11-06T17:04:05+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2025-11-06T17:04:05+08:00", "id":"openEuler-SA-2025-2592", "version":"1.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openEuler-22.03-LTS-SP3", "name":"openEuler-22.03-LTS-SP3" }, "name":"openEuler-22.03-LTS-SP3", "category":"product_version" } ], "category":"product_name" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"firefox-140.4.0-2.oe2203sp3.x86_64.rpm", "name":"firefox-140.4.0-2.oe2203sp3.x86_64.rpm" }, "name":"firefox-140.4.0-2.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64.rpm", "name":"firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64.rpm" }, "name":"firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"firefox-debugsource-140.4.0-2.oe2203sp3.x86_64.rpm", "name":"firefox-debugsource-140.4.0-2.oe2203sp3.x86_64.rpm" }, "name":"firefox-debugsource-140.4.0-2.oe2203sp3.x86_64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"firefox-140.4.0-2.oe2203sp3.aarch64.rpm", "name":"firefox-140.4.0-2.oe2203sp3.aarch64.rpm" }, "name":"firefox-140.4.0-2.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64.rpm", "name":"firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64.rpm" }, "name":"firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"firefox-debugsource-140.4.0-2.oe2203sp3.aarch64.rpm", "name":"firefox-debugsource-140.4.0-2.oe2203sp3.aarch64.rpm" }, "name":"firefox-debugsource-140.4.0-2.oe2203sp3.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"firefox-140.4.0-2.oe2203sp3.src.rpm", "name":"firefox-140.4.0-2.oe2203sp3.src.rpm" }, "name":"firefox-140.4.0-2.oe2203sp3.src.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"firefox-140.4.0-2.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "name":"firefox-140.4.0-2.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "name":"firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"firefox-debugsource-140.4.0-2.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "name":"firefox-debugsource-140.4.0-2.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"firefox-140.4.0-2.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "name":"firefox-140.4.0-2.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "name":"firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"firefox-debugsource-140.4.0-2.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "name":"firefox-debugsource-140.4.0-2.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"firefox-140.4.0-2.oe2203sp3.src.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src", "name":"firefox-140.4.0-2.oe2203sp3.src as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2023-28161", "notes":[ { "text":"If temporary one-time permissions, such as the ability to use the Camera, were granted to a document loaded using a file: URL, that permission persisted in that tab for all other documents loaded from a file: URL. This is potentially dangerous if the local files came from different sources, such as in a download directory. This vulnerability affects Firefox < 111.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2592" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":8.8, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2023-28161" }, { "cve":"CVE-2023-29543", "notes":[ { "text":"An attacker could have caused memory corruption and a potentially exploitable use-after-free of a pointer in a global object s debugger vector. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2592" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":8.8, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2023-29543" }, { "cve":"CVE-2023-29551", "notes":[ { "text":"Memory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2592" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":8.8, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2023-29551" }, { "cve":"CVE-2025-9185", "notes":[ { "text":"Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 142, Firefox ESR < 115.27, Firefox ESR < 128.14, Firefox ESR < 140.2, Thunderbird < 142, Thunderbird < 128.14, and Thunderbird < 140.2.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2592" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":8.1, "vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debuginfo-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-debugsource-140.4.0-2.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:firefox-140.4.0-2.oe2203sp3.src" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2025-9185" } ] }