Red Hat Security Advisory: firefox security update

CVE-2026-8388 — firefox: thunderbird: Incorrect boundary conditions in the JavaScript Engine: JIT component CVE-2026-8391 — firefox: thunderbird: Other issue in the JavaScript Engine component CVE-2026-8401 — firefox: thunderbird: Sandbox escape in the Profile Backup component CVE-2026-8946 — firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: Web Codecs component CVE-2026-8947 — firefox: thunderbird: Use-after-free in the DOM: Bindings (WebIDL) component CVE-2026-8950 — firefox: Same-origin policy bypass in the Networking: HTTP component CVE-2026-8953 — firefox: Sandbox escape due to use-after-free in the Disability Access APIs component CVE-2026-8954 — firefox: Incorrect boundary conditions, integer overflow in the Audio/Video component CVE-2026-8955 — firefox: thunderbird: Privilege escalation in the DOM: Workers component CVE-2026-8956 — firefox: Integer overflow in the Networking: JAR component CVE-2026-8957 — firefox: Privilege escalation in the Enterprise Policies component CVE-2026-8958 — firefox: Information disclosure, sandbox escape in the Security: Process Sandboxing component CVE-2026-8961 — firefox: Spoofing issue in the Form Autofill component CVE-2026-8962 — firefox: Mitigation bypass in the DOM: Security component CVE-2026-8968 — firefox: Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component CVE-2026-8970 — firefox: Privilege escalation in the Security component CVE-2026-8974 — firefox: Memory safety bugs fixed in Firefox ESR 140.11 and Firefox 151 CVE-2026-8975 — firefox: Memory safety bugs fixed in Firefox ESR 115.36, Firefox ESR 140.11 and Firefox 151