Mozilla Firefox 139.0.4 Released

Mozilla has rolled out Firefox version 139.0.4 on June 10, 2025, as a part of its ongoing commitment to performance stability, user experience enhancement, and robust security. This is a point-release primarily focused on fixing several usability bugs and addressing two high-severity security vulnerabilities that could have otherwise posed risks to end-users if left unpatched.

🛠️ Key Bug Fixes and Enhancements

This update addresses several issues that had been affecting browser usability and stability across multiple platforms:

1. App Switching and Panel Freezing (Bug 1969253 & Bug 1969346)

• Issue: Users reported that Firefox would become temporarily unresponsive or freeze when switching between applications or when attempting to open certain panels, such as bookmarks, downloads, or sidebar features.
• Fix: Firefox 139.0.4 introduces enhanced process management and thread handling to eliminate these intermittent freezes, especially noticeable on Windows and Linux systems with lower memory resources.

2. Dropdown Selection Glitch in Preferences (Bug 1968949)

• Issue: When users searched within the “Settings” or “Preferences” page, the dropdown menus failed to properly reflect selected options, leading to confusion or misconfiguration.
• Fix: The release improves dropdown rendering logic, ensuring accurate and intuitive interaction when using search or tab navigation inside the Preferences UI.

3. Triple-Click Text Selection Errors (Bugs 1969100 & 1969432)

• Issue: Triple-clicking on text—used to select an entire paragraph—sometimes behaved inconsistently depending on content layout, especially in multi-column pages or text blocks with dynamic CSS styling.
• Fix: The logic has been revised to ensure that triple-clicking reliably selects the expected paragraph or content block, improving accessibility and productivity.

4. Incorrect Wallpaper Filename on Windows (Bug 1969793)

• Issue: When users set desktop wallpapers from within Firefox, the saved image would often have a corrupted or non-descriptive filename, causing management issues in the Downloads folder.
• Fix: This has been addressed with correct file naming conventions that match the image content or source site, improving both user clarity and file organization.

🔐 Critical Security Fixes

In addition to bug fixes, Firefox 139.0.4 includes patches for two high-severity security vulnerabilities that were internally discovered and responsibly disclosed. While there are no known active exploits, these bugs could have been weaponized by attackers in specific scenarios.

✅ CVE-2025-49709 — Memory Corruption in Canvas Surfaces

• Risk: A flaw in the way the browser handled graphical canvas surfaces could allow for memory corruption, potentially leading to a crash or even remote code execution (RCE) in extreme cases.
• Fix: Mozilla improved memory boundary checking and sandboxing protections to mitigate such vector-based attacks.

✅ CVE-2025-49710 — Integer Overflow in JavaScript OrderedHashTable

• Risk: An integer overflow vulnerability in JavaScript’s OrderedHashTable implementation could be abused to trigger buffer overflows, leading to unpredictable behavior or privilege escalation under crafted conditions.
• Fix: Bounds-checking has been reinforced in the JavaScript engine to neutralize overflow risks and block exploitation paths.

📥 Update Instructions

Mozilla encourages all users to update their browsers immediately. While automatic updates are enabled by default, users can manually confirm by:

1. Clicking on ☰ Menu > Help > About Firefox
2. A new window will show your current version and initiate an update if you’re not on 139.0.4
3. Restart Firefox to complete the update process

⚡ Final Take: Why This Update Matters

Firefox 139.0.4 may look like a minor release, but it delivers meaningful improvements to overall user experience and reinforces browser security against potential memory and logic vulnerabilities.

In the current cyber threat landscape, where attackers continually seek browser-based entry points, timely patching of even non-critical flaws is essential. Mozilla’s rapid fix cycle demonstrates its proactive approach toward maintaining a trusted, safe, and seamless browsing environment.