Debian Firefox vulnerabilities

CVE-2025-10532 [MEDIUM] CVE-2025-10532: firefox - Incorrect boundary conditions in the JavaScript: GC component. This vulnerabilit... Incorrect boundary conditions in the JavaScript: GC component. This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. Scope: local sid: resolved (fixed in 143.0-1)

CVE-2025-10536 [MEDIUM] CVE-2025-10536: firefox - Information disclosure in the Networking: Cache component. This vulnerability af... Information disclosure in the Networking: Cache component. This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. Scope: local sid: resolved (fixed in 143.0-1)

CVE-2025-11712 [MEDIUM] CVE-2025-11712: firefox - A malicious page could have used the type attribute of an OBJECT tag to override... A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and

CVE-2025-1938 [MEDIUM] CVE-2025-1938: firefox - Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 128.7, a... Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 136, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8. S

CVE-2025-0240 [MEDIUM] CVE-2025-0240: firefox - Parsing a JavaScript module as JSON could, under some circumstances, cause cross... Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6. Scope: local sid: resolved (fixed in 134.0-1)

CVE-2025-1019 [MEDIUM] CVE-2025-1019: firefox - The z-order of the browser windows could be manipulated to hide the fullscreen n... The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135 and Thunderbird < 135. Scope: local sid: resolved (fixed in 135.0-1)

CVE-2025-13013 [MEDIUM] CVE-2025-13013: firefox - Mitigation bypass in the DOM: Core & HTML component. This vulnerability affects ... Mitigation bypass in the DOM: Core & HTML component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Firefox ESR < 115.30, Thunderbird < 145, and Thunderbird < 140.5. Scope: local sid: resolved (fixed in 145.0-1)

CVE-2025-1018 [MEDIUM] CVE-2025-1018: firefox - The fullscreen notification is prematurely hidden when fullscreen is re-requeste... The fullscreen notification is prematurely hidden when fullscreen is re-requested quickly by the user. This could have been leveraged to perform a potential spoofing attack. This vulnerability affects Firefox < 135 and Thunderbird < 135. Scope: local sid: resolved (fixed in 135.0-1)

CVE-2025-0242 [MEDIUM] CVE-2025-0242: firefox - Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 115.18, ... Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 115.18, Firefox ESR 128.5, Thunderbird 115.18, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Firef

CVE-2025-27425 [MEDIUM] CVE-2025-27425: firefox - Scanning certain QR codes that included text with a website URL could allow the ... Scanning certain QR codes that included text with a website URL could allow the URL to be opened without presenting the user with a confirmation alert first This vulnerability affects Firefox for iOS < 136. Scope: local sid: resolved

CVE-2025-6428 [MEDIUM] CVE-2025-6428: firefox - When a URL was provided in a link querystring parameter, Firefox for Android wou... When a URL was provided in a link querystring parameter, Firefox for Android would follow that URL instead of the correct URL, potentially leading to phishing attacks. *This bug only affects Firefox for Android. Other versions of Firefox are unaffected.* This vulnerability affects Firefox < 140. Scope: local sid: resolved

CVE-2025-27424 [MEDIUM] CVE-2025-27424: firefox - Websites redirecting to a non-HTTP scheme URL could allow a website address to b... Websites redirecting to a non-HTTP scheme URL could allow a website address to be spoofed for a malicious page This vulnerability affects Firefox for iOS < 136. Scope: local sid: resolved

CVE-2025-27426 [MEDIUM] CVE-2025-27426: firefox - Malicious websites utilizing a server-side redirect to an internal error page co... Malicious websites utilizing a server-side redirect to an internal error page could result in a spoofed website URL This vulnerability affects Firefox for iOS < 136. Scope: local sid: resolved

CVE-2025-8364 [MEDIUM] CVE-2025-8364: firefox - A crafted URL using a blob: URI could have hidden the true origin of the page, r... A crafted URL using a blob: URI could have hidden the true origin of the page, resulting in a potential spoofing attack. *Note: This issue only affected Android operating systems. Other operating systems are unaffected.* This vulnerability affects Firefox < 141. Scope: local sid: resolved

CVE-2025-11713 [HIGH] CVE-2025-11713: firefox - Insufficient escaping in the “Copy as cURL” feature could have been used to tric... Insufficient escaping in the “Copy as cURL” feature could have been used to trick a user into executing unexpected code on Windows. This did not affect the application when running on other operating systems. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and Thunderbird < 140.4. Scope: local sid: resolved

CVE-2025-10535 [HIGH] CVE-2025-10535: firefox - Information disclosure, mitigation bypass in the Privacy component in Firefox fo... Information disclosure, mitigation bypass in the Privacy component in Firefox for Android. This vulnerability affects Firefox < 143. Scope: local sid: resolved

CVE-2025-2857 [HIGH] CVE-2025-2857: firefox - Following the recent Chrome sandbox escape (CVE-2025-2783), various Firefox deve... Following the recent Chrome sandbox escape (CVE-2025-2783), various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, leading to a sandbox escape. The original vulnerability was being exploited in the wild. *This only affects Firefox on Windows. Othe

CVE-2025-6431 [MEDIUM] CVE-2025-6431: firefox - When a link can be opened in an external application, Firefox for Android will, ... When a link can be opened in an external application, Firefox for Android will, by default, prompt the user before doing so. An attacker could have bypassed this prompt, potentially exposing the user to security vulnerabilities or privacy leaks in external applications. *This bug only affects Firefox for Android. Other versions of Firefox are unaffected.* This vulne

CVE-2025-11717 [CRITICAL] CVE-2025-11717: firefox - When switching between Android apps using the card carousel Firefox shows a blac... When switching between Android apps using the card carousel Firefox shows a black screen as its card image when a password-related screen was the last one being used. Prior to Firefox 144 the password edit screen was visible. This vulnerability affects Firefox < 144. Scope: local sid: resolved

CVE-2025-10530 [MEDIUM] CVE-2025-10530: firefox - Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerabil... Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerability affects Firefox < 143 and Thunderbird < 143. Scope: local sid: resolved