Debian Firefox vulnerabilities

CVE-2024-3863 [CRITICAL] CVE-2024-3863: firefox - The executable file warning was not presented when downloading .xrm-ms files. ... The executable file warning was not presented when downloading .xrm-ms files. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.* This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10. Scope: local sid: resolved

CVE-2024-9391 [MEDIUM] CVE-2024-9391: firefox - A user who enables full-screen mode on a specially crafted web page could potent... A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible. *This bug only affects Firefox Focus for Android. Other versions of Firefox are unaffected.* This vulnerability affects Firefox < 131. Scope: local sid: resol

CVE-2024-38313 [MEDIUM] CVE-2024-38313: firefox - In certain scenarios a malicious website could attempt to display a fake locatio... In certain scenarios a malicious website could attempt to display a fake location URL bar which could mislead users as to the actual website address This vulnerability affects Firefox for iOS < 127. Scope: local sid: resolved

CVE-2024-0752 [MEDIUM] CVE-2024-0752: firefox - A use-after-free crash could have occurred on macOS if a Firefox update were bei... A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a very busy system. This could have resulted in an exploitable crash. This vulnerability affects Firefox < 122. Scope: local sid: resolved

CVE-2024-43112 [MEDIUM] CVE-2024-43112: firefox - Long pressing on a download link could potentially provide a means for cross-sit... Long pressing on a download link could potentially provide a means for cross-site scripting This vulnerability affects Firefox for iOS < 129. Scope: local sid: resolved

CVE-2024-2605 [MEDIUM] CVE-2024-2605: firefox - An attacker could have leveraged the Windows Error Reporter to run arbitrary cod... An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. *Note:* This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9. Scope: local sid: resolved

CVE-2024-6600 [MEDIUM] CVE-2024-6600: firefox - Due to large allocation checks in Angle for GLSL shaders being too lenient an ou... Due to large allocation checks in Angle for GLSL shaders being too lenient an out-of-bounds access could occur when allocating more than 8192 ints in private shader memory on macOS. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128. Scope: local sid: resolved

CVE-2024-38312 [MEDIUM] CVE-2024-38312: firefox - When browsing private tabs, some data related to location history or webpage thu... When browsing private tabs, some data related to location history or webpage thumbnails could be persisted incorrectly within the sandboxed app bundle after app termination This vulnerability affects Firefox for iOS < 127. Scope: local sid: resolved

CVE-2024-11691 [HIGH] CVE-2024-11691: firefox - Certain WebGL operations on Apple silicon M series devices could have lead to an... Certain WebGL operations on Apple silicon M series devices could have lead to an out-of-bounds write and memory corruption due to a flaw in Apple's GPU driver. *This bug only affected the application on Apple M series hardware. Other platforms were unaffected.* This vulnerability affects Firefox < 133, Firefox ESR < 128.5, Firefox ESR < 115.18, Thunderbird < 133, Th

CVE-2024-26282 [HIGH] CVE-2024-26282: firefox - Using an AMP url with a canonical element, an attacker could have executed JavaS... Using an AMP url with a canonical element, an attacker could have executed JavaScript from an opened bookmarked page. This vulnerability affects Firefox for iOS < 123. Scope: local sid: resolved

CVE-2024-2606 [LOW] CVE-2024-2606: firefox - Passing invalid data could have led to invalid wasm values being created, such a... Passing invalid data could have led to invalid wasm values being created, such as arbitrary integers turning into pointer values. This vulnerability affects Firefox < 124. Scope: local sid: resolved (fixed in 124.0-1)

CVE-2024-7523 [HIGH] CVE-2024-7523: firefox - A select option could partially obscure security prompts. This could be used by ... A select option could partially obscure security prompts. This could be used by a malicious site to trick a user into granting permissions. *This issue only affects Android versions of Firefox.* This vulnerability affects Firefox < 129. Scope: local sid: resolved

CVE-2024-6605 [HIGH] CVE-2024-6605: firefox - Firefox Android allowed immediate interaction with permission prompts. This coul... Firefox Android allowed immediate interaction with permission prompts. This could be used for tapjacking. This vulnerability affects Firefox < 128. Scope: local sid: resolved

CVE-2024-5687 [MEDIUM] CVE-2024-5687: firefox - If a specific sequence of actions is performed when opening a new tab, the trigg... If a specific sequence of actions is performed when opening a new tab, the triggering principal associated with the new tab may have been incorrect. The triggering principal is used to calculate many values, including the `Referer` and `Sec-*` headers, meaning there is the potential for incorrect security checks within the browser in addition to incorrect or mislead

CVE-2024-10004 [CRITICAL] CVE-2024-10004: firefox - Opening an external link to an HTTP website when Firefox iOS was previously clos... Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS tab open could in some cases result in the padlock icon showing an HTTPS indicator incorrectly This vulnerability affects Firefox for iOS < 131.2. Scope: local sid: resolved

CVE-2024-5692 [MEDIUM] CVE-2024-5692: firefox - On Windows 10, when using the 'Save As' functionality, an attacker could have tr... On Windows 10, when using the 'Save As' functionality, an attacker could have tricked the browser into saving the file with a disallowed extension such as `.url` by including an invalid character in the extension. *Note:* This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 127, Firefox ESR

CVE-2024-26283 [HIGH] CVE-2024-26283: firefox - An attacker could have executed unauthorized scripts on top origin sites using a... An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme. This vulnerability affects Firefox for iOS < 123. Scope: local sid: resolved

CVE-2024-53976 [MEDIUM] CVE-2024-53976: firefox - Under certain circumstances, navigating to a webpage would result in the address... Under certain circumstances, navigating to a webpage would result in the address missing from the location URL bar, making it unclear what the URL was for the loaded webpage. This vulnerability affects Firefox for iOS < 133. Scope: local sid: resolved

CVE-2024-8388 [MEDIUM] CVE-2024-8388: firefox - Multiple prompts and panels from both Firefox and the Android OS could be used t... Multiple prompts and panels from both Firefox and the Android OS could be used to obscure the notification announcing the transition to fullscreen mode after the fix for CVE-2023-6870 in Firefox 121. This could lead to spoofing the browser UI if the sudden appearance of the prompt distracted the user from noticing the visual transition happening behind the prompt. T

CVE-2024-43111 [MEDIUM] CVE-2024-43111: firefox - Long pressing on a download link could potentially allow Javascript commands to ... Long pressing on a download link could potentially allow Javascript commands to be executed within the browser This vulnerability affects Firefox for iOS < 129. Scope: local sid: resolved