Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 37 of 78
CVE-2018-5125P3HIGHCVSS 8.8fixed in firefox 59.0-1 (sid)2018
CVE-2018-5125 [HIGH] CVE-2018-5125: firefox - Memory safety bugs were reported in Firefox 58 and Firefox ESR 52.6. Some of the...
Memory safety bugs were reported in Firefox 58 and Firefox ESR 52.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 52.7, Firefox ESR < 52.7, and Firefox < 59.
Scope: local
sid: resolved (fixed in 59.0-1)
debian
CVE-2016-2795P3HIGHCVSS 8.8fixed in firefox 45.0-1 (sid)2016
CVE-2016-2795 [HIGH] CVE-2016-2795: firefox - The graphite2::FileFace::get_table_fn function in Graphite 2 before 1.3.6, as us...
The graphite2::FileFace::get_table_fn function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted Graphite smart font.
Scope: local
sid: resolved (
debian
CVE-2016-2790P3HIGHCVSS 8.8fixed in firefox 45.0-1 (sid)2016
CVE-2016-2790 [HIGH] CVE-2016-2790: firefox - The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as use...
The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted Graphite smart font.
Scope: local
sid: resolved (f
debian
CVE-2018-5100P3HIGHCVSS 7.5fixed in firefox 58.0-1 (sid)2018
CVE-2018-5100 [HIGH] CVE-2018-5100: firefox - A use-after-free vulnerability can occur when arguments passed to the "IsPotenti...
A use-after-free vulnerability can occur when arguments passed to the "IsPotentiallyScrollable" function are freed while still in use by scripts. This results in a potentially exploitable crash. This vulnerability affects Firefox < 58.
Scope: local
sid: resolved (fixed in 58.0-1)
debian
CVE-2018-12375P3HIGHCVSS 8.8fixed in firefox 62.0-1 (sid)2018
CVE-2018-12375 [HIGH] CVE-2018-12375: firefox - Memory safety bugs present in Firefox 61. Some of these bugs showed evidence of ...
Memory safety bugs present in Firefox 61. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 62.
Scope: local
sid: resolved (fixed in 62.0-1)
debian
CVE-2020-12426P3HIGHCVSS 8.8fixed in firefox 78.0-1 (sid)2020
CVE-2020-12426 [HIGH] CVE-2020-12426: firefox - Mozilla developers and community members reported memory safety bugs present in ...
Mozilla developers and community members reported memory safety bugs present in Firefox 77. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 78.
Scope: local
sid: resolved (fixed in 78.0-1)
debian
CVE-2021-38504P3HIGHCVSS 8.8fixed in firefox 94.0-1 (sid)2021
CVE-2021-38504 [HIGH] CVE-2021-38504: firefox - When interacting with an HTML input element's file picker dialog with webkitdire...
When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use-after-free could have resulted, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 94, Thunderbird < 91.3, and Firefox ESR < 91.3.
Scope: local
sid: resolved (fixed in 94.0-1)
debian
CVE-2019-11756P3HIGHCVSS 8.8fixed in firefox 71.0-1 (sid)2019
CVE-2019-11756 [HIGH] CVE-2019-11756: firefox - Improper refcounting of soft token session objects could cause a use-after-free ...
Improper refcounting of soft token session objects could cause a use-after-free and crash (likely limited to a denial of service). This vulnerability affects Firefox < 71.
Scope: local
sid: resolved (fixed in 71.0-1)
debian
CVE-2016-5283P3HIGHCVSS 8.8fixed in firefox 49.0-1 (sid)2016
CVE-2016-5283 [HIGH] CVE-2016-5283: firefox - Mozilla Firefox before 49.0 allows remote attackers to bypass the Same Origin Po...
Mozilla Firefox before 49.0 allows remote attackers to bypass the Same Origin Policy via a crafted fragment identifier in the SRC attribute of an IFRAME element, leading to insufficient restrictions on link-color information after a document is resized.
Scope: local
sid: resolved (fixed in 49.0-1)
debian
CVE-2017-7772P3HIGHCVSS 8.8fixed in firefox 54.0-1 (sid)2017
CVE-2017-7772 [HIGH] CVE-2017-7772: firefox - Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 in lz4::dec...
Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 in lz4::decompress function.
Scope: local
sid: resolved (fixed in 54.0-1)
debian
CVE-2019-11760P3HIGHCVSS 8.8fixed in firefox 70.0-1 (sid)2019
CVE-2019-11760 [HIGH] CVE-2019-11760: firefox - A fixed-size stack buffer could overflow in nrappkit when doing WebRTC signaling...
A fixed-size stack buffer could overflow in nrappkit when doing WebRTC signaling. This resulted in a potentially exploitable crash in some instances. This vulnerability affects Firefox < 70, Thunderbird < 68.2, and Firefox ESR < 68.2.
Scope: local
sid: resolved (fixed in 70.0-1)
debian
CVE-2017-5412P3HIGHCVSS 7.5fixed in firefox 52.0-1 (sid)2017
CVE-2017-5412 [HIGH] CVE-2017-5412: firefox - A buffer overflow read during SVG filter color value operations, resulting in da...
A buffer overflow read during SVG filter color value operations, resulting in data exposure. This vulnerability affects Firefox < 52 and Thunderbird < 52.
Scope: local
sid: resolved (fixed in 52.0-1)
debian
CVE-2019-11735P3HIGHCVSS 8.8fixed in firefox 69.0-1 (sid)2019
CVE-2019-11735 [HIGH] CVE-2019-11735: firefox - Mozilla developers and community members reported memory safety bugs present in ...
Mozilla developers and community members reported memory safety bugs present in Firefox 68 and Firefox ESR 68. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 69 and Firefox ESR < 68.1.
Scope: local
sid: resolved (fixed in
debian
CVE-2021-29946P3HIGHCVSS 8.8fixed in firefox 88.0-1 (sid)2021
CVE-2021-29946 [HIGH] CVE-2021-29946: firefox - Ports that were written as an integer overflow above the bounds of a 16-bit inte...
Ports that were written as an integer overflow above the bounds of a 16-bit integer could have bypassed port blocking restrictions when used in the Alt-Svc header. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
Scope: local
sid: resolved (fixed in 88.0-1)
debian
CVE-2020-26952P3HIGHCVSS 8.8fixed in firefox 83.0-1 (sid)2020
CVE-2020-26952 [HIGH] CVE-2020-26952: firefox - Incorrect bookkeeping of functions inlined during JIT compilation could have led...
Incorrect bookkeeping of functions inlined during JIT compilation could have led to memory corruption and a potentially exploitable crash when handling out-of-memory errors. This vulnerability affects Firefox < 83.
Scope: local
sid: resolved (fixed in 83.0-1)
debian
CVE-2020-12409P3HIGHCVSS 8.8fixed in firefox 77.0-1 (sid)2020
CVE-2020-12409 [HIGH] CVE-2020-12409: firefox - When using certain blank characters in a URL, they where incorrectly rendered as...
When using certain blank characters in a URL, they where incorrectly rendered as spaces instead of an encoded URL. This vulnerability affects Firefox < 77.
Scope: local
sid: resolved (fixed in 77.0-1)
debian
CVE-2020-15675P3HIGHCVSS 8.8fixed in firefox 81.0-1 (sid)2020
CVE-2020-15675 [HIGH] CVE-2020-15675: firefox - When processing surfaces, the lifetime may outlive a persistent buffer leading t...
When processing surfaces, the lifetime may outlive a persistent buffer leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 81.
Scope: local
sid: resolved (fixed in 81.0-1)
debian
CVE-2021-38499P3HIGHCVSS 8.8fixed in firefox 93.0-1 (sid)2021
CVE-2021-38499 [HIGH] CVE-2021-38499: firefox - Mozilla developers reported memory safety bugs present in Firefox 92. Some of th...
Mozilla developers reported memory safety bugs present in Firefox 92. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 93.
Scope: local
sid: resolved (fixed in 93.0-1)
debian
CVE-2021-38494P3HIGHCVSS 8.8fixed in firefox 92.0-1 (sid)2021
CVE-2021-38494 [HIGH] CVE-2021-38494: firefox - Mozilla developers reported memory safety bugs present in Firefox 91. Some of th...
Mozilla developers reported memory safety bugs present in Firefox 91. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 92.
Scope: local
sid: resolved (fixed in 92.0-1)
debian
CVE-2022-34480P3HIGHCVSS 8.8fixed in firefox 102.0-1 (sid)2022
CVE-2022-34480 [HIGH] CVE-2022-34480: firefox - Within the <code>lg_init()</code> function, if several allocations succeed but t...
Within the lg_init() function, if several allocations succeed but then one fails, an uninitialized pointer would have been freed despite never being allocated. This vulnerability affects Firefox < 102.
Scope: local
sid: resolved (fixed in 102.0-1)
debian