Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 47 of 78
CVE-2019-17011P3HIGHCVSS 7.5fixed in firefox 71.0-1 (sid)2019
CVE-2019-17011 [HIGH] CVE-2019-17011: firefox - Under certain conditions, when retrieving a document from a DocShell in the anti...
Under certain conditions, when retrieving a document from a DocShell in the antitracking code, a race condition could cause a use-after-free condition and a potentially exploitable crash. This vulnerability affects Thunderbird < 68.3, Firefox ESR < 68.3, and Firefox < 71.
Scope: local
sid: resolved (fixed in 71.0-1)
debian
CVE-2020-6821P3HIGHCVSS 7.5fixed in firefox 75.0-1 (sid)2020
CVE-2020-6821 [HIGH] CVE-2020-6821: firefox - When reading from areas partially or fully outside the source resource with WebG...
When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the returned values be zero. Previously, this memory was uninitialized, leading to potentially sensitive data disclosure. This vulnerability affects Thunderbird < 68.7.0, Firefox ESR < 68.7, and Firefox < 75.
Scope: local
sid: resolved
debian
CVE-2023-1999P3MEDIUMCVSS 5.3fixed in firefox 112.0-1 (sid)2023
CVE-2023-1999 [MEDIUM] CVE-2023-1999: firefox - There exists a use after free/double free in libwebp. An attacker can use the Ap...
There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free.
Scope: local
s
debian
CVE-2018-12379P3LOWCVSS 7.8fixed in firefox 62.0-1 (sid)2018
CVE-2018-12379 [HIGH] CVE-2018-12379: firefox - When the Mozilla Updater opens a MAR format file which contains a very long item...
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. This vulnerability affects Firefox < 62, Firefox ESR < 60.2, and Thunderbi
debian
CVE-2020-15681P3HIGHCVSS 7.5fixed in firefox 82.0-1 (sid)2020
CVE-2020-15681 [HIGH] CVE-2020-15681: firefox - When multiple WASM threads had a reference to a module, and were looking up expo...
When multiple WASM threads had a reference to a module, and were looking up exported functions, one WASM thread could have overwritten another's entry in a shared stub table, resulting in a potentially exploitable crash. This vulnerability affects Firefox < 82.
Scope: local
sid: resolved (fixed in 82.0-1)
debian
CVE-2017-7835P3HIGHCVSS 7.3fixed in firefox 57.0-1 (sid)2017
CVE-2017-7835 [HIGH] CVE-2017-7835: firefox - Mixed content blocking of insecure (HTTP) sub-resources in a secure (HTTPS) docu...
Mixed content blocking of insecure (HTTP) sub-resources in a secure (HTTPS) document was not correctly applied for resources that redirect from HTTPS to HTTP, allowing content that should be blocked, such as scripts, to be loaded on a page. This vulnerability affects Firefox < 57.
Scope: local
sid: resolved (fixed in 57.0-1)
debian
CVE-2019-9789P4CRITICALCVSS 9.8fixed in firefox 66.0-1 (sid)2019
CVE-2019-9789 [CRITICAL] CVE-2019-9789: firefox - Mozilla developers and community members reported memory safety bugs present in ...
Mozilla developers and community members reported memory safety bugs present in Firefox 65. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 66.
Scope: local
sid: resolved (fixed in 66.0-1)
debian
CVE-2023-4048P3HIGHCVSS 7.5fixed in firefox 116.0-1 (sid)2023
CVE-2023-4048 [HIGH] CVE-2023-4048: firefox - An out-of-bounds read could have led to an exploitable crash when parsing HTML w...
An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low memory situations. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.
Scope: local
sid: resolved (fixed in 116.0-1)
debian
CVE-2023-32209P3HIGHCVSS 7.5fixed in firefox 113.0-1 (sid)2023
CVE-2023-32209 [HIGH] CVE-2023-32209: firefox - A maliciously crafted favicon could have led to an out of memory crash. This vul...
A maliciously crafted favicon could have led to an out of memory crash. This vulnerability affects Firefox < 113.
Scope: local
sid: resolved (fixed in 113.0-1)
debian
CVE-2023-25733P3HIGHCVSS 7.5fixed in firefox 110.0-1 (sid)2023
CVE-2023-25733 [HIGH] CVE-2023-25733: firefox - The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified whic...
The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have potentially lead to a null pointer dereference. This vulnerability affects Firefox < 110.
Scope: local
sid: resolved (fixed in 110.0-1)
debian
CVE-2022-34477P3HIGHCVSS 7.5fixed in firefox 102.0-1 (sid)2022
CVE-2022-34477 [HIGH] CVE-2022-34477: firefox - The MediaError message property should be consistent to avoid leaking informatio...
The MediaError message property should be consistent to avoid leaking information about cross-origin resources; however for a same-site cross-origin resource, the message could have leaked information enabling XS-Leaks attacks. This vulnerability affects Firefox < 102.
Scope: local
sid: resolved (fixed in 102.0-1)
debian
CVE-2023-5170P3HIGHCVSS 7.4fixed in firefox 118.0-1 (sid)2023
CVE-2023-5170 [HIGH] CVE-2023-5170: firefox - In canvas rendering, a compromised content process could have caused a surface t...
In canvas rendering, a compromised content process could have caused a surface to change unexpectedly, leading to a memory leak of a privileged process. This memory leak could be used to effect a sandbox escape if the correct data was leaked. This vulnerability affects Firefox < 118.
Scope: local
sid: resolved (fixed in 118.0-1)
debian
CVE-2006-4571P3HIGHCVSS 10.0fixed in firefox 1.5.dfsg+1.5.0.7-1 (sid)2006
CVE-2006-4571 [CRITICAL] CVE-2006-4571: firefox - Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, Thunderbird befo...
Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allow remote attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via unspecified vectors, some of which involve JavaScript, and possibly large images or plugin data.
Scope: local
sid: resolved (fixed
debian
CVE-2006-2779P3HIGHCVSS 9.3fixed in firefox 1.5.dfsg+1.5.0.4-1 (sid)2006
CVE-2006-2779 [CRITICAL] CVE-2006-2779: firefox - Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers to cause a...
Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) nested tags in a select tag, (2) a DOMNodeRemoved mutation event, (3) "Content-implemented tree views," (4) BoxObjects, (5) the XBL implementation, (6) an iframe that attempts to remove itself, which leads to memory
debian
CVE-2016-1969P4HIGHCVSS 8.8fixed in firefox 45.0-1 (sid)2016
CVE-2016-1969 [HIGH] CVE-2016-1969: firefox - The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox befo...
The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.6.1, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted Graphite smart font.
Scope: local
sid: resolved (fixed in 45.0-1)
debian
CVE-2025-1938P3MEDIUMCVSS 6.5fixed in firefox 136.0-1 (sid)2025
CVE-2025-1938 [MEDIUM] CVE-2025-1938: firefox - Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 128.7, a...
Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 136, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8.
S
debian
CVE-2025-4088P3MEDIUMCVSS 6.5fixed in firefox 138.0-1 (sid)2025
CVE-2025-4088 [MEDIUM] CVE-2025-4088: firefox - A security vulnerability in Thunderbird allowed malicious sites to use redirects...
A security vulnerability in Thunderbird allowed malicious sites to use redirects to send credentialed requests to arbitrary endpoints on any site that had invoked the Storage Access API. This enabled potential Cross-Site Request Forgery attacks across origins. This vulnerability affects Firefox < 138 and Thunderbird < 138.
Scope: local
sid: resolved (fixed in 138.0-
debian
CVE-2016-9897P3HIGHCVSS 7.5fixed in firefox 50.1.0-1 (sid)2016
CVE-2016-9897 [HIGH] CVE-2016-9897: firefox - Memory corruption resulting in a potentially exploitable crash during WebGL func...
Memory corruption resulting in a potentially exploitable crash during WebGL functions using a vector constructor with a varying array within libGLES. This vulnerability affects Firefox < 50.1, Firefox ESR < 45.6, and Thunderbird < 45.6.
Scope: local
sid: resolved (fixed in 50.1.0-1)
debian
CVE-2019-11729P4LOWCVSS 7.5fixed in firefox 68.0-1 (sid)2019
CVE-2019-11729 [HIGH] CVE-2019-11729: firefox - Empty or malformed p256-ECDH public keys may trigger a segmentation fault due va...
Empty or malformed p256-ECDH public keys may trigger a segmentation fault due values being improperly sanitized before being copied into memory and used. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8.
Scope: local
sid: resolved (fixed in 68.0-1)
debian
CVE-2021-23981P3HIGHCVSS 8.1fixed in firefox 87.0-1 (sid)2021
CVE-2021-23981 [HIGH] CVE-2021-23981: firefox - A texture upload of a Pixel Buffer Object could have confused the WebGL code to ...
A texture upload of a Pixel Buffer Object could have confused the WebGL code to skip binding the buffer used to unpack it, resulting in memory corruption and a potentially exploitable information leak or crash. This vulnerability affects Firefox ESR < 78.9, Firefox < 87, and Thunderbird < 78.9.
Scope: local
sid: resolved (fixed in 87.0-1)
debian