Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 48 of 78
CVE-2018-5180P4HIGHCVSS 7.5fixed in firefox 60.0-1 (sid)2018
CVE-2018-5180 [HIGH] CVE-2018-5180: firefox - A use-after-free vulnerability can occur during WebGL operations. While this res...
A use-after-free vulnerability can occur during WebGL operations. While this results in a potentially exploitable crash, the vulnerability is limited because the memory is freed and reused in a brief window of time during the freeing of the same callstack. This vulnerability affects Firefox < 60.
Scope: local
sid: resolved (fixed in 60.0-1)
debian
CVE-2018-12401P4HIGHCVSS 7.5fixed in firefox 63.0-1 (sid)2018
CVE-2018-12401 [HIGH] CVE-2018-12401: firefox - Some special resource URIs will cause a non-exploitable crash if loaded with opt...
Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnerability affects Firefox < 63.
Scope: local
sid: resolved (fixed in 63.0-1)
debian
CVE-2016-5284P4HIGHCVSS 7.4fixed in firefox 49.0-1 (sid)2016
CVE-2016-5284 [HIGH] CVE-2016-5284: firefox - Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45....
Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 rely on unintended expiration dates for Preloaded Public Key Pinning, which allows man-in-the-middle attackers to spoof add-on updates by leveraging possession of an X.509 server certificate for addons.mozilla.org signed by an arbitrary built-in Certification Authority.
Scope: local
sid:
debian
CVE-2016-9068P3HIGHCVSS 7.5fixed in firefox 50.0-1 (sid)2016
CVE-2016-9068 [HIGH] CVE-2016-9068: firefox - A use-after-free during web animations when working with timelines resulting in ...
A use-after-free during web animations when working with timelines resulting in a potentially exploitable crash. This vulnerability affects Firefox < 50.
Scope: local
sid: resolved (fixed in 50.0-1)
debian
CVE-2018-5101P4HIGHCVSS 7.5fixed in firefox 58.0-1 (sid)2018
CVE-2018-5101 [HIGH] CVE-2018-5101: firefox - A use-after-free vulnerability can occur when manipulating floating "first-lette...
A use-after-free vulnerability can occur when manipulating floating "first-letter" style elements, resulting in a potentially exploitable crash. This vulnerability affects Firefox < 58.
Scope: local
sid: resolved (fixed in 58.0-1)
debian
CVE-2017-5416P4HIGHCVSS 7.5fixed in firefox 52.0-1 (sid)2017
CVE-2017-5416 [HIGH] CVE-2017-5416: firefox - In certain circumstances a networking event listener can be prematurely released...
In certain circumstances a networking event listener can be prematurely released. This appears to result in a null dereference in practice. This vulnerability affects Firefox < 52 and Thunderbird < 52.
Scope: local
sid: resolved (fixed in 52.0-1)
debian
CVE-2017-5406P4HIGHCVSS 7.5fixed in firefox 52.0-1 (sid)2017
CVE-2017-5406 [HIGH] CVE-2017-5406: firefox - A segmentation fault can occur in the Skia graphics library during some canvas o...
A segmentation fault can occur in the Skia graphics library during some canvas operations due to issues with mask/clip intersection and empty masks. This vulnerability affects Firefox < 52 and Thunderbird < 52.
Scope: local
sid: resolved (fixed in 52.0-1)
debian
CVE-2006-2787P3MEDIUMCVSS 9.3fixed in firefox 1.5.dfsg+1.5.0.4-1 (sid)2006
CVE-2006-2787 [CRITICAL] CVE-2006-2787: firefox - EvalInSandbox in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote at...
EvalInSandbox in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to gain privileges via javascript that calls the valueOf method on objects that were created outside of the sandbox.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.4-1)
debian
CVE-2017-7794P4HIGHCVSS 7.8fixed in firefox 55.0-1 (sid)2017
CVE-2017-7794 [HIGH] CVE-2017-7794: firefox - On Linux systems, if the content process is compromised, the sandbox broker will...
On Linux systems, if the content process is compromised, the sandbox broker will allow files to be truncated even though the sandbox explicitly only has read access to the local file system and no write permissions. Note: This attack only affects the Linux operating system. Other operating systems are not affected. This vulnerability affects Firefox < 55.
Scope: local
debian
CVE-2017-7797P4HIGHCVSS 7.5fixed in firefox 55.0-1 (sid)2017
CVE-2017-7797 [HIGH] CVE-2017-7797: firefox - Response header name interning does not have same-origin protections and these h...
Response header name interning does not have same-origin protections and these headers are stored in a global registry. This allows stored header names to be available cross-origin. This vulnerability affects Firefox < 55.
Scope: local
sid: resolved (fixed in 55.0-1)
debian
CVE-2006-1727P4MEDIUMCVSS 7.6fixed in firefox 1.5.dfsg+1.5.0.2-1 (sid)2006
CVE-2006-1727 [HIGH] CVE-2006-1727: firefox - Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 ...
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to the use of XBL scripts with "Print Preview".
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.2-1)
debian
CVE-2025-1933P3HIGHCVSS 7.6fixed in firefox 136.0-1 (sid)2025
CVE-2025-1933 [HIGH] CVE-2025-1933: firefox - On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bi...
On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type. This vulnerability affects Firefox < 136, Firefox ESR < 115.21, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8.
Scope: local
sid: resolved (fixed in 136.0-1)
debian
CVE-2006-3805P3HIGHCVSS 7.5fixed in firefox 1.5.dfsg+1.5.0.5-1 (sid)2006
CVE-2006-3805 [HIGH] CVE-2006-3805: firefox - The Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5....
The Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still being used.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.5-1)
debian
CVE-2024-0741P3MEDIUMCVSS 6.5fixed in firefox 122.0-1 (sid)2024
CVE-2024-0741 [MEDIUM] CVE-2024-0741: firefox - An out of bounds write in ANGLE could have allowed an attacker to corrupt memory...
An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.
Scope: local
sid: resolved (fixed in 122.0-1)
debian
CVE-2006-3807P3HIGHCVSS 7.5fixed in firefox 1.5.dfsg+1.5.0.5-1 (sid)2006
CVE-2006-3807 [HIGH] CVE-2006-3807: firefox - Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before...
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code via script that changes the standard Object() constructor to return a reference to a privileged object and calling "named JavaScript functions" that use the constructor.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.5-1)
debian
CVE-2006-1734P3HIGHCVSS 6.8fixed in firefox 1.5.dfsg+1.5.0.2-2 (sid)2006
CVE-2006-1734 [MEDIUM] CVE-2006-1734: firefox - Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla S...
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using the Object.watch method to access the "clone parent" internal function.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.2-2)
debian
CVE-2016-2831P4HIGHCVSS 8.8fixed in firefox 47.0-1 (sid)2016
CVE-2016-2831 [HIGH] CVE-2016-2831: firefox - Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 do not ensure that ...
Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 do not ensure that the user approves the fullscreen and pointerlock settings, which allows remote attackers to cause a denial of service (UI outage), or conduct clickjacking or spoofing attacks, via a crafted web site.
Scope: local
sid: resolved (fixed in 47.0-1)
debian
CVE-2018-12370P4HIGHCVSS 8.8fixed in firefox 61.0-1 (sid)2018
CVE-2018-12370 [HIGH] CVE-2018-12370: firefox - In Reader View SameSite cookie protections are not checked on exiting. This allo...
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, bypassing CSRF protections. This vulnerability affects Firefox < 61.
Scope: local
sid: resolved (fixed in 61.0-1)
debian
CVE-2023-5388P4MEDIUMCVSS 6.5fixed in firefox 124.0-1 (sid)2023
CVE-2023-5388 [MEDIUM] CVE-2023-5388: firefox - NSS was susceptible to a timing side-channel attack when performing RSA decrypti...
NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could potentially allow an attacker to recover the private data. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.
Scope: local
sid: resolved (fixed in 124.0-1)
debian
CVE-2026-0885P3MEDIUMCVSS 6.5fixed in firefox 147.0-1 (sid)2026
CVE-2026-0885 [MEDIUM] CVE-2026-0885: firefox - Use-after-free in the JavaScript: GC component. This vulnerability affects Firef...
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.
Scope: local
sid: resolved (fixed in 147.0-1)
debian