Search for packages
| purl | pkg:alpm/archlinux/firefox@82.0.3-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1frd-d76n-13fm
Aliases: CVE-2020-26965 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-436x-mrs7-q3gk
Aliases: CVE-2020-26960 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-83xt-ng2x-zugv
Aliases: CVE-2020-26953 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-8jzn-g96u-tudw
Aliases: CVE-2020-26956 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-8tmx-53k3-pbfj
Aliases: CVE-2020-26961 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-a66n-msy9-d3f9
Aliases: CVE-2020-26969 |
Mozilla developers Tyson Smith, Aaron Klotz, David Major and Jason Kratzer reported memory safety bugs present in Firefox 82. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. |
Affected by 0 other vulnerabilities. |
|
VCID-dhed-rfz6-ffe9
Aliases: CVE-2020-26951 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-dsaw-xa6k-4yfw
Aliases: CVE-2020-26968 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-ervb-z282-7kdy
Aliases: CVE-2020-26967 |
When listening for page changes with a Mutation Observer, a malicious web page could confuse Firefox Screenshots into interacting with elements other than those that it injected into the page. This would lead to internal errors and unexpected behavior in the Screenshots code. |
Affected by 0 other vulnerabilities. |
|
VCID-f3ws-d8fh-9ucz
Aliases: CVE-2020-26959 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-nx21-ks3v-53e4
Aliases: CVE-2020-15999 GHSA-pv36-h7jh-qm62 |
Heap buffer overflow in CefSharp ### Impact A memory corruption bug(Heap overflow) in the FreeType font rendering library. > This can be exploited by attackers to execute arbitrary code by using specially crafted fonts with embedded PNG images . As per https://www.secpod.com/blog/chrome-zero-day-under-active-exploitation-patch-now/ Google is aware of reports that an exploit for CVE-2020-15999 exists in the wild. ### Patches Upgrade to 85.3.130 or higher ### References - https://www.secpod.com/blog/chrome-zero-day-under-active-exploitation-patch-now/ - https://www.zdnet.com/article/google-releases-chrome-security-update-to-patch-actively-exploited-zero-day/ - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999 - https://magpcss.org/ceforum/viewtopic.php?f=10&t=17942 To review the `CEF/Chromium` patch see https://bitbucket.org/chromiumembedded/cef/commits/cd6cbe008b127990036945fb75e7c2c1594ab10d |
Affected by 0 other vulnerabilities. |
|
VCID-sb4d-y4bp-k3h9
Aliases: CVE-2020-26958 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
|
VCID-ufy5-eyqn-ybfw
Aliases: CVE-2020-26962 |
Cross-origin iframes that contained a login form could have been recognized by the login autofill service, and populated. This could have been used in clickjacking attacks, as well as be read across partitions in dynamic first party isolation. |
Affected by 0 other vulnerabilities. |
|
VCID-uhjp-n763-cfc9
Aliases: CVE-2020-26963 |
Repeated calls to the history and location interfaces could have been used to hang the browser. This was addressed by introducing rate-limiting to these API calls. |
Affected by 0 other vulnerabilities. |
|
VCID-v26p-ngz2-tkcd
Aliases: CVE-2020-26952 |
Incorrect bookkeeping of functions inlined during JIT compilation could have led to memory corruption and a potentially exploitable crash when handling out-of-memory errors. |
Affected by 0 other vulnerabilities. |
|
VCID-yg7c-ar4c-w3fn
Aliases: CVE-2020-16012 |
Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-r4th-1n98-aqc6 | A use-after-free in Mozilla Firefox might allow remote attacker(s) to execute arbitrary code. |
CVE-2020-26950
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-07T13:59:06.950667+00:00 | Arch Linux Importer | Fixing | VCID-r4th-1n98-aqc6 | https://security.archlinux.org/AVG-1265 | 38.1.0 |
| 2026-04-07T13:59:06.935801+00:00 | Arch Linux Importer | Affected by | VCID-nx21-ks3v-53e4 | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.924164+00:00 | Arch Linux Importer | Affected by | VCID-yg7c-ar4c-w3fn | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.912795+00:00 | Arch Linux Importer | Affected by | VCID-dhed-rfz6-ffe9 | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.901942+00:00 | Arch Linux Importer | Affected by | VCID-v26p-ngz2-tkcd | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.888847+00:00 | Arch Linux Importer | Affected by | VCID-83xt-ng2x-zugv | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.877230+00:00 | Arch Linux Importer | Affected by | VCID-8jzn-g96u-tudw | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.866378+00:00 | Arch Linux Importer | Affected by | VCID-sb4d-y4bp-k3h9 | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.850573+00:00 | Arch Linux Importer | Affected by | VCID-f3ws-d8fh-9ucz | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.836108+00:00 | Arch Linux Importer | Affected by | VCID-436x-mrs7-q3gk | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.824325+00:00 | Arch Linux Importer | Affected by | VCID-8tmx-53k3-pbfj | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.812207+00:00 | Arch Linux Importer | Affected by | VCID-ufy5-eyqn-ybfw | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.798638+00:00 | Arch Linux Importer | Affected by | VCID-uhjp-n763-cfc9 | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.777518+00:00 | Arch Linux Importer | Affected by | VCID-1frd-d76n-13fm | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.764889+00:00 | Arch Linux Importer | Affected by | VCID-ervb-z282-7kdy | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.752646+00:00 | Arch Linux Importer | Affected by | VCID-dsaw-xa6k-4yfw | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-07T13:59:06.737980+00:00 | Arch Linux Importer | Affected by | VCID-a66n-msy9-d3f9 | https://security.archlinux.org/AVG-1279 | 38.1.0 |
| 2026-04-01T18:24:19.710896+00:00 | Arch Linux Importer | Fixing | VCID-r4th-1n98-aqc6 | https://security.archlinux.org/AVG-1265 | 38.0.0 |
| 2026-04-01T18:24:19.681418+00:00 | Arch Linux Importer | Affected by | VCID-nx21-ks3v-53e4 | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.657822+00:00 | Arch Linux Importer | Affected by | VCID-yg7c-ar4c-w3fn | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.633910+00:00 | Arch Linux Importer | Affected by | VCID-dhed-rfz6-ffe9 | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.612051+00:00 | Arch Linux Importer | Affected by | VCID-v26p-ngz2-tkcd | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.588452+00:00 | Arch Linux Importer | Affected by | VCID-83xt-ng2x-zugv | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.562603+00:00 | Arch Linux Importer | Affected by | VCID-8jzn-g96u-tudw | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.536925+00:00 | Arch Linux Importer | Affected by | VCID-sb4d-y4bp-k3h9 | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.509741+00:00 | Arch Linux Importer | Affected by | VCID-f3ws-d8fh-9ucz | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.485249+00:00 | Arch Linux Importer | Affected by | VCID-436x-mrs7-q3gk | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.460463+00:00 | Arch Linux Importer | Affected by | VCID-8tmx-53k3-pbfj | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.435536+00:00 | Arch Linux Importer | Affected by | VCID-ufy5-eyqn-ybfw | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.408784+00:00 | Arch Linux Importer | Affected by | VCID-uhjp-n763-cfc9 | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.384019+00:00 | Arch Linux Importer | Affected by | VCID-1frd-d76n-13fm | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.358613+00:00 | Arch Linux Importer | Affected by | VCID-ervb-z282-7kdy | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.335622+00:00 | Arch Linux Importer | Affected by | VCID-dsaw-xa6k-4yfw | https://security.archlinux.org/AVG-1279 | 38.0.0 |
| 2026-04-01T18:24:19.312623+00:00 | Arch Linux Importer | Affected by | VCID-a66n-msy9-d3f9 | https://security.archlinux.org/AVG-1279 | 38.0.0 |