VulnerableCode Package Details - pkg:deb/debian/firefox-esr@102.10.0esr-1~deb11u1?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/firefox-esr@102.10.0esr-1~deb11u1?distro=trixie

Essentials
History (27)

purl	pkg:deb/debian/firefox-esr@102.10.0esr-1~deb11u1?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (9)

Vulnerability	Summary	Aliases
VCID-5hzf-gdbj-8ud8	Double Free There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free.	CVE-2023-1999
VCID-73wu-d7y3-7bge	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-1945
VCID-7b8k-mgs3-cud5	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-29550
VCID-a8gt-y9j7-zuhs	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-29548
VCID-as8g-vnyj-u7hk	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-29539
VCID-bc7q-srps-sfd7	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-29541
VCID-w814-2cmz-ruhz	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-29535
VCID-yhj1-h62u-mud5	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-29533
VCID-yjyu-u73t-u7bh	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.	CVE-2023-29536

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T10:42:07.025156+00:00	Debian Importer	Fixing	VCID-73wu-d7y3-7bge	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:50:07.858944+00:00	Debian Importer	Fixing	VCID-a8gt-y9j7-zuhs	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:34:15.498656+00:00	Debian Importer	Fixing	VCID-w814-2cmz-ruhz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:32:11.802689+00:00	Debian Importer	Fixing	VCID-7b8k-mgs3-cud5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:03:27.765716+00:00	Debian Importer	Fixing	VCID-yhj1-h62u-mud5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:54:58.816333+00:00	Debian Importer	Fixing	VCID-as8g-vnyj-u7hk	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:52:51.969023+00:00	Debian Importer	Fixing	VCID-bc7q-srps-sfd7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:46:13.995724+00:00	Debian Importer	Fixing	VCID-5hzf-gdbj-8ud8	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:45:17.013206+00:00	Debian Importer	Fixing	VCID-yjyu-u73t-u7bh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:56:49.616068+00:00	Debian Importer	Fixing	VCID-73wu-d7y3-7bge	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:43:00.910943+00:00	Debian Importer	Fixing	VCID-w814-2cmz-ruhz	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:34:24.534215+00:00	Debian Importer	Fixing	VCID-a8gt-y9j7-zuhs	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:21:29.631318+00:00	Debian Importer	Fixing	VCID-7b8k-mgs3-cud5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:04:19.912168+00:00	Debian Importer	Fixing	VCID-yhj1-h62u-mud5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:59:00.126129+00:00	Debian Importer	Fixing	VCID-as8g-vnyj-u7hk	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:57:38.000753+00:00	Debian Importer	Fixing	VCID-bc7q-srps-sfd7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:53:29.179577+00:00	Debian Importer	Fixing	VCID-5hzf-gdbj-8ud8	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:52:55.744585+00:00	Debian Importer	Fixing	VCID-yjyu-u73t-u7bh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:23:33.637569+00:00	Debian Importer	Fixing	VCID-7b8k-mgs3-cud5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:33.587108+00:00	Debian Importer	Fixing	VCID-a8gt-y9j7-zuhs	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:33.448536+00:00	Debian Importer	Fixing	VCID-bc7q-srps-sfd7	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:33.398032+00:00	Debian Importer	Fixing	VCID-as8g-vnyj-u7hk	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:33.347975+00:00	Debian Importer	Fixing	VCID-yjyu-u73t-u7bh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:33.294805+00:00	Debian Importer	Fixing	VCID-w814-2cmz-ruhz	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:33.242897+00:00	Debian Importer	Fixing	VCID-yhj1-h62u-mud5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:31.863190+00:00	Debian Importer	Fixing	VCID-5hzf-gdbj-8ud8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:23:31.812210+00:00	Debian Importer	Fixing	VCID-73wu-d7y3-7bge	https://security-tracker.debian.org/tracker/data/json	38.1.0