Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/firefox@145.0-1?distro=sid
purl pkg:deb/debian/firefox@145.0-1?distro=sid
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (16)
Vulnerability Summary Aliases
VCID-2myh-pg75-1kgb Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox < 145 and Thunderbird < 145. CVE-2025-13025
VCID-4bw1-v6ze-kbds Mitigation bypass in the DOM: Security component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13018
VCID-4kd3-95cm-g3fc Same-origin policy bypass in the DOM: Workers component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13019
VCID-66t7-51hw-4yap Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox < 145 and Thunderbird < 145. CVE-2025-13023
VCID-8v2e-2y19-d3fc JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 145 and Thunderbird < 145. CVE-2025-13024
VCID-962a-dwqf-3ycg Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13016
VCID-ccz8-tmpe-wker Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. CVE-2025-13027
VCID-dgwm-n1zx-qkbq Race condition in the Graphics component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Firefox ESR < 115.30, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13012
VCID-e7jk-vs8y-fyhr Use-after-free in the WebRTC: Audio/Video component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13020
VCID-hd86-cja2-cud5 Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox < 145 and Thunderbird < 145. CVE-2025-13022
VCID-kdwy-7p45-hbcs Spoofing issue in Firefox. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Firefox ESR < 115.30, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13015
VCID-qgvy-hzsx-hkge Use-after-free in the Audio/Video component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Firefox ESR < 115.30, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13014
VCID-uhcz-v63r-m3ft Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox < 145 and Thunderbird < 145. CVE-2025-13026
VCID-ukut-zyjx-93gq Mitigation bypass in the DOM: Core & HTML component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Firefox ESR < 115.30, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13013
VCID-wz6r-xzm9-m7hp Same-origin policy bypass in the DOM: Notifications component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, Thunderbird < 145, and Thunderbird < 140.5. CVE-2025-13017
VCID-xcze-cha6-3qcd Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox < 145 and Thunderbird < 145. CVE-2025-13021

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:25:48.973728+00:00 Debian Importer Fixing VCID-qgvy-hzsx-hkge https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:25:07.026401+00:00 Debian Importer Fixing VCID-e7jk-vs8y-fyhr https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:48:45.173848+00:00 Debian Importer Fixing VCID-ccz8-tmpe-wker https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:14:42.463718+00:00 Debian Importer Fixing VCID-66t7-51hw-4yap https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:14:00.653953+00:00 Debian Importer Fixing VCID-ukut-zyjx-93gq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:29:51.434745+00:00 Debian Importer Fixing VCID-xcze-cha6-3qcd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:18:05.048959+00:00 Debian Importer Fixing VCID-2myh-pg75-1kgb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:12:01.626629+00:00 Debian Importer Fixing VCID-hd86-cja2-cud5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:58:55.222282+00:00 Debian Importer Fixing VCID-4bw1-v6ze-kbds https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:57:25.305253+00:00 Debian Importer Fixing VCID-uhcz-v63r-m3ft https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:54:54.131376+00:00 Debian Importer Fixing VCID-wz6r-xzm9-m7hp https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:52:13.827852+00:00 Debian Importer Fixing VCID-dgwm-n1zx-qkbq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:49:34.802128+00:00 Debian Importer Fixing VCID-962a-dwqf-3ycg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:45:01.616681+00:00 Debian Importer Fixing VCID-kdwy-7p45-hbcs https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:38:49.476025+00:00 Debian Importer Fixing VCID-4kd3-95cm-g3fc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:38:04.013751+00:00 Debian Importer Fixing VCID-8v2e-2y19-d3fc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:06:35.771739+00:00 Debian Importer Fixing VCID-4kd3-95cm-g3fc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:30:30.097152+00:00 Debian Importer Fixing VCID-qgvy-hzsx-hkge https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:30:00.504777+00:00 Debian Importer Fixing VCID-e7jk-vs8y-fyhr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:24:56.258285+00:00 Debian Importer Fixing VCID-ccz8-tmpe-wker https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:53:22.244833+00:00 Debian Importer Fixing VCID-66t7-51hw-4yap https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:52:51.021223+00:00 Debian Importer Fixing VCID-ukut-zyjx-93gq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:49:04.786771+00:00 Debian Importer Fixing VCID-hd86-cja2-cud5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:20:03.234075+00:00 Debian Importer Fixing VCID-xcze-cha6-3qcd https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:18:42.075907+00:00 Debian Importer Fixing VCID-kdwy-7p45-hbcs https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:12:55.635736+00:00 Debian Importer Fixing VCID-2myh-pg75-1kgb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:01:27.181809+00:00 Debian Importer Fixing VCID-4bw1-v6ze-kbds https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:00:34.928759+00:00 Debian Importer Fixing VCID-uhcz-v63r-m3ft https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:56.554417+00:00 Debian Importer Fixing VCID-wz6r-xzm9-m7hp https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:57:21.375390+00:00 Debian Importer Fixing VCID-dgwm-n1zx-qkbq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:55:48.104493+00:00 Debian Importer Fixing VCID-962a-dwqf-3ycg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:48:21.728021+00:00 Debian Importer Fixing VCID-8v2e-2y19-d3fc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-02T17:18:47.091315+00:00 Debian Importer Fixing VCID-e7jk-vs8y-fyhr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:17:50.225196+00:00 Debian Importer Fixing VCID-4kd3-95cm-g3fc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:16:08.342077+00:00 Debian Importer Fixing VCID-qgvy-hzsx-hkge https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:15:45.300514+00:00 Debian Importer Fixing VCID-66t7-51hw-4yap https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:14:05.229919+00:00 Debian Importer Fixing VCID-kdwy-7p45-hbcs https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:12:28.783769+00:00 Debian Importer Fixing VCID-dgwm-n1zx-qkbq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:12:01.955017+00:00 Debian Importer Fixing VCID-4bw1-v6ze-kbds https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:09:54.451766+00:00 Debian Importer Fixing VCID-ccz8-tmpe-wker https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:09:30.179529+00:00 Debian Importer Fixing VCID-8v2e-2y19-d3fc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:07:24.880857+00:00 Debian Importer Fixing VCID-ukut-zyjx-93gq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:07:08.252811+00:00 Debian Importer Fixing VCID-hd86-cja2-cud5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:06:48.789753+00:00 Debian Importer Fixing VCID-uhcz-v63r-m3ft https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:05:02.863291+00:00 Debian Importer Fixing VCID-xcze-cha6-3qcd https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:04:28.679188+00:00 Debian Importer Fixing VCID-2myh-pg75-1kgb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:03:14.385118+00:00 Debian Importer Fixing VCID-wz6r-xzm9-m7hp https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:02:51.347579+00:00 Debian Importer Fixing VCID-962a-dwqf-3ycg https://security-tracker.debian.org/tracker/data/json 38.1.0