VulnerableCode Package Details - pkg:deb/debian/firefox@146.0-1?distro=sid

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-1jqj-tqfp-73f7	JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14325
VCID-4g7u-xmdq-mkdn	Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14328
VCID-5kwn-x8e4-ukgq	Memory safety bugs present in Firefox ESR 140.5, Thunderbird ESR 140.5, Firefox 145 and Thunderbird 145. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.	CVE-2025-14333
VCID-84jf-84jx-3fgj	Privilege escalation in the DOM: Notifications component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14323
VCID-db28-rbyf-1qf4	Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14329
VCID-epbu-sqny-23ez	Use-after-free in the Audio/Video: GMP component. This vulnerability affects Firefox < 146 and Thunderbird < 146.	CVE-2025-14326
VCID-h9em-p9se-rucn	Use-after-free in the WebRTC: Signaling component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14321
VCID-hccf-ueut-vugw	Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14322
VCID-k3wz-tvrb-p3fg	Memory safety bugs present in Firefox 145 and Thunderbird 145. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.	CVE-2025-14332
VCID-kk2m-2mxz-sbex	Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146, Thunderbird < 146, Firefox ESR < 140.7, and Thunderbird < 140.7.	CVE-2025-14327
VCID-pcgf-xtfq-6ugb	JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14330
VCID-tkzd-c11q-3qaf	Same-origin policy bypass in the Request Handling component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14331
VCID-xghm-4ygw-tkb2	JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.	CVE-2025-14324

Vulnerability

Summary

Aliases

VCID-1jqj-tqfp-73f7

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14325

VCID-4g7u-xmdq-mkdn

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14328

VCID-5kwn-x8e4-ukgq

Memory safety bugs present in Firefox ESR 140.5, Thunderbird ESR 140.5, Firefox 145 and Thunderbird 145. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

CVE-2025-14333

VCID-84jf-84jx-3fgj

Privilege escalation in the DOM: Notifications component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14323

VCID-db28-rbyf-1qf4

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14329

VCID-epbu-sqny-23ez

Use-after-free in the Audio/Video: GMP component. This vulnerability affects Firefox < 146 and Thunderbird < 146.

CVE-2025-14326

VCID-h9em-p9se-rucn

Use-after-free in the WebRTC: Signaling component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14321

VCID-hccf-ueut-vugw

Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14322

VCID-k3wz-tvrb-p3fg

Memory safety bugs present in Firefox 145 and Thunderbird 145. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

CVE-2025-14332

VCID-kk2m-2mxz-sbex

Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146, Thunderbird < 146, Firefox ESR < 140.7, and Thunderbird < 140.7.

CVE-2025-14327

VCID-pcgf-xtfq-6ugb

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14330

VCID-tkzd-c11q-3qaf

Same-origin policy bypass in the Request Handling component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14331

VCID-xghm-4ygw-tkb2

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

CVE-2025-14324

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:50:41.970989+00:00	Debian Importer	Fixing	VCID-84jf-84jx-3fgj	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:22:48.521198+00:00	Debian Importer	Fixing	VCID-k3wz-tvrb-p3fg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:44:29.580805+00:00	Debian Importer	Fixing	VCID-xghm-4ygw-tkb2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:25:28.463713+00:00	Debian Importer	Fixing	VCID-1jqj-tqfp-73f7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:10:19.350454+00:00	Debian Importer	Fixing	VCID-pcgf-xtfq-6ugb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:58:47.593575+00:00	Debian Importer	Fixing	VCID-epbu-sqny-23ez	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:52:25.163073+00:00	Debian Importer	Fixing	VCID-hccf-ueut-vugw	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:46:47.444960+00:00	Debian Importer	Fixing	VCID-h9em-p9se-rucn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:31:09.523344+00:00	Debian Importer	Fixing	VCID-kk2m-2mxz-sbex	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:21:38.470045+00:00	Debian Importer	Fixing	VCID-db28-rbyf-1qf4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:14:15.928817+00:00	Debian Importer	Fixing	VCID-5kwn-x8e4-ukgq	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:06:00.579251+00:00	Debian Importer	Fixing	VCID-tkzd-c11q-3qaf	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:58:46.746967+00:00	Debian Importer	Fixing	VCID-4g7u-xmdq-mkdn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:21:44.682159+00:00	Debian Importer	Fixing	VCID-5kwn-x8e4-ukgq	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:16:14.057182+00:00	Debian Importer	Fixing	VCID-xghm-4ygw-tkb2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:14:59.199399+00:00	Debian Importer	Fixing	VCID-k3wz-tvrb-p3fg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:11:11.428813+00:00	Debian Importer	Fixing	VCID-kk2m-2mxz-sbex	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:05:04.962725+00:00	Debian Importer	Fixing	VCID-84jf-84jx-3fgj	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:30:20.978485+00:00	Debian Importer	Fixing	VCID-h9em-p9se-rucn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:01:51.412655+00:00	Debian Importer	Fixing	VCID-1jqj-tqfp-73f7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:53:27.975618+00:00	Debian Importer	Fixing	VCID-hccf-ueut-vugw	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:50:04.045964+00:00	Debian Importer	Fixing	VCID-pcgf-xtfq-6ugb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:41:11.154764+00:00	Debian Importer	Fixing	VCID-epbu-sqny-23ez	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:15:06.895669+00:00	Debian Importer	Fixing	VCID-db28-rbyf-1qf4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:13:56.286941+00:00	Debian Importer	Fixing	VCID-4g7u-xmdq-mkdn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:05:48.979792+00:00	Debian Importer	Fixing	VCID-tkzd-c11q-3qaf	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-02T17:17:17.720823+00:00	Debian Importer	Fixing	VCID-xghm-4ygw-tkb2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:20.987661+00:00	Debian Importer	Fixing	VCID-kk2m-2mxz-sbex	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:14:08.249433+00:00	Debian Importer	Fixing	VCID-5kwn-x8e4-ukgq	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:40.714392+00:00	Debian Importer	Fixing	VCID-k3wz-tvrb-p3fg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:51.338987+00:00	Debian Importer	Fixing	VCID-84jf-84jx-3fgj	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:10:13.410032+00:00	Debian Importer	Fixing	VCID-h9em-p9se-rucn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:37.444397+00:00	Debian Importer	Fixing	VCID-4g7u-xmdq-mkdn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:08:05.807965+00:00	Debian Importer	Fixing	VCID-1jqj-tqfp-73f7	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:07:28.012270+00:00	Debian Importer	Fixing	VCID-hccf-ueut-vugw	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:07:10.738251+00:00	Debian Importer	Fixing	VCID-pcgf-xtfq-6ugb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:38.380254+00:00	Debian Importer	Fixing	VCID-epbu-sqny-23ez	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:04:39.931700+00:00	Debian Importer	Fixing	VCID-db28-rbyf-1qf4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:03:49.086437+00:00	Debian Importer	Fixing	VCID-tkzd-c11q-3qaf	https://security-tracker.debian.org/tracker/data/json	38.1.0

2026-04-16T11:50:41.970989+00:00

Debian Importer

Fixing

VCID-84jf-84jx-3fgj

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T11:22:48.521198+00:00

Debian Importer

Fixing

VCID-k3wz-tvrb-p3fg

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T10:44:29.580805+00:00

Debian Importer

Fixing

VCID-xghm-4ygw-tkb2

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T10:25:28.463713+00:00

Debian Importer

Fixing

VCID-1jqj-tqfp-73f7

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T10:10:19.350454+00:00

Debian Importer

Fixing

VCID-pcgf-xtfq-6ugb

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:58:47.593575+00:00

Debian Importer

Fixing

VCID-epbu-sqny-23ez

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:52:25.163073+00:00

Debian Importer

Fixing

VCID-hccf-ueut-vugw

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:46:47.444960+00:00

Debian Importer

Fixing

VCID-h9em-p9se-rucn

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:31:09.523344+00:00

Debian Importer

Fixing

VCID-kk2m-2mxz-sbex

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:21:38.470045+00:00

Debian Importer

Fixing

VCID-db28-rbyf-1qf4

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:14:15.928817+00:00

Debian Importer

Fixing

VCID-5kwn-x8e4-ukgq

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:06:00.579251+00:00

Debian Importer

Fixing

VCID-tkzd-c11q-3qaf

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T08:58:46.746967+00:00

Debian Importer

Fixing

VCID-4g7u-xmdq-mkdn

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-13T08:21:44.682159+00:00

Debian Importer

Fixing

VCID-5kwn-x8e4-ukgq

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T08:16:14.057182+00:00

Debian Importer

Fixing

VCID-xghm-4ygw-tkb2

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T08:14:59.199399+00:00

Debian Importer

Fixing

VCID-k3wz-tvrb-p3fg

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T08:11:11.428813+00:00

Debian Importer

Fixing

VCID-kk2m-2mxz-sbex

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T08:05:04.962725+00:00

Debian Importer

Fixing

VCID-84jf-84jx-3fgj

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T07:30:20.978485+00:00

Debian Importer

Fixing

VCID-h9em-p9se-rucn

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T07:01:51.412655+00:00

Debian Importer

Fixing

VCID-1jqj-tqfp-73f7

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T06:53:27.975618+00:00

Debian Importer

Fixing

VCID-hccf-ueut-vugw

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T06:50:04.045964+00:00

Debian Importer

Fixing

VCID-pcgf-xtfq-6ugb

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T06:41:11.154764+00:00

Debian Importer

Fixing

VCID-epbu-sqny-23ez

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-11T18:15:06.895669+00:00

Debian Importer

Fixing

VCID-db28-rbyf-1qf4

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-11T18:13:56.286941+00:00

Debian Importer

Fixing

VCID-4g7u-xmdq-mkdn

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-11T18:05:48.979792+00:00

Debian Importer

Fixing

VCID-tkzd-c11q-3qaf

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-02T17:17:17.720823+00:00

Debian Importer

Fixing

VCID-xghm-4ygw-tkb2

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:15:20.987661+00:00

Debian Importer

Fixing

VCID-kk2m-2mxz-sbex

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:14:08.249433+00:00

Debian Importer

Fixing

VCID-5kwn-x8e4-ukgq

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:13:40.714392+00:00

Debian Importer

Fixing

VCID-k3wz-tvrb-p3fg

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:12:51.338987+00:00

Debian Importer

Fixing

VCID-84jf-84jx-3fgj

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:10:13.410032+00:00

Debian Importer

Fixing

VCID-h9em-p9se-rucn

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:09:37.444397+00:00

Debian Importer

Fixing

VCID-4g7u-xmdq-mkdn

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:08:05.807965+00:00

Debian Importer

Fixing

VCID-1jqj-tqfp-73f7

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:07:28.012270+00:00

Debian Importer

Fixing

VCID-hccf-ueut-vugw

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:07:10.738251+00:00

Debian Importer

Fixing

VCID-pcgf-xtfq-6ugb

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:06:38.380254+00:00

Debian Importer

Fixing

VCID-epbu-sqny-23ez

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:04:39.931700+00:00

Debian Importer

Fixing

VCID-db28-rbyf-1qf4

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-02T17:03:49.086437+00:00

Debian Importer

Fixing

VCID-tkzd-c11q-3qaf

https://security-tracker.debian.org/tracker/data/json

38.1.0