Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:mozilla/Firefox@24.0.0
purl pkg:mozilla/Firefox@24.0.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (17)
Vulnerability Summary Aliases
VCID-1wj7-7cne-hugr Security researcher Alex Chapman reported that the Almost Native Graphics Layer Engine (ANGLE) library used by Mozilla is vulnerable to an integer overflow. This vulnerability is present because of insufficient bounds checking in the drawLineLoop function, which can be driven by web content to overflow allocated memory, leading to a potentially exploitable crash. In general this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled, but is potentially a risk in browser or browser-like contexts. CVE-2013-1721
VCID-2stf-rr9y-d3d1 Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1718
VCID-4mu8-e76c-kyeh Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1723
VCID-5d8h-k36y-wbaz Mozilla developer Victor Porof reported a flaw in the NVIDIA OS X graphic drivers that would allow portions of a user's desktop or other visible applications to be incorporated into WebGL canvases. This could result in personal information becoming available to web content. CVE-2013-1729
VCID-9c5k-2ftn-gqbg Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1732
VCID-b5rm-htak-byga Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1730
VCID-bdbv-4v22-27gs Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1726
VCID-h2ba-gpbd-fqfd Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1735
VCID-hjgf-d8dp-3faa Mozilla developer Vladimir Vukicevic reported that Firefox for Android will optionally load a shared object (.so) library in order to enable GL tracing. When this is occurs, it can be from a world writable location, allowing for it to be replaced by malicious third party applications before it is loaded by Firefox. This would allow for accessing of all Firefox data or for malicious code to be run by Firefox. This flaw requires malicious software to be loaded on the device and is not accessible by web content. CVE-2013-1731
VCID-kb3u-p728-83en Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1724
VCID-m466-854z-93f2 Security researcher Takeshi Terada reported a mechanism to violate same-origin policy for local files using file:// through the use of symbolic links. This problem only affects web pages loaded from the local filesystem. This could allow for cross-site scripting (XSS) and access to locally stored Firefox files containing passwords and cookies. This problem is specific to Firefox for Android. CVE-2013-1727
VCID-nfqd-hm51-mbbd Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1725
VCID-nn8u-pnsy-3ff4 Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1722
VCID-r6cj-4sj2-fyfc Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1738
VCID-s1xx-mnsy-4bbm Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1720
VCID-t5pz-h3w5-rbe6 Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1728
VCID-v49v-hsce-audp Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, and SeaMonkey, some of which may allow a remote user to execute arbitrary code. CVE-2013-1737

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:17:42.848991+00:00 Mozilla Importer Fixing VCID-nn8u-pnsy-3ff4 https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-79.md 38.0.0
2026-04-01T13:17:41.933293+00:00 Mozilla Importer Fixing VCID-4mu8-e76c-kyeh https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-80.md 38.0.0
2026-04-01T13:17:41.775931+00:00 Mozilla Importer Fixing VCID-h2ba-gpbd-fqfd https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-90.md 38.0.0
2026-04-01T13:17:40.669405+00:00 Mozilla Importer Fixing VCID-b5rm-htak-byga https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-88.md 38.0.0
2026-04-01T13:17:40.130567+00:00 Mozilla Importer Fixing VCID-r6cj-4sj2-fyfc https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-92.md 38.0.0
2026-04-01T13:17:39.935826+00:00 Mozilla Importer Fixing VCID-bdbv-4v22-27gs https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-83.md 38.0.0
2026-04-01T13:17:39.780121+00:00 Mozilla Importer Fixing VCID-9c5k-2ftn-gqbg https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-89.md 38.0.0
2026-04-01T13:17:39.746759+00:00 Mozilla Importer Fixing VCID-hjgf-d8dp-3faa https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-87.md 38.0.0
2026-04-01T13:17:39.446519+00:00 Mozilla Importer Fixing VCID-2stf-rr9y-d3d1 https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-76.md 38.0.0
2026-04-01T13:17:38.411742+00:00 Mozilla Importer Fixing VCID-m466-854z-93f2 https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-84.md 38.0.0
2026-04-01T13:17:38.332305+00:00 Mozilla Importer Fixing VCID-nfqd-hm51-mbbd https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-82.md 38.0.0
2026-04-01T13:17:37.401409+00:00 Mozilla Importer Fixing VCID-t5pz-h3w5-rbe6 https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-85.md 38.0.0
2026-04-01T13:17:37.354710+00:00 Mozilla Importer Fixing VCID-1wj7-7cne-hugr https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-78.md 38.0.0
2026-04-01T13:17:36.297280+00:00 Mozilla Importer Fixing VCID-kb3u-p728-83en https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-81.md 38.0.0
2026-04-01T13:17:35.535712+00:00 Mozilla Importer Fixing VCID-s1xx-mnsy-4bbm https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-77.md 38.0.0
2026-04-01T13:17:35.219700+00:00 Mozilla Importer Fixing VCID-v49v-hsce-audp https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-91.md 38.0.0
2026-04-01T13:17:34.290425+00:00 Mozilla Importer Fixing VCID-5d8h-k36y-wbaz https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2013/mfsa2013-86.md 38.0.0