Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/firefox@102.10.0-1?arch=el8_7
purl pkg:rpm/redhat/firefox@102.10.0-1?arch=el8_7
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (9)
Vulnerability Summary Fixed by
VCID-5hzf-gdbj-8ud8
Aliases:
CVE-2023-1999
Double Free There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free. There are no reported fixed by versions.
VCID-73wu-d7y3-7bge
Aliases:
CVE-2023-1945
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
VCID-7b8k-mgs3-cud5
Aliases:
CVE-2023-29550
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
VCID-a8gt-y9j7-zuhs
Aliases:
CVE-2023-29548
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
VCID-as8g-vnyj-u7hk
Aliases:
CVE-2023-29539
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
VCID-bc7q-srps-sfd7
Aliases:
CVE-2023-29541
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
VCID-w814-2cmz-ruhz
Aliases:
CVE-2023-29535
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
VCID-yhj1-h62u-mud5
Aliases:
CVE-2023-29533
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
VCID-yjyu-u73t-u7bh
Aliases:
CVE-2023-29536
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:54:30.642224+00:00 RedHat Importer Affected by VCID-7b8k-mgs3-cud5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29550.json 38.0.0
2026-04-01T13:54:30.078482+00:00 RedHat Importer Affected by VCID-a8gt-y9j7-zuhs https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29548.json 38.0.0
2026-04-01T13:54:29.522985+00:00 RedHat Importer Affected by VCID-73wu-d7y3-7bge https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1945.json 38.0.0
2026-04-01T13:54:28.927855+00:00 RedHat Importer Affected by VCID-bc7q-srps-sfd7 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29541.json 38.0.0
2026-04-01T13:54:28.388520+00:00 RedHat Importer Affected by VCID-as8g-vnyj-u7hk https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29539.json 38.0.0
2026-04-01T13:54:27.838244+00:00 RedHat Importer Affected by VCID-yjyu-u73t-u7bh https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29536.json 38.0.0
2026-04-01T13:54:27.268961+00:00 RedHat Importer Affected by VCID-w814-2cmz-ruhz https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29535.json 38.0.0
2026-04-01T13:54:26.699547+00:00 RedHat Importer Affected by VCID-5hzf-gdbj-8ud8 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1999.json 38.0.0
2026-04-01T13:54:25.662349+00:00 RedHat Importer Affected by VCID-yhj1-h62u-mud5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29533.json 38.0.0