Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/firefox@38.0-4?arch=el5_11
purl pkg:rpm/redhat/firefox@38.0-4?arch=el5_11
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-51hn-ab8w-c7bn
Aliases:
CVE-2015-2713
Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. There are no reported fixed by versions.
VCID-55t4-7jnq-j7fx
Aliases:
CVE-2015-2716
Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. There are no reported fixed by versions.
VCID-et32-whyj-dyev
Aliases:
CVE-2015-4496
Security researcher Joshua Drake reported potential integer overflows in the libstagefright library while processing video sample metadata in MPEG4 video files. This can lead to a potentially exploitable crash. There are no reported fixed by versions.
VCID-ghtc-dh9g-2ufb
Aliases:
CVE-2015-2708
Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. There are no reported fixed by versions.
VCID-pcxu-acuh-m3be
Aliases:
CVE-2015-0797
A buffer overflow in GStreamer could allow remote attackers to execute arbitrary code or cause Denial of Service. There are no reported fixed by versions.
VCID-xx39-5rg1-b3am
Aliases:
CVE-2015-2710
Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T14:41:08.346874+00:00 RedHat Importer Affected by VCID-55t4-7jnq-j7fx https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2716.json 38.0.0
2026-04-01T14:41:08.207331+00:00 RedHat Importer Affected by VCID-51hn-ab8w-c7bn https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2713.json 38.0.0
2026-04-01T14:41:08.084661+00:00 RedHat Importer Affected by VCID-xx39-5rg1-b3am https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2710.json 38.0.0
2026-04-01T14:41:08.018015+00:00 RedHat Importer Affected by VCID-pcxu-acuh-m3be https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0797.json 38.0.0
2026-04-01T14:41:07.919116+00:00 RedHat Importer Affected by VCID-ghtc-dh9g-2ufb https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2708.json 38.0.0
2026-04-01T14:40:09.770107+00:00 RedHat Importer Affected by VCID-et32-whyj-dyev https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-4496.json 38.0.0