Search for packages
| purl | pkg:deb/debian/firefox-esr@128.10.0esr-1 |
| Tags | Ghost |
| Next non-vulnerable version | 128.11.0esr-1~deb12u1 |
| Latest non-vulnerable version | 128.11.0esr-1~deb12u1 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-9ru8-kjym-aaae
Aliases: CVE-2023-5217 GHSA-qqvq-6xgj-jw8g |
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-05-02T17:56:46.408352+00:00 | Debian Importer | Fixing | VCID-92ju-8t11-sqf7 | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-05-02T12:33:10.852661+00:00 | Debian Importer | Fixing | VCID-12vf-f2r4-bqge | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-05-02T12:21:53.104156+00:00 | Debian Importer | Fixing | VCID-8h5s-cdt9-guh9 | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-05-02T06:06:11.329194+00:00 | Debian Importer | Affected by | VCID-9ru8-kjym-aaae | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-05-02T01:07:50.007274+00:00 | Debian Importer | Fixing | VCID-qdcz-15x5-6qfp | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-05-01T17:56:16.093724+00:00 | Debian Importer | Fixing | VCID-9ru8-kjym-aaae | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |