Search for packages
Package details: pkg:alpm/archlinux/firefox@59.0-2
purl pkg:alpm/archlinux/firefox@59.0-2
Next non-vulnerable version 59.0.1-1
Latest non-vulnerable version 101.0-1
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-125v-6567-aaam
Aliases:
CVE-2018-5146
An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affects Firefox < 59.0.1, Firefox ESR < 52.7.2, and Thunderbird < 52.7.
59.0.1-1
Affected by 0 other vulnerabilities.
VCID-gn8c-rxsu-aaac
Aliases:
CVE-2018-5147
The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on Android and ARM platforms. This vulnerability affects Firefox ESR < 52.7.2 and Firefox < 59.0.1.
59.0.1-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T07:44:36.735272+00:00 Arch Linux Importer Affected by VCID-125v-6567-aaam https://security.archlinux.org/AVG-657 36.0.0
2025-03-28T07:44:36.635238+00:00 Arch Linux Importer Affected by VCID-gn8c-rxsu-aaac https://security.archlinux.org/AVG-659 36.0.0
2024-09-18T01:59:40.745359+00:00 Arch Linux Importer Affected by VCID-125v-6567-aaam https://security.archlinux.org/AVG-657 34.0.1
2024-09-18T01:59:40.639333+00:00 Arch Linux Importer Affected by VCID-gn8c-rxsu-aaac https://security.archlinux.org/AVG-659 34.0.1
2024-01-20T12:06:24.039669+00:00 Arch Linux Importer Affected by VCID-125v-6567-aaam https://security.archlinux.org/AVG-657 34.0.0rc2
2024-01-03T22:25:56.524255+00:00 Arch Linux Importer Affected by VCID-125v-6567-aaam https://security.archlinux.org/AVG-657 34.0.0rc1
2024-01-03T22:25:56.433704+00:00 Arch Linux Importer Affected by VCID-gn8c-rxsu-aaac https://security.archlinux.org/AVG-659 34.0.0rc1