VulnerableCode Package Details - pkg:alpm/archlinux/firefox@65.0-2

Search for packages

Package details: pkg:alpm/archlinux/firefox@65.0-2

Essentials
History (3)

purl	pkg:alpm/archlinux/firefox@65.0-2

Next non-vulnerable version	65.0.1-1
Latest non-vulnerable version	101.0-1
Risk	4.5

Vulnerabilities affecting this package (3)

Vulnerability	Summary	Fixed by
VCID-4yqd-ska3-vkgz Aliases: CVE-2019-5785	An integer overflow vulnerability in the Skia library can occur after specific transform operations, leading to a potentially exploitable crash.	65.0.1-1 Affected by 0 other vulnerabilities.
VCID-7bf4-t4mt-pubv Aliases: CVE-2018-18511	Cross-origin images can be read from a canvas element in violation of the same-origin policy using the transferFromImageBitmap method.	65.0.1-1 Affected by 0 other vulnerabilities.
VCID-9859-av5h-67dr Aliases: CVE-2018-18356	A use-after-free vulnerability in the Skia library can occur when creating a path, leading to a potentially exploitable crash.	65.0.1-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-31T11:36:59.677283+00:00	Arch Linux Importer	Affected by	VCID-9859-av5h-67dr	https://security.archlinux.org/AVG-896	37.0.0
2025-07-31T11:36:59.646861+00:00	Arch Linux Importer	Affected by	VCID-7bf4-t4mt-pubv	https://security.archlinux.org/AVG-896	37.0.0
2025-07-31T11:36:59.617889+00:00	Arch Linux Importer	Affected by	VCID-4yqd-ska3-vkgz	https://security.archlinux.org/AVG-896	37.0.0