Search for packages
| purl | pkg:deb/debian/firefox-esr@128.11.0esr-1~deb12u1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-9ru8-kjym-aaae | Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
CVE-2023-5217
GHSA-qqvq-6xgj-jw8g |
| VCID-wf3e-41zq-a3h1 | Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) |
CVE-2025-5283
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:39:34.853428+00:00 | Debian Importer | Fixing | VCID-9ru8-kjym-aaae | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T03:53:45.657663+00:00 | Debian Importer | Fixing | VCID-wf3e-41zq-a3h1 | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-01T07:25:53.077863+00:00 | Debian Importer | Fixing | VCID-9ru8-kjym-aaae | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-05-31T18:28:22.031812+00:00 | Debian Importer | Fixing | VCID-wf3e-41zq-a3h1 | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |