Search CVE reports

Toggle filters

1 – 10 of 533 results

CVE-2026-2447

Medium priority
Vulnerable

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

10 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
libvpx Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show all 10 packages Show less packages

CVE-2026-2032

Medium priority
Vulnerable

Malicious scripts that interrupt new tab page loading could cause desynchronization between the address bar and page content, allowing the attacker to spoof arbitrary HTML under a trusted domain. This vulnerability affects Firefox...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0892

Medium priority
Needs evaluation

Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Not affected
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0891

Medium priority

Some fixes available 1 of 11

Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Fixed
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0890

Medium priority

Some fixes available 1 of 11

Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Fixed
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0887

Medium priority

Some fixes available 1 of 11

Clickjacking issue, information disclosure in the PDF Viewer component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Fixed
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0886

Medium priority

Some fixes available 1 of 11

Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Fixed
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0885

Medium priority

Some fixes available 1 of 11

Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Fixed
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0884

Medium priority

Some fixes available 1 of 11

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Fixed
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0883

Medium priority

Some fixes available 1 of 11

Information disclosure in the Networking component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Fixed
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON