Search CVE reports

Toggle filters

51 – 60 of 2287 results

CVE-2026-2763

Medium priority
Vulnerable

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2762

Medium priority
Vulnerable

Integer overflow in the JavaScript: Standard Library component. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2761

Medium priority
Vulnerable

Sandbox escape in the Graphics: WebRender component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2760

Medium priority
Vulnerable

Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2759

Medium priority
Vulnerable

Incorrect boundary conditions in the Graphics: ImageLib component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2758

Medium priority
Vulnerable

Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2757

Medium priority
Vulnerable

Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

9 affected packages

mozjs38, firefox, thunderbird, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mozjs38 Not in release Not in release Needs evaluation
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2634

Medium priority
Ignored

Malicious scripts could cause desynchronization between the address bar and web content before a response is received in Firefox iOS, allowing attacker-controlled pages to be presented under spoofed domains. This vulnerability...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Not affected
mozjs38 Not in release Not in release Not affected
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2447

Medium priority

Some fixes available 3 of 8

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

3 affected packages

firefox, thunderbird, libvpx

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
libvpx Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-2032

Medium priority
Vulnerable

Malicious scripts that interrupt new tab page loading could cause desynchronization between the address bar and page content, allowing the attacker to spoof arbitrary HTML under a trusted domain. This vulnerability affects Firefox...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages
  1. Previous page
  2. 4
  3. 5
  4. 6
  5. 7
  6. 8
  7. Next page
Export to JSON