Mozilla Foundation reports:
Please reference CVE/URL list for details
Discovery 2016-11-15
Entry 2016-11-16
firefox
< 50.0_1,1
seamonkey
linux-seamonkey
< 2.47
firefox-esr
< 45.5.0,1
linux-firefox
< 45.5.0,2
libxul
thunderbird
linux-thunderbird
< 45.5.0
CVE-2016-5289
CVE-2016-5290
CVE-2016-5291
CVE-2016-5292
CVE-2016-5293
CVE-2016-5294
CVE-2016-5295
CVE-2016-5296
CVE-2016-5297
CVE-2016-5298
CVE-2016-5299
CVE-2016-9061
CVE-2016-9062
CVE-2016-9063
CVE-2016-9064
CVE-2016-9065
CVE-2016-9066
CVE-2016-9067
CVE-2016-9068
CVE-2016-9070
CVE-2016-9071
CVE-2016-9072
CVE-2016-9073
CVE-2016-9074
CVE-2016-9075
CVE-2016-9076
CVE-2016-9077
https://www.mozilla.org/security/advisories/mfsa2016-89/
https://www.mozilla.org/security/advisories/mfsa2016-90/
Mozilla Foundation reports:
CVE-2019-11751: Malicious code execution through command line parameters
CVE-2019-11746: Use-after-free while manipulating video
CVE-2019-11744: XSS by breaking out of title and textarea elements using innerHTML
CVE-2019-11742: Same-origin policy violation with SVG filters and canvas to steal cross-origin images
CVE-2019-11736: File manipulation and privilege escalation in Mozilla Maintenance Service
CVE-2019-11753: Privilege escalation with Mozilla Maintenance Service in custom Firefox installation location
CVE-2019-11752: Use-after-free while extracting a key value in IndexedDB
CVE-2019-9812: Sandbox escape through Firefox Sync
CVE-2019-11741: Isolate addons.mozilla.org and accounts.firefox.com
CVE-2019-11743: Cross-origin access to unload event attributes
CVE-2019-11748: Persistence of WebRTC permissions in a third party context
CVE-2019-11749: Camera information available without prompting using getUserMedia
CVE-2019-5849: Out-of-bounds read in Skia
CVE-2019-11750: Type confusion in Spidermonkey
CVE-2019-11737: Content security policy directives ignore port and path if host is a wildcard
CVE-2019-11738: Content security policy bypass through hash-based sources in directives
CVE-2019-11747: 'Forget about this site' removes sites from pre-loaded HSTS list
CVE-2019-11734: Memory safety bugs fixed in Firefox 69
CVE-2019-11735: Memory safety bugs fixed in Firefox 69 and Firefox ESR 68.1
CVE-2019-11740: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9
Discovery 2019-09-03
Entry 2019-09-03
firefox
< 69.0,1
waterfox
< 56.2.14
seamonkey
linux-seamonkey
< 2.53.0
firefox-esr
ge 61.0,1 lt 68.1.0,1
< 60.9.0,1
linux-firefox
ge 61.0,2 lt 68.1.0,2
< 60.9.0,2
libxul
thunderbird
linux-thunderbird
ge 61.0 lt 68.1.0
< 60.9.0
CVE-2019-11734
CVE-2019-11735
CVE-2019-11736
CVE-2019-11737
CVE-2019-11738
CVE-2019-11740
CVE-2019-11741
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11747
CVE-2019-11748
CVE-2019-11749
CVE-2019-11750
CVE-2019-11751
CVE-2019-11752
CVE-2019-11753
CVE-2019-5849
CVE-2019-9812
https://www.mozilla.org/security/advisories/mfsa2019-25/
https://www.mozilla.org/security/advisories/mfsa2019-26/
https://www.mozilla.org/security/advisories/mfsa2019-27/
Mozilla Foundation reports:
CVE-2018-18500: Use-after-free parsing HTML5 stream
CVE-2018-18503: Memory corruption with Audio Buffer
CVE-2018-18504: Memory corruption and out-of-bounds read of texture client buffer
CVE-2018-18505: Privilege escalation through IPC channel messages
CVE-2018-18506: Proxy Auto-Configuration file can define localhost access to be proxied
CVE-2018-18502: Memory safety bugs fixed in Firefox 65
CVE-2018-18501: Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5
Discovery 2019-01-29
Entry 2019-01-29
Modified 2019-07-23
firefox
< 65.0_1,1
waterfox
< 56.2.7
seamonkey
linux-seamonkey
< 2.53.0
firefox-esr
< 60.5.0_1,1
linux-firefox
< 60.5.0,2
libxul
thunderbird
linux-thunderbird
< 60.5.0
CVE-2018-18500
CVE-2018-18501
CVE-2018-18502
CVE-2018-18503
CVE-2018-18504
CVE-2018-18505
CVE-2018-18506
https://www.mozilla.org/en-US/security/advisories/mfsa2019-01/
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/
Mozilla Foundation reports:
CVE-2016-9894: Buffer overflow in SkiaGL
CVE-2016-9899: Use-after-free while manipulating DOM events and audio elements
CVE-2016-9895: CSP bypass using marquee tag
CVE-2016-9896: Use-after-free with WebVR
CVE-2016-9897: Memory corruption in libGLES
CVE-2016-9898: Use-after-free in Editor while manipulating DOM subtrees
CVE-2016-9900: Restricted external resources can be loaded by SVG images through data URLs
CVE-2016-9904: Cross-origin information leak in shared atoms
CVE-2016-9901: Data from Pocket server improperly sanitized before execution
CVE-2016-9902: Pocket extension does not validate the origin of events
CVE-2016-9903: XSS injection vulnerability in add-ons SDK
CVE-2016-9080: Memory safety bugs fixed in Firefox 50.1
CVE-2016-9893: Memory safety bugs fixed in Firefox 50.1 and Firefox ESR 45.6
Discovery 2016-12-13
Entry 2016-12-14
firefox
< 50.1.0_1,1
seamonkey
linux-seamonkey
< 2.47
firefox-esr
< 45.6.0,1
linux-firefox
< 45.6.0,2
libxul
thunderbird
linux-thunderbird
< 45.6.0
CVE-2016-9894
CVE-2016-9899
CVE-2016-9895
CVE-2016-9896
CVE-2016-9897
CVE-2016-9898
CVE-2016-9900
CVE-2016-9904
CVE-2016-9901
CVE-2016-9902
CVE-2016-9903
CVE-2016-9080
CVE-2016-9893
https://www.mozilla.org/security/advisories/mfsa2016-94/
https://www.mozilla.org/security/advisories/mfsa2016-95/
Mozilla Foundation reports:
Please reference CVE/URL list for details
Discovery 2017-06-13
Entry 2017-06-13
Modified 2017-09-19
firefox
< 54.0,1
seamonkey
linux-seamonkey
< 2.49.1
firefox-esr
< 52.2.0,1
linux-firefox
< 52.2.0,2
libxul
thunderbird
linux-thunderbird
< 52.2.0
CVE-2017-5470
CVE-2017-5471
CVE-2017-5472
CVE-2017-7749
CVE-2017-7750
CVE-2017-7751
CVE-2017-7752
CVE-2017-7754
CVE-2017-7755
CVE-2017-7756
CVE-2017-7757
CVE-2017-7758
CVE-2017-7759
CVE-2017-7760
CVE-2017-7761
CVE-2017-7762
CVE-2017-7763
CVE-2017-7764
CVE-2017-7765
CVE-2017-7766
CVE-2017-7767
CVE-2017-7768
CVE-2017-7778
https://www.mozilla.org/en-US/security/advisories/mfsa2017-15/
https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/
Mozilla Foundation reports:
CVE-2017-7843: Web worker in Private Browsing mode can write IndexedDB data
CVE-2017-7844: Visited history information leak through SVG image
Discovery 2017-11-29
Entry 2017-12-05
firefox
ge 57.0,1 lt 57.0.1,1
< 56.0.2_11,1
waterfox
< 56.0.s20171130
seamonkey
linux-seamonkey
< 2.49.2
firefox-esr
< 52.5.1,1
linux-firefox
< 52.5.1,2
CVE-2017-7843
CVE-2017-7844
https://www.mozilla.org/security/advisories/mfsa2017-27/
The Mozilla Foundation reports:
A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows.
Discovery 2016-11-30
Entry 2016-12-01
Modified 2016-12-16
firefox
< 50.0.2,1
firefox-esr
< 45.5.1,1
linux-firefox
< 45.5.1,2
seamonkey
< 2.46
linux-seamonkey
< 2.46
libxul
< 45.5.1
thunderbird
< 45.5.1
linux-thunderbird
< 45.5.1
CVE-2016-9079
https://www.mozilla.org/en-US/security/advisories/mfsa2016-92/
Mozilla Foundation reports:
Please reference CVE/URL list for details
Discovery 2017-01-24
Entry 2017-01-24
firefox
< 51.0_1,1
seamonkey
linux-seamonkey
< 2.48
firefox-esr
< 45.7.0,1
linux-firefox
< 45.7.0,2
libxul
thunderbird
linux-thunderbird
< 45.7.0
CVE-2017-5373
CVE-2017-5374
CVE-2017-5375
CVE-2017-5376
CVE-2017-5377
CVE-2017-5378
CVE-2017-5379
CVE-2017-5380
CVE-2017-5381
CVE-2017-5382
CVE-2017-5383
CVE-2017-5384
CVE-2017-5385
CVE-2017-5386
CVE-2017-5387
CVE-2017-5388
CVE-2017-5389
CVE-2017-5390
CVE-2017-5391
CVE-2017-5392
CVE-2017-5393
CVE-2017-5394
CVE-2017-5395
CVE-2017-5396
https://www.mozilla.org/security/advisories/mfsa2017-01/
https://www.mozilla.org/security/advisories/mfsa2017-02/
Mozilla Foundation reports:
CVE-2017-7828: Use-after-free of PressShell while restyling layout
CVE-2017-7830: Cross-origin URL information leak through Resource Timing API
CVE-2017-7831: Information disclosure of exposed properties on JavaScript proxy objects
CVE-2017-7832: Domain spoofing through use of dotless 'i' character followed by accent markers
CVE-2017-7833: Domain spoofing with Arabic and Indic vowel marker characters
CVE-2017-7834: data: URLs opened in new tabs bypass CSP protections
CVE-2017-7835: Mixed content blocking incorrectly applies with redirects
CVE-2017-7836: Pingsender dynamically loads libcurl on Linux and OS X
CVE-2017-7837: SVG loaded as
can use meta tags to set cookies
CVE-2017-7838: Failure of individual decoding of labels in international domain names triggers punycode display of entire IDN
CVE-2017-7839: Control characters before javascript: URLs defeats self-XSS prevention mechanism
CVE-2017-7840: Exported bookmarks do not strip script elements from user-supplied tags
CVE-2017-7842: Referrer Policy is not always respected for elements
CVE-2017-7827: Memory safety bugs fixed in Firefox 57
CVE-2017-7826: Memory safety bugs fixed in Firefox 57 and Firefox ESR 52.5
Discovery 2017-11-14
Entry 2017-11-14
firefox
< 56.0.2_10,1
seamonkey
linux-seamonkey
< 2.49.2
firefox-esr
< 52.5.0,1
linux-firefox
< 52.5.0,2
libxul
thunderbird
linux-thunderbird
< 52.5.0
CVE-2017-7826
CVE-2017-7827
CVE-2017-7828
CVE-2017-7830
CVE-2017-7831
CVE-2017-7832
CVE-2017-7833
CVE-2017-7834
CVE-2017-7835
CVE-2017-7836
CVE-2017-7837
CVE-2017-7838
CVE-2017-7839
CVE-2017-7840
CVE-2017-7842
https://www.mozilla.org/security/advisories/mfsa2017-24/
https://www.mozilla.org/security/advisories/mfsa2017-25/
The Mozilla Foundation reports:
CVE-2018-5148: Use-after-free in compositor
A use-after-free vulnerability can occur in the compositor during certain graphics operations when a raw pointer is used instead of a reference counted one. This results in a potentially exploitable crash.
Discovery 2018-03-26
Entry 2018-03-27
Modified 2018-03-31
firefox
< 59.0.2,1
waterfox
< 56.0.4.36_3
seamonkey
linux-seamonkey
< 2.49.3
firefox-esr
< 52.7.3,1
linux-firefox
< 52.7.3,2
libxul
< 52.7.3
linux-thunderbird
< 52.7.1
thunderbird
< 52.7.0_1
CVE-2018-5148
https://www.mozilla.org/security/advisories/mfsa2018-10/
Mozilla Foundation reports:
CVE-2016-2827 - Out-of-bounds read in mozilla::net::IsValidReferrerPolicy [low]
CVE-2016-5256 - Memory safety bugs fixed in Firefox 49 [critical]
CVE-2016-5257 - Memory safety bugs fixed in Firefox 49 and Firefox ESR 45.4 [critical]
CVE-2016-5270 - Heap-buffer-overflow in nsCaseTransformTextRunFactory::TransformString [high]
CVE-2016-5271 - Out-of-bounds read in PropertyProvider::GetSpacingInternal [low]
CVE-2016-5272 - Bad cast in nsImageGeometryMixin [high]
CVE-2016-5273 - crash in mozilla::a11y::HyperTextAccessible::GetChildOffset [high]
CVE-2016-5274 - use-after-free in nsFrameManager::CaptureFrameState [high]
CVE-2016-5275 - global-buffer-overflow in mozilla::gfx::FilterSupport::ComputeSourceNeededRegions [critical]
CVE-2016-5276 - Heap-use-after-free in mozilla::a11y::DocAccessible::ProcessInvalidationList [high]
CVE-2016-5277 - Heap-use-after-free in nsRefreshDriver::Tick [high]
CVE-2016-5278 - Heap-buffer-overflow in nsBMPEncoder::AddImageFrame [critical]
CVE-2016-5279 - Full local path of files is available to web pages after drag and drop [moderate]
CVE-2016-5280 - Use-after-free in mozilla::nsTextNodeDirectionalityMap::RemoveElementFromMap [high]
CVE-2016-5281 - use-after-free in DOMSVGLength [high]
CVE-2016-5282 - Don't allow content to request favicons from non-whitelisted schemes [moderate]
CVE-2016-5283 -