[Git][security-tracker-team/security-tracker][master] new firefox issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu May 7 20:32:15 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1d3f8396 by Moritz Muehlenhoff at 2026-05-07T21:29:46+02:00
new firefox issues

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,21 @@
 CVE-2026-8094 (Other issue in the WebRTC component. This vulnerability was fixed in F ...)
-	TODO: check
+	- firefox-esr <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8094
 CVE-2026-8093 (Memory safety bugs present in Firefox 150.0.1. Some of these bugs show ...)
-	TODO: check
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8093
 CVE-2026-8092 (Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10 ...)
-	TODO: check
+	- firefox <unfixed>
+	- firefox-esr <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8092
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8092
 CVE-2026-8091 (Incorrect boundary conditions in the Audio/Video: Playback component.  ...)
 	TODO: check
 CVE-2026-8090 (Use-after-free in the DOM: Networking component. This vulnerability wa ...)
-	TODO: check
+	- firefox <unfixed>
+	- firefox-esr <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8090
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8090
 CVE-2026-8086 (A vulnerability was identified in OSGeo gdal up to 3.13.0dev-4. This i ...)
 	TODO: check
 CVE-2026-8084 (A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This v ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -29,6 +29,8 @@ firebird3.0
 --
 firebird4.0/stable
 --
+firefox-esr (jmm)
+--
 frr
 --
 gh/oldstable



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d3f83968b6ed9efeb935fe409cb09036d1690f7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d3f83968b6ed9efeb935fe409cb09036d1690f7
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260507/b8ed5f63/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list