[Git][security-tracker-team/security-tracker][master] Track fixes for firefox-esr via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 8 06:53:08 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
83299d1b by Salvatore Bonaccorso at 2026-05-08T07:52:37+02:00
Track fixes for firefox-esr via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,12 +1,12 @@
CVE-2026-8094 (Other issue in the WebRTC component. This vulnerability was fixed in F ...)
- - firefox-esr <unfixed>
+ - firefox-esr 140.10.2esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8094
CVE-2026-8093 (Memory safety bugs present in Firefox 150.0.1. Some of these bugs show ...)
- firefox <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8093
CVE-2026-8092 (Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10 ...)
- firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox-esr 140.10.2esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8092
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8092
CVE-2026-8091 (Incorrect boundary conditions in the Audio/Video: Playback component. ...)
@@ -19,7 +19,7 @@ CVE-2026-8091 (Incorrect boundary conditions in the Audio/Video: Playback compon
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-39/#CVE-2026-8091
CVE-2026-8090 (Use-after-free in the DOM: Networking component. This vulnerability wa ...)
- firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox-esr 140.10.2esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8090
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8090
CVE-2026-8086 (A vulnerability was identified in OSGeo gdal up to 3.13.0dev-4. This i ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83299d1b9aca99ba4c9c0a714e8b951bd3e6bcd3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83299d1b9aca99ba4c9c0a714e8b951bd3e6bcd3
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260508/177fed7c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list