firefox vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the firefox package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
Integer Overflow or Wraparound

<26.0+build2-0ubuntu0.13.04.2
  • L
Cross-site Scripting (XSS)

<26.0+build2-0ubuntu0.13.04.2
  • M
CVE-2013-5609

<26.0+build2-0ubuntu0.13.04.2
  • M
CVE-2013-5615

<26.0+build2-0ubuntu0.13.04.2
  • M
Out-of-bounds Write

<26.0+build2-0ubuntu0.13.04.2
  • M
Use After Free

<26.0+build2-0ubuntu0.13.04.2
  • M
Use After Free

<26.0+build2-0ubuntu0.13.04.2
  • L
Cryptographic Issues

<26.0+build2-0ubuntu0.13.04.2
  • M
Use After Free

<26.0+build2-0ubuntu0.13.04.2
  • M
Arbitrary Code Injection

<26.0+build2-0ubuntu0.13.04.2
  • L
CVE-2013-5611

<26.0+build2-0ubuntu0.13.04.2
  • L
Information Exposure

<26.0+build2-0ubuntu0.13.04.2
  • L
Improper Restriction of Rendered UI Layers or Frames

<26.0+build2-0ubuntu0.13.04.2
  • M
Numeric Errors

<25.0.1+build1-0ubuntu0.13.04.1
  • M
Numeric Errors

<26.0+build2-0ubuntu0.13.04.2
  • M
Information Exposure

<26.0+build2-0ubuntu0.13.04.2
  • M
Numeric Errors

<25.0.1+build1-0ubuntu0.13.04.1
  • M
Improper Input Validation

<25.0.1+build1-0ubuntu0.13.04.1
  • M
CVE-2013-5597

<25.0+build3-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.13.04.1
  • L
Improper Input Validation

<25.0+build3-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-5591

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-5592

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-5600

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-5603

<25.0+build3-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-5599

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-5590

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-5601

<25.0+build3-0ubuntu0.13.04.1
  • M
Access Restriction Bypass

<25.0+build3-0ubuntu0.13.04.1
  • M
CVE-2013-1739

<25.0+build3-0ubuntu0.13.04.1
  • L
Access Restriction Bypass

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • L
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • M
Resource Management Errors

<24.0+build1-0ubuntu0.13.04.1
  • M
Improper Input Validation

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • M
Resource Management Errors

<24.0+build1-0ubuntu0.13.04.1
  • M
Resource Management Errors

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.13.04.1
  • L
CVE-2013-1708

<23.0+build2-0ubuntu0.13.04.1
  • M
Cross-site Scripting (XSS)

<23.0+build2-0ubuntu0.13.04.1
  • M
Improper Input Validation

<23.0+build2-0ubuntu0.13.04.1
  • M
Access Restriction Bypass

<23.0+build2-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<23.0+build2-0ubuntu0.13.04.1
  • M
CVE-2013-1701

<23.0+build2-0ubuntu0.13.04.1
  • M
CVE-2013-1702

<23.0+build2-0ubuntu0.13.04.1
  • M
Cross-site Scripting (XSS)

<23.0+build2-0ubuntu0.13.04.1
  • M
Access Restriction Bypass

<23.0+build2-0ubuntu0.13.04.1
  • M
Access Restriction Bypass

<23.0+build2-0ubuntu0.13.04.1
  • M
Resource Management Errors

<23.0+build2-0ubuntu0.13.04.1
  • M
CVE-2013-1683

<22.0+build1-0ubuntu0.13.04.1
  • M
Access Restriction Bypass

<22.0+build1-0ubuntu0.13.04.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.13.04.1
  • M
CVE-2013-1682

<22.0+build1-0ubuntu0.13.04.1
  • M
Resource Management Errors

<22.0+build1-0ubuntu0.13.04.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.13.04.1
  • M
Arbitrary Code Injection

<22.0+build1-0ubuntu0.13.04.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.13.04.1
  • M
Improper Input Validation

<22.0+build1-0ubuntu0.13.04.1
  • M
Access Restriction Bypass

<22.0+build1-0ubuntu0.13.04.1
  • L
Cryptographic Issues

<22.0+build1-0ubuntu0.13.04.1
  • M
Resource Management Errors

<22.0+build1-0ubuntu0.13.04.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.13.04.1
  • M
Access Restriction Bypass

<22.0+build1-0ubuntu0.13.04.1
  • M
Resource Management Errors

<22.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<22.0+build1-0ubuntu0.13.04.1
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.04.2
  • M
CVE-2013-0801

<21.0+build1-0ubuntu0.12.04.2
  • L
Improper Input Validation

<21.0+build1-0ubuntu0.12.04.2
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.04.2
  • M
Access Restriction Bypass

<21.0+build1-0ubuntu0.12.04.2
  • M
CVE-2013-1669

<21.0+build1-0ubuntu0.12.04.2
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.04.2
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.04.2
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.04.2
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.04.2
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.04.2
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.04.2
  • M
Access Restriction Bypass

<20.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<20.0+build1-0ubuntu1
  • L
Information Exposure

<20.0+build1-0ubuntu1
  • M
CVE-2013-0794

<20.0+build1-0ubuntu1
  • M
CVE-2013-0796

<20.0+build1-0ubuntu1
  • M
CVE-2013-0788

<20.0+build1-0ubuntu1
  • L
Out-of-Bounds

<20.0+build1-0ubuntu1
  • M
CVE-2013-0800

<20.0+build1-0ubuntu1
  • L
Inadequate Encryption Strength

<25.0.1+build1-0ubuntu0.13.04.1
  • M
Resource Management Errors

<19.0.2+build1-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
Arbitrary Code Injection

<19.0~b1+build2-0ubuntu1
  • M
Out-of-bounds Write

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
Information Exposure

<19.0~b1+build2-0ubuntu1
  • M
Improper Input Validation

<19.0~b1+build2-0ubuntu1
  • M
Inadequate Encryption Strength

<19.0~b1+build2-0ubuntu1
  • M
CVE-2013-0749

<19.0~b1+build2-0ubuntu1
  • M
Arbitrary Code Injection

<19.0~b1+build2-0ubuntu1
  • M
Improper Authentication

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
Out-of-Bounds

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
CVE-2013-0769

<19.0~b1+build2-0ubuntu1
  • M
Buffer Overflow

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
Out-of-bounds Write

<19.0~b1+build2-0ubuntu1
  • M
CVE-2013-0770

<19.0~b1+build2-0ubuntu1
  • M
Improper Input Validation

<19.0~b1+build2-0ubuntu1
  • M
Out-of-bounds Read

<19.0~b1+build2-0ubuntu1
  • M
Integer Overflow or Wraparound

<19.0~b1+build2-0ubuntu1
  • M
Use After Free

<19.0~b1+build2-0ubuntu1
  • M
CVE-2013-0746

<19.0~b1+build2-0ubuntu1
  • M
Arbitrary Code Injection

<17.0~b1+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<17.0~b1+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<17.0~b1+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Out-of-bounds Read

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • M
Improper Input Validation

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • M
Improper Privilege Management

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • H
Access Restriction Bypass

<16.0+build1-0ubuntu1
  • M
CVE-2012-3984

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
CVE-2012-5354

<16.0+build1-0ubuntu1
  • M
CVE-2012-3982

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Numeric Errors

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
CVE-2012-1971

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Arbitrary Code Injection

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
CVE-2012-3962

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<14.0~b6+build2-0ubuntu2
  • M
Information Exposure

<4.0.1+build1+nobinonly-0ubuntu0.11.04.1
  • M
Information Exposure

<12.0+build1-0ubuntu0.12.04.1