Search CVE reports

111 – 120 of 637 results

Detailed view

Sort by:

CVE-2026-0886

Medium priority

Some fixes available 1 of 11

Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0885

Medium priority

Some fixes available 1 of 11

Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0884

Medium priority

Some fixes available 1 of 11

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0883

Medium priority

Some fixes available 1 of 11

Information disclosure in the Networking component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0882

Medium priority

Some fixes available 1 of 11

Use-after-free in the IPC component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0880

Medium priority

Some fixes available 1 of 11

Sandbox escape due to integer overflow in the Graphics component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0879

Medium priority

Some fixes available 1 of 11

Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0878

Medium priority

Some fixes available 1 of 11

Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2026-0877

Medium priority

Some fixes available 1 of 11

Mitigation bypass in the DOM: Security component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Fixed	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

CVE-2025-14861

Medium priority

Needs evaluation

Memory safety bugs present in Firefox 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Not affected	—	—
mozjs38	Not in release	Not in release	—	Needs evaluation
mozjs52	Not in release	Not in release	Ignored	Ignored
mozjs68	Not in release	Not in release	Ignored	—
mozjs78	Not in release	Ignored	—	—
mozjs91	Not in release	Ignored	—	—
mozjs102	Ignored	Ignored	—	—
mozjs115	Ignored	Not in release	—	—

Export to JSON

Results by page: