[Git][security-tracker-team/security-tracker][master] add firefox-esr issues

Moritz Muehlenhoff (@jmm) Tue, 13 Jan 2026 07:59:07 -0800


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
e318ed0e by Moritz Muehlenhoff at 2026-01-13T16:58:31+01:00
add firefox-esr issues

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,10 +3,14 @@ CVE-2026-0892
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0892
 CVE-2026-0891
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0891
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0891
 CVE-2026-0890
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0890
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0890
 CVE-2026-0889
        - firefox <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0889
@@ -15,37 +19,57 @@ CVE-2026-0888
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0888
 CVE-2026-0887
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0887
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0887
 CVE-2026-0886
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0886
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0886
 CVE-2026-0885
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0885
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0885
 CVE-2026-0884
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0884
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0884
 CVE-2026-0883
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0883
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0883
 CVE-2026-0882
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0882
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0882
 CVE-2026-0881
        - firefox <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0881
 CVE-2026-0880
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0880
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0880
 CVE-2026-0879
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0879
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0879
 CVE-2026-0878
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0878
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0878
 CVE-2026-0877
        - firefox <unfixed>
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-01/#CVE-2026-0877
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2026-0877
 CVE-2026-22837
        REJECTED
 CVE-2026-22836
@@ -15567,7 +15591,9 @@ CVE-2025-14328 (Privilege escalation in the Netmonitor 
component. This vulnerabi
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2025-96/#CVE-2025-14328
 CVE-2025-14327 (Spoofing issue in the Downloads Panel component. This 
vulnerability af ...)
        - firefox 146.0-1
+       - firefox-esr <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2025-92/#CVE-2025-14327
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2026-03/#CVE-2025-14327
 CVE-2025-14326 (Use-after-free in the Audio/Video: GMP component. This 
vulnerability a ...)
        - firefox 146.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2025-92/#CVE-2025-14326


=====================================
data/dsa-needed.txt
=====================================
@@ -21,6 +21,8 @@ ceph
 cpp-httplib
   Maintainer preparing updates, waiting for feedback on bookworm status
 --
+firefox-esr (jmm)
+--
 frr/oldstable
   coordination with the maintainer ongoing, Daniel Baumann proposing an update
 --



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e318ed0e056c55d842b43eacf0c7398af36cd615

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e318ed0e056c55d842b43eacf0c7398af36cd615
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] add firefox-esr issues

Reply via email to