DSA-6078-1

NameDSA-6078-1
Descriptionfirefox-esr - security update
SourceDebian
ReferencesCVE-2025-14321, CVE-2025-14322, CVE-2025-14323, CVE-2025-14324, CVE-2025-14325, CVE-2025-14328, CVE-2025-14329, CVE-2025-14330, CVE-2025-14331, CVE-2025-14333

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
firefox-esr (PTS)bookworm128.14.0esr-1~deb12u1vulnerable
bookworm (security)140.6.0esr-1~deb12u1fixed
trixie140.4.0esr-1~deb13u1vulnerable
trixie (security)140.6.0esr-1~deb13u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
firefox-esrsourcebookworm140.6.0esr-1~deb12u1
firefox-esrsourcetrixie140.6.0esr-1~deb13u1
Search for package or bug name: Reporting problems