{"id":"DSA-5026-1","summary":"firefox-esr - security update","modified":"2026-03-09T02:09:02.231950Z","published":"2021-12-19T00:00:00Z","upstream":["CVE-2021-38503","CVE-2021-38504","CVE-2021-38506","CVE-2021-38507","CVE-2021-38508","CVE-2021-38509","CVE-2021-4129","CVE-2021-43534","CVE-2021-43535","CVE-2021-43536","CVE-2021-43537","CVE-2021-43538","CVE-2021-43539","CVE-2021-43541","CVE-2021-43542","CVE-2021-43543","CVE-2021-43545","CVE-2021-43546","DEBIAN-CVE-2021-38503","DEBIAN-CVE-2021-38504","DEBIAN-CVE-2021-38506","DEBIAN-CVE-2021-38507","DEBIAN-CVE-2021-38508","DEBIAN-CVE-2021-38509","DEBIAN-CVE-2021-4129","DEBIAN-CVE-2021-43534","DEBIAN-CVE-2021-43535","DEBIAN-CVE-2021-43536","DEBIAN-CVE-2021-43537","DEBIAN-CVE-2021-43538","DEBIAN-CVE-2021-43539","DEBIAN-CVE-2021-43541","DEBIAN-CVE-2021-43542","DEBIAN-CVE-2021-43543","DEBIAN-CVE-2021-43545","DEBIAN-CVE-2021-43546"],"affected":[{"package":{"name":"firefox-esr","ecosystem":"Debian:11","purl":"pkg:deb/debian/firefox-esr?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"91.4.1esr-1~deb11u1"}]}],"versions":["78.12.0esr-1","78.13.0esr-1","78.13.0esr-1~deb10u1","78.13.0esr-1~deb11u1","78.13.0esr-1~deb9u1","78.14.0esr-1","78.14.0esr-1~deb10u1","78.14.0esr-1~deb11u1","78.14.0esr-1~deb9u1","78.15.0esr-1~deb10u1","78.15.0esr-1~deb11u1","78.15.0esr-1~deb9u1","91.0.1esr-1","91.0esr-1","91.1.0esr-1","91.2.0esr-1","91.3.0esr-1","91.3.0esr-2","91.4.0esr-1","91.4.1esr-1~deb9u1"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-5026-1.json"}}],"schema_version":"1.7.3"}