{"id":"DSA-6101-1","summary":"firefox-esr - security update","modified":"2026-01-15T20:30:09.798707Z","published":"2026-01-15T00:00:00Z","upstream":["CVE-2025-14327","CVE-2026-0877","CVE-2026-0878","CVE-2026-0879","CVE-2026-0880","CVE-2026-0882","CVE-2026-0883","CVE-2026-0884","CVE-2026-0885","CVE-2026-0886","CVE-2026-0887","CVE-2026-0890","CVE-2026-0891","DEBIAN-CVE-2025-14327","DEBIAN-CVE-2026-0877","DEBIAN-CVE-2026-0878","DEBIAN-CVE-2026-0879","DEBIAN-CVE-2026-0880","DEBIAN-CVE-2026-0882","DEBIAN-CVE-2026-0883","DEBIAN-CVE-2026-0884","DEBIAN-CVE-2026-0885","DEBIAN-CVE-2026-0886","DEBIAN-CVE-2026-0887","DEBIAN-CVE-2026-0890","DEBIAN-CVE-2026-0891"],"affected":[{"package":{"name":"firefox-esr","ecosystem":"Debian:12","purl":"pkg:deb/debian/firefox-esr?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"140.7.0esr-1~deb12u1"}]}],"versions":["102.11.0esr-1","102.12.0esr-1","102.12.0esr-1~deb10u1","102.12.0esr-1~deb11u1","102.12.0esr-1~deb12u1","102.13.0esr-1","102.13.0esr-1~deb10u1","102.13.0esr-1~deb11u1","102.13.0esr-1~deb12u1","102.14.0esr-1~deb10u1","102.14.0esr-1~deb11u1","102.14.0esr-1~deb12u1","102.15.0esr-1~deb10u1","102.15.0esr-1~deb11u1","102.15.0esr-1~deb12u1","102.15.1esr-1~deb10u1","102.15.1esr-1~deb11u1","102.15.1esr-1~deb12u1","115.0.2esr-1","115.1.0esr-1","115.10.0esr-1","115.10.0esr-1~deb10u1","115.10.0esr-1~deb11u1","115.10.0esr-1~deb12u1","115.11.0esr-1","115.11.0esr-1~deb10u1","115.11.0esr-1~deb11u1","115.11.0esr-1~deb12u1","115.12.0esr-1","115.12.0esr-1~deb10u1","115.12.0esr-1~deb11u1","115.12.0esr-1~deb12u1","115.13.0esr-1","115.13.0esr-1~deb11u1","115.13.0esr-1~deb12u1","115.13.0esr-2","115.14.0esr-1","115.14.0esr-1~deb11u1","115.14.0esr-1~deb12u1","115.15.0esr-1","115.15.0esr-1~deb11u1","115.15.0esr-1~deb12u1","115.2.0esr-1","115.2.1esr-1","115.3.0esr-1","115.3.0esr-1~deb10u1","115.3.0esr-1~deb11u1","115.3.0esr-1~deb12u1","115.3.1esr-1~deb10u1","115.3.1esr-1~deb11u1","115.4.0esr-1","115.4.0esr-1~deb10u1","115.4.0esr-1~deb11u1","115.4.0esr-1~deb12u1","115.5.0esr-1","115.5.0esr-1~deb10u1","115.5.0esr-1~deb11u1","115.5.0esr-1~deb12u1","115.6.0esr-1","115.6.0esr-1~deb10u1","115.6.0esr-1~deb11u1","115.6.0esr-1~deb12u1","115.7.0esr-1","115.7.0esr-1~deb10u1","115.7.0esr-1~deb11u1","115.7.0esr-1~deb12u1","115.8.0esr-1","115.8.0esr-1~deb10u1","115.8.0esr-1~deb11u1","115.8.0esr-1~deb12u1","115.9.0esr-1","115.9.0esr-1~deb11u1","115.9.0esr-1~deb12u1","115.9.0esr-2","115.9.1esr-1","115.9.1esr-1~deb10u1","115.9.1esr-1~deb11u1","115.9.1esr-1~deb12u1","128.10.0esr-1","128.10.0esr-1~deb12u1","128.10.1esr-1","128.10.1esr-1~deb11u1","128.10.1esr-1~deb12u1","128.11.0esr-1","128.11.0esr-1~deb11u1","128.11.0esr-1~deb12u1","128.12.0esr-1","128.12.0esr-1~deb11u1","128.12.0esr-1~deb12u1","128.13.0esr-1","128.13.0esr-1~deb11u1","128.13.0esr-1~deb12u1","128.14.0esr-1","128.14.0esr-1~deb11u1","128.14.0esr-1~deb12u1","128.14.0esr-1~deb13u1","128.3.0esr-1","128.3.0esr-1~deb11u1","128.3.0esr-1~deb11u2","128.3.0esr-1~deb12u1","128.3.0esr-2","128.3.1esr-1","128.3.1esr-1~deb11u1","128.3.1esr-1~deb12u1","128.3.1esr-2","128.4.0esr-1","128.4.0esr-1~deb11u1","128.4.0esr-1~deb12u1","128.5.0esr-1","128.5.0esr-1~deb11u1","128.5.0esr-1~deb12u1","128.5.1esr-1","128.6.0esr-1","128.6.0esr-1~deb11u1","128.6.0esr-1~deb11u2","128.6.0esr-1~deb11u3","128.6.0esr-1~deb12u1","128.6.0esr-2","128.6.0esr-3","128.6.0esr-4","128.7.0esr-1","128.7.0esr-1~deb11u1","128.7.0esr-1~deb12u1","128.8.0esr-1","128.8.0esr-1~deb11u1","128.8.0esr-1~deb12u1","128.9.0esr-1","128.9.0esr-1~deb11u1","128.9.0esr-1~deb12u1","128.9.0esr-2","140.3.0esr-1","140.3.0esr-1~deb11u1","140.3.0esr-1~deb11u2","140.3.0esr-1~deb12u1","140.3.0esr-1~deb13u1","140.3.0esr-2","140.3.1esr-1","140.3.1esr-1~deb11u1","140.3.1esr-1~deb12u1","140.3.1esr-1~deb13u1","140.3.1esr-2","140.4.0esr-1","140.4.0esr-1~deb11u1","140.4.0esr-1~deb12u1","140.4.0esr-1~deb13u1","140.5.0esr-1","140.5.0esr-1~deb11u1","140.5.0esr-1~deb12u1","140.5.0esr-1~deb13u1","140.6.0esr-1","140.6.0esr-1~deb11u1","140.6.0esr-1~deb12u1","140.6.0esr-1~deb13u1","140.7.0esr-1~deb11u1"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-6101-1.json"}},{"package":{"name":"firefox-esr","ecosystem":"Debian:13","purl":"pkg:deb/debian/firefox-esr?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"140.7.0esr-1~deb13u1"}]}],"versions":["128.13.0esr-1","128.14.0esr-1","128.14.0esr-1~deb11u1","128.14.0esr-1~deb12u1","128.14.0esr-1~deb13u1","140.3.0esr-1","140.3.0esr-1~deb11u1","140.3.0esr-1~deb11u2","140.3.0esr-1~deb12u1","140.3.0esr-1~deb13u1","140.3.0esr-2","140.3.1esr-1","140.3.1esr-1~deb11u1","140.3.1esr-1~deb12u1","140.3.1esr-1~deb13u1","140.3.1esr-2","140.4.0esr-1","140.4.0esr-1~deb11u1","140.4.0esr-1~deb12u1","140.4.0esr-1~deb13u1","140.5.0esr-1","140.5.0esr-1~deb11u1","140.5.0esr-1~deb12u1","140.5.0esr-1~deb13u1","140.6.0esr-1","140.6.0esr-1~deb11u1","140.6.0esr-1~deb12u1","140.6.0esr-1~deb13u1","140.7.0esr-1~deb11u1","140.7.0esr-1~deb12u1"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-6101-1.json"}}],"schema_version":"1.7.3"}