{"id":"DLA-636-1","summary":"firefox-esr - security update","modified":"2026-03-09T01:40:05.732031540Z","published":"2016-09-25T00:00:00Z","upstream":["CVE-2016-5250","CVE-2016-5257","CVE-2016-5261","CVE-2016-5270","CVE-2016-5272","CVE-2016-5274","CVE-2016-5276","CVE-2016-5277","CVE-2016-5278","CVE-2016-5280","CVE-2016-5281","CVE-2016-5284","DEBIAN-CVE-2016-5250","DEBIAN-CVE-2016-5257","DEBIAN-CVE-2016-5261","DEBIAN-CVE-2016-5270","DEBIAN-CVE-2016-5272","DEBIAN-CVE-2016-5274","DEBIAN-CVE-2016-5276","DEBIAN-CVE-2016-5277","DEBIAN-CVE-2016-5278","DEBIAN-CVE-2016-5280","DEBIAN-CVE-2016-5281","DEBIAN-CVE-2016-5284"],"affected":[{"package":{"name":"firefox-esr","ecosystem":"Debian:7","purl":"pkg:deb/debian/firefox-esr?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.4.0esr-1~deb7u1"}]}],"versions":["45.0.1esr-1","45.0.2esr-1","45.0esr-1","45.0esr-2","45.1.0esr-1","45.1.1esr-1","45.2.0esr-1","45.2.0esr-1~deb7u1","45.2.0esr-1~deb8u1","45.3.0esr-1","45.3.0esr-1~deb7u1","45.3.0esr-1~deb8u1","45.3.0esr-2"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dla-osv/DLA-636-1.json"}}],"schema_version":"1.7.3"}