Where did you install Firefox from? Help Mozilla uncover 3rd party websites that offer problematic Firefox installation by taking part in our campaign. There will be swag, and you'll be featured in our blog if you manage to report at least 10 valid reports!

Avatar for Username

Pomoc pśepytaś

Glědajśo se wobšudy pomocy. Njenapominajomy was nigda, telefonowy numer zawołaś, SMS pósłaś abo wósobinske informacije pśeraźiś. Pšosym dajśo suspektnu aktiwitu z pomocu nastajenja „Znjewužywanje k wěsći daś“ k wěsći.

Learn More

Subscriptions for security advisory alerts for Firefox enterprise

  • 4 wótegrona
  • 0 ma toś ten problem
  • 8 naglědow
  • Slědne wótegrono wót Mike Kaply

nandini.vempati
nandini.vempati
more options

I'm a security analyst. I would like to get email notifications on security advisories, alerts and vulnerability information regarding Firefox to stay up to date. Please help on how I can get the subscription?

I'm a security analyst. I would like to get email notifications on security advisories, alerts and vulnerability information regarding Firefox to stay up to date. Please help on how I can get the subscription?

Wubrane rozwězanje

If you subscribe to https://groups.google.com/a/mozilla.org/g/announce via the group email, each release announcement contains links to advisories for that release. For example:

Release notes for Firefox 115.7.0esr are available at: https://www.mozilla.org/firefox/115.7.0/releasenotes/

Associated security advisories are posted at: https://www.mozilla.org/security/advisories/mfsa2024-02/

That's your best option.

Toś to wótegrono w konteksće cytaś 👍 1

Wšykne wótegrona (4)

Mike Kaply
Mike Kaply
  • Moderator
more options

So this pages lists known vulnerabilities for all products:

https://www.mozilla.org/en-US/security/known-vulnerabilities/

And you can subscribe to https://groups.google.com/a/mozilla.org/g/announce for announcement of Firefox releases or watch https://github.com/mozilla/foundation-security-advisories for advisories.

And we publish our advisories to the CVE.org database as soon as we make the commit to the github repo

Hope that helps.

Wužytny?

nandini.vempati
nandini.vempati Pšašaŕ
more options

Hi Mike, Thanks for the information. The links for known vulnerabilities and security advisories are meant to check only when my team opens those links but is there a way to get these delivered to our group email when they are posted in your website?

Wužytny?

Mike Kaply
Mike Kaply
  • Moderator
more options

Wubrane rozwězanje

If you subscribe to https://groups.google.com/a/mozilla.org/g/announce via the group email, each release announcement contains links to advisories for that release. For example:

Release notes for Firefox 115.7.0esr are available at: https://www.mozilla.org/firefox/115.7.0/releasenotes/

Associated security advisories are posted at: https://www.mozilla.org/security/advisories/mfsa2024-02/

That's your best option.

Wužytny?

Mike Kaply
Mike Kaply
  • Moderator
more options

There also a raw JSON feed from MITRE.

https://www.mozilla.org/security/advisories/cve-feed.json

Wužytny?

Stajśo pšašanje

Musyśo se pla swójogo konta pśizjawiś, aby na pśinoski wótegronił. Pšosym stajśo pšašanje, jolic hyšći njamaśo wužywaŕske konto.