Subscriptions for security advisory alerts for Firefox enterprise
I'm a security analyst. I would like to get email notifications on security advisories, alerts and vulnerability information regarding Firefox to stay up to date. Please help on how I can get the subscription?
Chosen solution
If you subscribe to https://groups.google.com/a/mozilla.org/g/announce via the group email, each release announcement contains links to advisories for that release. For example:
Release notes for Firefox 115.7.0esr are available at: https://www.mozilla.org/firefox/115.7.0/releasenotes/
Associated security advisories are posted at: https://www.mozilla.org/security/advisories/mfsa2024-02/
That's your best option.
Read this answer in context 👍 1All Replies (4)
So this pages lists known vulnerabilities for all products:
https://www.mozilla.org/en-US/security/known-vulnerabilities/
And you can subscribe to https://groups.google.com/a/mozilla.org/g/announce for announcement of Firefox releases or watch https://github.com/mozilla/foundation-security-advisories for advisories.
And we publish our advisories to the CVE.org database as soon as we make the commit to the github repo
Hope that helps.
Hi Mike, Thanks for the information. The links for known vulnerabilities and security advisories are meant to check only when my team opens those links but is there a way to get these delivered to our group email when they are posted in your website?
Chosen Solution
If you subscribe to https://groups.google.com/a/mozilla.org/g/announce via the group email, each release announcement contains links to advisories for that release. For example:
Release notes for Firefox 115.7.0esr are available at: https://www.mozilla.org/firefox/115.7.0/releasenotes/
Associated security advisories are posted at: https://www.mozilla.org/security/advisories/mfsa2024-02/
That's your best option.
There also a raw JSON feed from MITRE.