it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5129-1] firefox-esr security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 5129-1] firefox-esr security update
Date: Wed, 4 May 2022 18:03:17 +0000
List-archive: https://lists.debian.org/msgid-search/20220504180317.GA20247 AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=0H0mC4p6MrIeSNwvlcpusLWEjiXaBQ+nk5NoQMjXuRA=; b=Tv S7moEXkznRQGAPzlZs9hAz9n7XCiolPeW8SaXswLWR8mpeE/E7N18SwTBWdLRXCZJmyXiZt6/wn8C NRpCHJ7euNSUxV5wA6jb7IIGZavDRLFEmF3n3lH4AOWvcnNgnsjdzvKsR+jIhkGZcroCZFQYodMz/ whLkUxE7zawxH1oKPm2ILfW1qt1AdDiGaUCvft9bpTDRNtlg467wuCNZpWm36VG3yRDRP4aSPE4uL 96h2hAEzVJsoj/dwpCLuC/rliZ5Sy/ZCv7e/hVikF+plzc5fr+rjk5L6bjKvylhbWyZahJig1YW24 tZhoE4FnUjEEGDHFEb62G05YA6eFsmfg==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Wed, 4 May 2022 18:03:34 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <E2ylzd_ZJJJ.A.uHG.1_rciB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5129-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
May 04, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2022-29909 CVE-2022-29911 CVE-2022-29912 CVE-2022-29914
CVE-2022-29916 CVE-2022-29917

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, information disclosure or spoofing.

For the oldstable distribution (buster), these problems have been fixed
in version 91.9.0esr-1~deb10u1.

For the stable distribution (bullseye), these problems have been fixed in
version 91.9.0esr-1~deb11u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=9ozl
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 5129-1] firefox-esr security update, Moritz Muehlenhoff, 04.05.2022

Archiv bereitgestellt durch MHonArc 2.6.24.