it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5172-1] firefox-esr security update
- Date: Wed, 29 Jun 2022 17:25:23 +0000
- Authentication-results: mail.piratenpartei.de; dkim=none; dmarc=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"
- List-archive: https://lists.debian.org/msgid-search/20220629172523.GA3040 AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=yhn3ZbKfERGOy6qcT0ia/sUnRZyFToFIil6fHxORvzk=; b=YZ kZTIpM+BH5pd4Cyb09q+iTqN9caTjzfcQYPV3mWBe+KiA2B/8XVGkIBnbUJ9p4c6GVrmtAsir7Q5g kJBCiMfm8j7Pkrj39kBxggjR3UnSnW5yEj6qdP+9pjyC0P7y2+2ht6puv9BaAY6zNOcfrBnBLu3EJ dHpvPqpdD10DMq7tHHpLQSI300f/ebpgLnkX8JDj7+RCQ6Ip0z4jI/cSw5E4U8LfVnbkdu4xi8hZ4 ymoazQXrDQ09whokBb3viCMjSwYjAY7MOnFDFnEgkkWc6EHWYqtoTstzWeFUaLzUCrbZU8V3f3cl7 LUQik2GgxjGh/9JG1iFkdmeT7IxjRNsg==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Wed, 29 Jun 2022 17:25:45 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <A95efD8pHqG.A.zmD.ZsIviB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5172-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
June 29, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : firefox-esr
CVE ID : CVE-2022-2200 CVE-2022-31744 CVE-2022-34468 CVE-2022-34470
CVE-2022-34472 CVE-2022-34479 CVE-2022-34481 CVE-2022-34484
Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code or spoofing.
For the oldstable distribution (buster), these problems have been fixed
in version 91.11.0esr-1~deb10u1.
For the stable distribution (bullseye), these problems have been fixed in
version 91.11.0esr-1~deb11u1.
We recommend that you upgrade your firefox-esr packages.
For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=VOrC
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5172-1] firefox-esr security update, Moritz Muehlenhoff, 29.06.2022
Archiv bereitgestellt durch MHonArc 2.6.24.