it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5217-1] firefox-esr security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 5217-1] firefox-esr security update
Date: Wed, 24 Aug 2022 19:16:31 +0000
Authentication-results: mail.piratenpartei.de; dkim=none; dmarc=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"
List-archive: https://lists.debian.org/msgid-search/20220824191631.GA27988 AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=RDbcJ4vKRR/0bK7so94vdDWZpbgK+0sZh/HHA/VZhrA=; b=Dq V8x0wg3P8MLq1A72XVq62ux1v+UWbfPPbMMOzLbLrtmRpBUpDyuZUqecwUolKhoiRJE9OzfFdMGRa gW1y/rE+MRUqaYdkwrrXJtVo2K4ElsaNH5H9GzAET0+ifgS+D1Sc9e9FyWtw9UMmb22L7R219Hqie H4DCpt+0dEQVWy/CHWFlQ6NsA67S0BWKJCfrF8eqQsdc04k5qZai4fW7dEU+VwwqJr2Y7rSJ50mot LQtrs+6q08k84rjNasG8ikB4L11SA5J9BJKGjordqPof12C9GBQUhUKzwPyBWB1G0/BoGVUmevUXd 88Kfop4EFKk5VHOecNZeIhgmu568rk5Q==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Wed, 24 Aug 2022 19:16:56 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <SV1eCazEgpP.A.A1C.oknBjB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5217-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
August 24, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2022-38472 CVE-2022-38473 CVE-2022-38478

Multiple security issues have been found in the Mozilla Firefox
web browser, which could potentially result in the execution
of arbitrary code or spoofing.

For the stable distribution (bullseye), these problems have been fixed in
version 91.13.0esr-1~deb11u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=jpDx
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 5217-1] firefox-esr security update, Moritz Muehlenhoff, 24.08.2022

Archiv bereitgestellt durch MHonArc 2.6.24.