Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5259-1] firefox-esr security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5259-1] firefox-esr security update


Chronologisch Thread  
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5259-1] firefox-esr security update
  • Date: Wed, 19 Oct 2022 19:37:03 +0000
  • Authentication-results: mail.piratenpartei.de; dkim=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
  • List-archive: https://lists.debian.org/msgid-search/Y1BR31Q4kPVCLKLS AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=EWZeMhoeQ4ED1N2sjlUD9MFl2pApgKiAtZFqy+fv3B8=; b=pb ht7X0vUlEtWi52mGe9rS39Q4/HKBbzJ2U6l0MvAxTbplo+Z5M8IPRS7Wzqs6RTx+lEB9jKEGOfZf7 c/GlyM3x0ScECkja9nribphhMZTJ4+hiVXF5ERCzB2LBppFyyCIbYCH7sDa2NCb8W7yhjBa3JQ827 aI55h9Ytg7LPVG/4pq/eEFp4L1wZSb9VKV4WoBjkBbvL9yzL7YUHVV5/cZRduRnatSXC0OI+ZedXP QNWyJ04Q2jhye/F7SjC+kUwmHIPrK1Ih4FDqU4/VsX29nTu3LqEYmEQBla/9Bt0qFa0ntP75ikGBE X69h9U6S9FYGG/wI89G+U17qyBmPROpA==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Wed, 19 Oct 2022 19:37:27 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <RtN_CRv_vJC.A.TPE.3HFUjB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5259-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
October 19, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2022-42927 CVE-2022-42928 CVE-2022-42929 CVE-2022-42932

Multiple security issues have been found in the Mozilla Firefox
web browser, which could potentially result in the execution
of arbitrary code or information disclosure.

For the stable distribution (bullseye), these problems have been fixed in
version 102.4.0esr-1~deb11u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=l2ad
-----END PGP SIGNATURE-----



  • [IT-SecNots] [SECURITY] [DSA 5259-1] firefox-esr security update, Moritz Muehlenhoff, 19.10.2022

Archiv bereitgestellt durch MHonArc 2.6.24.

Seitenanfang