it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5322-1] firefox-esr security update
- Date: Wed, 18 Jan 2023 19:18:50 +0000
- Authentication-results: mail.piratenpartei.de; dkim=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
- List-archive: https://lists.debian.org/msgid-search/Y8hGGtXUIumrvVbX AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=hoKJl3onphVSHrKEvQJlOnloObD4fONMsF9A37vTpgo=; b=h9 dL/Xoe5kt5nhtrOG8MMztNemiPBHov8XDoNJyydtAWNNmTwnc7EjKl6vrXQHecZ4qPihpSQ3oSid2 JX3ieromJyDxbW/Xrw0heKdE/FZU6T+CJHhY4ZJn5kyo0gnnADqdrm5G1QD2lyQfLVft2cnH5ioyy JqNFKH+POGhkuuhhL8KlRF2ed/ORHSBEpvGzyKN1x4IATJM+i05WsbctQiW8qGgVxR5Yn5gLfYgeq vhGJVdquatTSUiaIiQagfXHeVYTZbnFpkzj5H898+BTKCyeDOwT/zJBY/98NSfBTf+4OMcuWG6ELu ErED/Zk31Hox03ghUc1Ad0j/f0RZ+bgA==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Wed, 18 Jan 2023 19:19:23 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <Zc3sMy53OdC.A.BzH.7YEyjB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5322-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
January 18, 2023 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : firefox-esr
CVE ID : CVE-2022-46871 CVE-2022-46877 CVE-2023-23598 CVE-2023-23601
CVE-2023-23602 CVE-2023-23603 CVE-2023-23605
Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, information disclosure or spoofing.
For the stable distribution (bullseye), these problems have been fixed in
version 102.7.0esr-1~deb11u1.
We recommend that you upgrade your firefox-esr packages.
For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=gXru
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5322-1] firefox-esr security update, Moritz Muehlenhoff, 18.01.2023
Archiv bereitgestellt durch MHonArc 2.6.24.