it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5801-1] firefox-esr security update
- Date: Thu, 31 Oct 2024 13:36:57 +0000
- Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
- List-archive: https://lists.debian.org/msgid-search/ZyOH+SofK+xn6FfQ AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=tas0rVhbSNbUfI/4P2gq/UbiEvBtB00067haLaPDFrU=; b=lU ZGaaeHbNQO/bVph5wHadb+GtdoVTt/PRTnOezu6ojquv9lmIbiD1I4A4dMPzU40r0pttT6HuQ4I6D ver+Sa+1FDTTi7scDMQRSbVK8vy7Q36RPOUjp6adL3TqYyGEHgPnouavNVuivL3fljYkwks1Xz2+R f9o0JtRDm85BXSPUsFxegHuD3CKPRvtxxcIVr4LTfH9Dc42kD+SIai2yv8+7XS5PVJIU45XJaV8wL TupMCA7X8u7v+es1iruWJ8TllyE2MEL6CXUswaL9WhLnO3GJafneF+dNfzVhbduVRK30m+gZu7MCN rnG/I8JaPoYfmiTEH36ZdMuIHdTN1j0Q==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Thu, 31 Oct 2024 13:37:23 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <cNiJmNLiLsO.A.gAhB.Tg4InB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5801-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
October 31, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : firefox-esr
CVE ID : CVE-2024-10458 CVE-2024-10459 CVE-2024-10460 CVE-2024-10461
CVE-2024-10462 CVE-2024-10463 CVE-2024-10464 CVE-2024-10465
CVE-2024-10466 CVE-2024-10467
Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, cross-site scripting, spoofing or information disclosure.
For the stable distribution (bookworm), these problems have been fixed in
version 128.4.0esr-1~deb12u1.
We recommend that you upgrade your firefox-esr packages.
For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=Tz4t
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5801-1] firefox-esr security update, Moritz Muehlenhoff, 31.10.2024
Archiv bereitgestellt durch MHonArc 2.6.19+.