it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5839-1] firefox-esr security update
- Date: Wed, 8 Jan 2025 19:21:07 +0000
- Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
- List-archive: https://lists.debian.org/msgid-search/Z37QI452g26r8w7X AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=Jat5JuxWU5OEY/VQiLnRT0ell5KjIDAGJyzBzu8XeYw=; b=GJ Qh/LRQjzyajUKHE1wLlgH7Eg+bQfJPuY2O4RHMN7XC7jrDSBNC46RZqkxgkzm82oLX8GDk8ruDGKF hc4sEddnJyefUYIq3sqN7fJAD5YiIIbbbxeiNl9ZJ//aP0T+cYR0pmgnYuVPaWDIqVrpQX/JUNVYA s5cQM8uY9vBfilJo7J1+uZ7y6mjZfyuPtxZfCyX/udyBPrsmZ1Ypz8sA/WjH5YCEDeZNPrmzqXubl qV8EgzRiocNJJPnI61EBnBb/jpxfqi0jYjs7gvL2EBbpvR7r7KCbctuFFgaz9tmPyWbv8yCUCKtyt xd/5y5X9ZvEne1FWiCJ65h5139mcXBtA==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Wed, 8 Jan 2025 19:21:30 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <a4yoyWXVjXB.A.PqgF.6AtfnB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5839-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
January 08, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : firefox-esr
CVE ID : CVE-2025-0237 CVE-2025-0238 CVE-2025-0239 CVE-2025-0240
CVE-2025-0241 CVE-2025-0242 CVE-2025-0243
Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code or privilege escalation.
For the stable distribution (bookworm), these problems have been fixed in
version 128.6.0esr-1~deb12u1.
We recommend that you upgrade your firefox-esr packages.
For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=Wmv/
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5839-1] firefox-esr security update, Moritz Muehlenhoff, 08.01.2025
Archiv bereitgestellt durch MHonArc 2.6.19+.