it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5950-1] firefox-esr security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 5950-1] firefox-esr security update
Date: Wed, 25 Jun 2025 21:02:05 +0000
Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
List-archive: https://lists.debian.org/msgid-search/aFxjzafJ28DBltgH AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=jOWgjLZ7OW4uQyH9wb9RzZOT4oDkUXlVKG3bVJM2lNI=; b=G+ D4PRFm8HtCB6omBYwiq9WESjlB9XGma9shN24450qbc3CFHtmx3YW1PB45IFk+Gzyrqiebyta58Qs 8wws+EVytIOT8prZoFq6suOiOdaSTf97PQrI1ee7MDxv31oT3Qih/ThFwMn7MHzL0DjIK9UoYCcHO vj74NykTuxNZQU+CrO9lN87kdCgHz613lxnNmrV8AmDbfrWobXCmK02jHH8J/2SPz8eS6eOOWIdeE nPwbW3PLNIjKeC5wsTXBj012WS7v3RPIMMfGWH0S4A0emxuxzQs7s87050ZQlxvcklelMiKw8zXyO ETlK5PzSG+BLG+K/Pt0EjByVH6sRQjfg==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Wed, 25 Jun 2025 21:02:30 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <8REqNmw-cPK.A.l-FO.mPGXoB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5950-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
June 25, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2025-6424 CVE-2025-6425 CVE-2025-6429 CVE-2025-6430

Multiple security issues have been found in the Mozilla Firefox
web browser, which could potentially result in the execution
of arbitrary code.

For the stable distribution (bookworm), these problems have been fixed in
version 128.12.0esr-1~deb12u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=gMvF
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 5950-1] firefox-esr security update, Moritz Muehlenhoff, 25.06.2025

Archiv bereitgestellt durch MHonArc 2.6.19+.