Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5964-1] firefox-esr security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5964-1] firefox-esr security update


Chronologisch Thread  
    < Chronologisch >       < Thread >
  • From: Salvatore Bonaccorso <carnil AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5964-1] firefox-esr security update
  • Date: Wed, 23 Jul 2025 20:31:33 +0000
  • Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
  • List-archive: https://lists.debian.org/msgid-search/E1ueg7h-006aSi-1Y AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Date:Message-Id:Subject:To:From:Reply-To:Cc:MIME-Version: Content-Type:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=2JHMjh1bLTMPYBtyZ3weEze/yM/8YTPOh3+cCLCKCN8=; b=eV mmJtNh2p/SObMt2iBtTxJMDUCvtl4KZqOnA800sV4CgoBgjTABgyRi1fMULGxQ3Z8Ppmlf4bnxGdM by21dO5IonF3zugF0QUZhvE1oxXZNl5NIsjsGdjDvrq7alf9tYDVzq+lu+4oK5Y+occxwx+dTZred 1ogpbF6bUMjBYp9ijr0hDpnoceDi+0i6Yvpn9fRoRG3yS6erzVjM4GpfqqM8rzj6TofwoeKiCT4MH Fn/CxY+e6uiCpQezsn2/U+IXfVZP3HtleLaBmaR/p0Vup/O8LSFEM48iPS0iksqAy4WZ9wwVHy33t e4ItieMIdVAC2lLi0vge1BcWoO4p7Myg==;
  • Old-return-path: <carnil AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Wed, 23 Jul 2025 20:31:57 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <W3hI5CmTfjD.A.W0MJ.9aUgoB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5964-1 security AT debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
July 23, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2025-8027 CVE-2025-8028 CVE-2025-8029 CVE-2025-8030
CVE-2025-8031 CVE-2025-8032 CVE-2025-8033 CVE-2025-8034
CVE-2025-8035

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code.

For the stable distribution (bookworm), these problems have been fixed in
version 128.13.0esr-1~deb12u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=Uagp
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5964-1] firefox-esr security update, Salvatore Bonaccorso, 23.07.2025

Archiv bereitgestellt durch MHonArc 2.6.19+.

Seitenanfang