[SECURITY] [DLA 3391-1] firefox-esr security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 3391-1] firefox-esr security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Wed, 12 Apr 2023 20:03:59 +0200 (CEST)
Message-id: <[🔎] 20230412180359.A00512A067E@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3391-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
April 12, 2023                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : firefox-esr
Version        : 102.10.0esr-1~deb10u1
CVE ID         : CVE-2023-1945 CVE-2023-29533 CVE-2023-29535 CVE-2023-29536
                 CVE-2023-29539 CVE-2023-29541 CVE-2023-29548 CVE-2023-29550
Debian Bug     : 982794

Multiple security issues have been found in the Mozilla Firefox
web browser, which could potentially result in the execution
of arbitrary code or spoofing.

For Debian 10 buster, these problems have been fixed in version
102.10.0esr-1~deb10u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=7LkU
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 3389-1] lldpd security update
Next by Date: [SECURITY] [DLA 3392-1] ruby-rack security update
Previous by thread: [SECURITY] [DLA 3389-1] lldpd security update
Next by thread: [SECURITY] [DLA 3392-1] ruby-rack security update
Index(es):
- Date
- Thread