[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1321-1] firefox-esr security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : firefox-esr
Version        : 52.7.3esr-1~deb7u1
CVE ID         : CVE-2018-5148

Jesse Schwartzentruber discovered a use-after-free vulnerability
in Firefox, which could be exploited to trigger an application
crash or arbitrary code execution.

For Debian 7 "Wheezy", these problems have been fixed in version
52.7.3esr-1~deb7u1.

We recommend that you upgrade your firefox-esr packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=P4jI
-----END PGP SIGNATURE-----


Reply to: