[SECURITY] [DLA 1910-1] firefox-esr security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1910-1] firefox-esr security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Fri, 6 Sep 2019 11:37:16 +0200
Message-id: <[🔎] f18cca64-66a4-6334-79a6-2a554bc8e698@debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : firefox-esr
Version        : 60.9.0esr-1~deb8u1
CVE ID         : CVE-2019-9812 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743
                 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, cross-site scripting, bypass of the same-origin policy, sandbox
escape, information disclosure or denial of service.

For Debian 8 "Jessie", these problems have been fixed in version
60.9.0esr-1~deb8u1.

We recommend that you upgrade your firefox-esr packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=i9ne
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1909-1] freetype security update
Next by Date: [SECURITY] [DLA 1911-1] exim4 security update
Previous by thread: [SECURITY] [DLA 1909-1] freetype security update
Next by thread: [SECURITY] [DLA 1911-1] exim4 security update
Index(es):
- Date
- Thread