[SECURITY] [DLA 2575-1] firefox-esr security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 2575-1] firefox-esr security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Thu, 25 Feb 2021 11:48:48 +0100 (CET)
Message-id: <[🔎] 20210225104848.155822A1276@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2575-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
February 25, 2021                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : firefox-esr
Version        : 78.8.0esr-1~deb9u1
CVE ID         : CVE-2021-23968 CVE-2021-23969 CVE-2021-23973 CVE-2021-23978

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code or information disclosure.

For Debian 9 stretch, these problems have been fixed in version
78.8.0esr-1~deb9u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=CJe5
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2574-1] openldap security update
Next by Date: [SECURITY] [DLA 2576-1] redis security update
Previous by thread: [SECURITY] [DLA 2574-1] openldap security update
Next by thread: [SECURITY] [DLA 2576-1] redis security update
Index(es):
- Date
- Thread