[SECURITY] [DLA 2942-1] firefox-esr security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 2942-1] firefox-esr security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Thu, 10 Mar 2022 09:20:59 +0100 (CET)
Message-id: <[🔎] 20220310082059.39C942A02C3@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2942-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
March 10, 2022                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : firefox-esr
Version        : 91.7.0esr-1~deb9u1
CVE ID         : CVE-2022-26381 CVE-2022-26383 CVE-2022-26384 CVE-2022-26386
                 CVE-2022-26387

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, information disclosure, spoofing or sandbox bypass.

For Debian 9 stretch, these problems have been fixed in version
91.7.0esr-1~deb9u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=0p3G
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2941-1] linux-4.19 security update
Next by Date: [SECURITY] [DLA 2944-1] nbd security update
Previous by thread: [SECURITY] [DLA 2941-1] linux-4.19 security update
Next by thread: [SECURITY] [DLA 2944-1] nbd security update
Index(es):
- Date
- Thread