[SECURITY] [DLA 3241-1] firefox-esr security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 3241-1] firefox-esr security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Thu, 15 Dec 2022 19:16:56 +0100 (CET)
Message-id: <[🔎] 20221215181656.BC2EA2A1C75@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3241-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
December 15, 2022                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : firefox-esr
Version        : 102.6.0esr-1~deb10u1
CVE ID         : CVE-2022-46872 CVE-2022-46874 CVE-2022-46878 CVE-2022-46880
                 CVE-2022-46881 CVE-2022-46882

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code or information disclosure.

For Debian 10 buster, these problems have been fixed in version
102.6.0esr-1~deb10u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAmObZJYACgkQnUbEiOQ2
gwIHLA//TQLmCkpXMVVYVn4BPuyl86j3F1t0q73qdlsWcx+hyDkHW6tBoAeyRWON
lJuhJAEBL4BcQkrzHU+sOG9mikc/NvP63gDfCeDa814eMVvqWUdVGpSRMaKHL1QW
0VA0RJlhopU3DMdwblxx+5c4ox0gWBUjzbnsoNxbOy/gSQKf3lrY4OtOanfliMd/
mOP4ifGG/cPWMcKlEtq320NovfUfa6S30kvGQxuUpi1Q1xpk5C0gndOKCOkcaFm5
uUZReLlOc51tHcbgIjWCixKnSCt5cizVY3ye+OQk+nDMFvcU80gFoGvepkLXTad/
Qsl8rVdXfvKnR8Dd3KT9C901EVTWWvKbiNXC4mFONiZMPIoGl+WFgGGowK306XRc
ax64CnzumRvOPWdFsbfApmxmG0yY/YAWmZ1Z6miArKqHtZZy2X2qyPegYBr9W49t
qZtt4S3xjn0PVZgVNnPkVVT5BqoCtfxDkQ6G6x2VReYz8XgyO8R6lquZ9K4ibOwb
xUVKPw/hSNL4xLOYwGRtPGBokwgU6Nyyw8uObKvivOh8ZYK2ZkAdxQrGwGT9C/E9
x2DnNfFNFSYE2XjW++YdFajoyL+lpcqJk3rCdQ/jN+0Y0YfpWD6uCIUILNSXM9gG
Cnh/VhYsvx4jy2EthHGNChNp9qYkryYVBwqb9/BwFVx53b/NsS8=
=8Epr
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 3240-1] libde265 security update
Next by Date: [SECURITY] [DLA 3242-1] thunderbird security update
Previous by thread: [SECURITY] [DLA 3240-1] libde265 security update
Next by thread: [SECURITY] [DLA 3242-1] thunderbird security update
Index(es):
- Date
- Thread