[SECURITY] [DLA 2933-1] firefox-esr security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 2933-1] firefox-esr security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Mon, 7 Mar 2022 13:21:10 +0100 (CET)
Message-id: <[🔎] 20220307122110.E52AD2A01AD@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2933-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
March 07, 2022                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : firefox-esr
Version        : 91.6.1esr-1~deb9u1
CVE ID         : CVE-2022-26485 CVE-2022-26486

Two security issues have been found in the Mozilla Firefox web browser,
which result in the execution of arbitrary code.

For Debian 9 stretch, these problems have been fixed in version
91.6.1esr-1~deb9u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=+n1W
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2931-1] cyrus-sasl2 security update
Next by Date: [SECURITY] [DLA 2934-1] freecad security update
Previous by thread: [SECURITY] [DLA 2931-1] cyrus-sasl2 security update
Next by thread: [SECURITY] [DLA 2934-1] freecad security update
Index(es):
- Date
- Thread