[SECURITY] [DLA 3484-1] firefox-esr security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 3484-1] firefox-esr security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Sat, 8 Jul 2023 00:05:25 +0200 (CEST)
Message-id: <[🔎] 20230707220525.40B2D2A00DB@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3484-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
July 08, 2023                                 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : firefox-esr
Version        : 102.13.0esr-1~deb10u1
CVE ID         : CVE-2023-37201 CVE-2023-37202 CVE-2023-37207 CVE-2023-37208
                 CVE-2023-37211

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code or spoofing.

For Debian 10 buster, these problems have been fixed in version
102.13.0esr-1~deb10u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAmSojCEACgkQnUbEiOQ2
gwLhcg/9F5itksRSkkG3DBcgdAnxS/CQWKxGxVtEvUL0T1OcLXw1NciIujzqQtpy
TE14geUO7dYYj+W1PpcXvtZfg41tkEmqCRwcf2I78iA1LK6vZFifyGQzHmtZ296z
K7pAaP0CY2hZ5A7Vtdm+Rq/q0sH3b4PKfFV9u3LZj6ale2O/sQla/iLG2CoykKhz
DGArfdBgC05Aa7bjTeb6WjKTUJc5fPTgtnqp7R9zOwhylpDAbA6fRxQFTv1gxBGC
+U6QJ8xjc3qUijj/Demv3Qj9O5MTnhswOwOoDQi7teOlYrLXiy2U6fI9igQJ081p
se6jPYjarNpfcOT3+t9NKB66ZMR9DHRfabJDV0I8bSpTxfWNwnc8DUPpQ0Z7Rjra
b/vAqn+ZkbZh6tu47GnWZortQACtw+iibPY/thD9KJ1XeW5lU05AP9S10nsM5Yw+
0Qg0xh3sCBsCiw55EPejQ6aMZh7FWg08xy82/M/hKKS15JVwf3+8W87lpqfHO3mp
OZv/FoLPSm8RQzmFEgk/jsGsE13SwI147NaVdHHGH4FBel+us8cYbNbZC4ewNzYK
kqn0RBxwNY9nSqd0B+hXQC4mGOG2Zes+bDq9Z1e4ZD8nuRaSmwpz39TsEY6RiOlq
EBSP8wMC9QdQLPhkVMiY2tgM20lQpH/gJJ86dzAcmhC7qWNWOy0=
=inoz
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 3483-1] nsis security update
Next by Date: [SECURITY] [DLA 3485-1] php-cas security update
Previous by thread: [SECURITY] [DLA 3483-1] nsis security update
Next by thread: [SECURITY] [DLA 3485-1] php-cas security update
Index(es):
- Date
- Thread