[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 4496-1] firefox-esr security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4496-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
March 02, 2026                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : firefox-esr
Version        : 140.8.0esr-1~deb11u1
CVE ID         : CVE-2026-2757 CVE-2026-2758 CVE-2026-2759 CVE-2026-2760
                 CVE-2026-2761 CVE-2026-2762 CVE-2026-2763 CVE-2026-2764
                 CVE-2026-2765 CVE-2026-2766 CVE-2026-2767 CVE-2026-2768
                 CVE-2026-2769 CVE-2026-2770 CVE-2026-2771 CVE-2026-2772
                 CVE-2026-2773 CVE-2026-2774 CVE-2026-2775 CVE-2026-2776
                 CVE-2026-2777 CVE-2026-2778 CVE-2026-2779 CVE-2026-2780
                 CVE-2026-2781 CVE-2026-2782 CVE-2026-2783 CVE-2026-2784
                 CVE-2026-2785 CVE-2026-2786 CVE-2026-2787 CVE-2026-2788
                 CVE-2026-2789 CVE-2026-2790 CVE-2026-2791 CVE-2026-2792
                 CVE-2026-2793

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, sandbox escape, bypass of the same-origin policy, information
disclosure or privilege escalation.

For Debian 11 bullseye, these problems have been fixed in version
140.8.0esr-1~deb11u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=Wytn
-----END PGP SIGNATURE-----
Reply to: