|
|
Log in / Subscribe / Register

Debian alert DLA-2633-1 (firefox-esr)



From:
              Utkarsh Gupta <utkarsh@debian.org>


To:
              debian-lts-announce@lists.debian.org


Subject:
              [SECURITY] [DLA 2633-1] firefox-esr security update


Date:
              Fri, 23 Apr 2021 16:13:12 +0530


Message-ID:
               <CAPP0f95m7mxj_NL-rRH_y4Kcp+aAJhopcJ=YC6Wo8YqrcZyK6w@mail.gmail.com>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -----------------------------------------------------------------------
Debian LTS Advisory DLA-2633-1              debian-lts@lists.debian.org
https://www.debian.org/lts/security/                      Utkarsh Gupta
April 23, 2021                              https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : firefox-esr
Version        : 78.10.0esr-1~deb9u1
CVE ID         : CVE-2021-23961 CVE-2021-23994 CVE-2021-23995
                 CVE-2021-23998 CVE-2021-23999 CVE-2021-24002
                 CVE-2021-29945 CVE-2021-29946

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, information disclosure, privilege escalation or spoofing.

For Debian 9 stretch, these problems have been fixed in version
78.10.0esr-1~deb9u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=xvGp
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds