DLA-3199-1

Source
https://storage.googleapis.com/debian-osv/dla-osv/DLA-3199-1.json
Aliases
Published
2022-11-17T00:00:00Z
Modified
2022-11-18T10:48:45.461830Z
Details

Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, spoofing or bypass of the SameSite cookie policy.

For Debian 10 buster, these problems have been fixed in version 102.5.0esr-1~deb10u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to its security tracker page at: https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS

References

Affected packages

Debian:10 / firefox-esr

firefox-esr

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
102.5.0esr-1~deb10u1

Affected versions

102.*

102.1.0esr-1
102.1.0esr-2
102.2.0esr-1
102.3.0esr-1
102.3.0esr-1~deb10u1
102.3.0esr-1~deb10u2
102.3.0esr-1~deb11u1
102.4.0esr-1
102.4.0esr-1~deb10u1
102.4.0esr-1~deb11u1

60.*

60.7.2esr-1
60.8.0esr-1
60.8.0esr-1~deb10u1
60.8.0esr-1~deb8u1
60.8.0esr-1~deb9u1
60.9.0esr-1~deb10u1
60.9.0esr-1~deb8u1
60.9.0esr-1~deb8u2
60.9.0esr-1~deb9u1

68.*

68.0.2esr-1
68.1.0esr-1
68.10.0esr-1
68.10.0esr-1~deb10u1
68.10.0esr-1~deb9u1
68.11.0esr-1
68.11.0esr-1~deb10u1
68.11.0esr-1~deb9u1
68.12.0esr-1
68.12.0esr-1~deb10u1
68.12.0esr-1~deb9u1
68.2.0esr-1
68.2.0esr-1~deb10u1
68.2.0esr-1~deb8u1
68.2.0esr-1~deb9u1
68.2.0esr-1~deb9u2
68.3.0esr-1
68.3.0esr-1~deb10u1
68.3.0esr-1~deb8u1
68.3.0esr-1~deb9u1
68.4.0esr-1
68.4.0esr-1~deb10u1
68.4.0esr-1~deb8u1
68.4.0esr-1~deb9u1
68.4.1esr-1
68.4.1esr-1~deb10u1
68.4.1esr-1~deb8u1
68.4.1esr-1~deb9u1
68.4.2esr-1
68.5.0esr-1
68.5.0esr-1~deb10u1
68.5.0esr-1~deb8u1
68.5.0esr-1~deb9u1
68.6.0esr-1
68.6.0esr-1~deb10u1
68.6.0esr-1~deb8u1
68.6.0esr-1~deb9u1
68.6.1esr-1
68.6.1esr-1~deb10u1
68.6.1esr-1~deb9u1
68.7.0esr-1
68.7.0esr-1~deb10u1
68.7.0esr-1~deb8u1
68.7.0esr-1~deb9u1
68.8.0esr-1
68.8.0esr-1~deb10u1
68.8.0esr-1~deb8u1
68.8.0esr-1~deb9u1
68.9.0esr-1
68.9.0esr-1~deb10u1
68.9.0esr-1~deb8u1
68.9.0esr-1~deb8u2
68.9.0esr-1~deb9u1

78.*

78.10.0esr-1
78.10.0esr-1~deb10u1
78.10.0esr-1~deb9u1
78.11.0esr-1
78.11.0esr-1~deb10u1
78.11.0esr-1~deb9u1
78.12.0esr-1
78.12.0esr-1~deb10u1
78.12.0esr-1~deb9u1
78.13.0esr-1
78.13.0esr-1~deb10u1
78.13.0esr-1~deb11u1
78.13.0esr-1~deb9u1
78.14.0esr-1
78.14.0esr-1~deb10u1
78.14.0esr-1~deb11u1
78.14.0esr-1~deb9u1
78.15.0esr-1~deb10u1
78.15.0esr-1~deb11u1
78.15.0esr-1~deb9u1
78.2.0esr-1
78.3.0esr-1
78.3.0esr-1~deb10u1
78.3.0esr-1~deb9u1
78.3.0esr-1~deb9u2
78.3.0esr-2
78.4.0esr-1
78.4.0esr-1~deb10u1
78.4.0esr-1~deb10u2
78.4.0esr-1~deb9u1
78.4.0esr-2
78.4.1esr-1
78.4.1esr-1~deb10u1
78.4.1esr-1~deb9u1
78.4.1esr-2
78.5.0esr-1
78.5.0esr-1~deb10u1
78.5.0esr-1~deb9u1
78.6.0esr-1
78.6.0esr-1~deb10u1
78.6.0esr-1~deb9u1
78.6.1esr-1
78.6.1esr-1~deb10u1
78.6.1esr-1~deb9u1
78.7.0esr-1
78.7.0esr-1~deb10u1
78.7.0esr-1~deb9u1
78.8.0esr-1
78.8.0esr-1~deb10u1
78.8.0esr-1~deb9u1
78.9.0esr-1
78.9.0esr-1~deb10u1
78.9.0esr-1~deb9u1

91.*

91.0.1esr-1
91.0esr-1
91.1.0esr-1
91.10.0esr-1
91.10.0esr-1~deb10u1
91.10.0esr-1~deb11u1
91.10.0esr-1~deb9u1
91.11.0esr-1
91.11.0esr-1~deb10u1
91.11.0esr-1~deb11u1
91.11.0esr-1~deb9u1
91.12.0esr-1
91.12.0esr-1~deb10u1
91.12.0esr-1~deb11u1
91.13.0esr-1~deb10u1
91.13.0esr-1~deb11u1
91.2.0esr-1
91.3.0esr-1
91.3.0esr-2
91.4.0esr-1
91.4.1esr-1~deb11u1
91.4.1esr-1~deb9u1
91.5.0esr-1
91.5.0esr-1~deb10u1
91.5.0esr-1~deb11u1
91.5.0esr-1~deb9u1
91.5.1esr-1
91.6.0esr-1
91.6.0esr-1~deb10u1
91.6.0esr-1~deb11u1
91.6.0esr-1~deb9u1
91.6.1esr-1
91.6.1esr-1~deb10u1
91.6.1esr-1~deb11u1
91.6.1esr-1~deb9u1
91.7.0esr-1
91.7.0esr-1~deb10u1
91.7.0esr-1~deb11u1
91.7.0esr-1~deb9u1
91.8.0esr-1
91.8.0esr-1~deb10u1
91.8.0esr-1~deb11u1
91.8.0esr-1~deb9u1
91.9.0esr-1
91.9.0esr-1~deb10u1
91.9.0esr-1~deb11u1
91.9.0esr-1~deb9u1
91.9.1esr-1
91.9.1esr-1~deb10u1
91.9.1esr-1~deb11u1
91.9.1esr-1~deb9u1