firefox-esr - security update

2016-08-0300:00:00

Google

osv.dev

JSON

Multiple security issues have been found in the Mozilla Firefox web
browser: Multiple memory safety errors, buffer overflows and other
implementation errors may lead to the execution of arbitrary code,
cross-site scripting, information disclosure and bypass of the same-origin
policy.

For the stable distribution (jessie), these problems have been fixed in
version 45.3.0esr-1~deb8u1.

For the unstable distribution (sid), these problems have been fixed in
version 45.3.0esr-1 for firefox-esr and 48.0-1 for firefox.

We recommend that you upgrade your firefox-esr packages.

CPENameOperatorVersion
firefox-esreq45.0.1esr-1
firefox-esreq45.0.2esr-1
firefox-esreq45.0esr-1
firefox-esreq45.0esr-2
firefox-esreq45.1.0esr-1
firefox-esreq45.1.1esr-1
firefox-esreq45.2.0esr-1
firefox-esreq45.2.0esr-1~deb7u1
firefox-esreq45.2.0esr-1~deb8u1
firefox-esreq45.3.0esr-1~deb7u1

Name	Operator	Version
firefox-esr	eq	45.0.1esr-1
firefox-esr	eq	45.0.2esr-1
firefox-esr	eq	45.0esr-1
firefox-esr	eq	45.0esr-2
firefox-esr	eq	45.1.0esr-1
firefox-esr	eq	45.1.1esr-1
firefox-esr	eq	45.2.0esr-1
firefox-esr	eq	45.2.0esr-1~deb7u1
firefox-esr	eq	45.2.0esr-1~deb8u1
firefox-esr	eq	45.3.0esr-1~deb7u1

References

www.debian.org/security/2016/dsa-3640

JSON