firefox-esr - security update

2016-11-1600:00:00

Google

osv.dev

JSON

Multiple security issues have been found in the Mozilla Firefox web
browser: Multiple memory safety errors, buffer overflows and other
implementation errors may lead to the execution of arbitrary code or
bypass of the same-origin policy. Also, a man-in-the-middle attack in
the addon update mechanism has been fixed.

For the stable distribution (jessie), these problems have been fixed in
version 45.5.0esr-1~deb8u1.

For the unstable distribution (sid), these problems have been fixed in
version 45.5.0esr-1 and version 50.0-1 of the firefox source package.

We recommend that you upgrade your firefox-esr packages.

CPENameOperatorVersion
firefox-esreq45.0.1esr-1
firefox-esreq45.0.2esr-1
firefox-esreq45.0esr-1
firefox-esreq45.0esr-2
firefox-esreq45.1.0esr-1
firefox-esreq45.1.1esr-1
firefox-esreq45.2.0esr-1
firefox-esreq45.2.0esr-1~deb7u1
firefox-esreq45.2.0esr-1~deb8u1
firefox-esreq45.3.0esr-1

Name	Operator	Version
firefox-esr	eq	45.0.1esr-1
firefox-esr	eq	45.0.2esr-1
firefox-esr	eq	45.0esr-1
firefox-esr	eq	45.0esr-2
firefox-esr	eq	45.1.0esr-1
firefox-esr	eq	45.1.1esr-1
firefox-esr	eq	45.2.0esr-1
firefox-esr	eq	45.2.0esr-1~deb7u1
firefox-esr	eq	45.2.0esr-1~deb8u1
firefox-esr	eq	45.3.0esr-1

Rows per page:

1-10 of 191

References

www.debian.org/security/2016/dsa-3716

JSON