-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4653-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff April 04, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : firefox-esr CVE ID : CVE-2020-6819 CVE-2020-6820 Two security issues have been found in the Mozilla Firefox web browser, which could result in the execution of arbitrary code. For the oldstable distribution (stretch), these problems have been fixed in version 68.6.1esr-1~deb9u1. For the stable distribution (buster), these problems have been fixed in version 68.6.1esr-1~deb10u1. We recommend that you upgrade your firefox-esr packages. For the detailed security status of firefox-esr please refer to its security tracker page at: https://security-tracker.debian.org/tracker/firefox-esr Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl6IpNAACgkQEMKTtsN8 TjYdQQ//Q5Lr71OmdI5+msBgZ+0v/jTjSu4FJdRNi0t/hLM7MAkqKC7evoMKkgyH V6EpB4ub19zQpFHyAMJkwWnoTsQAp5jn5e//Mc1hh+G78GkFZtn0aR80rBjH1gbQ /hONxZ3SUpjB6nH3lqCHvnEsvi3SQNOiwxWJzkXoFdxm7IFMhJ7SFwZ3mrVkx/3b PZ1a8Ojxr1D1E8NP/RiuFZ9hFIQZLMSYSsbPLDBM1hm/2CvIUYxTp4NvbtdNyLtx 0+o7p0j9l6oppfrwVk7cgif/RIS4bCFbgT3W8zQCz4PvyTp+IKHCeFC82x/6fdHY a5SBMGXDXddM1DXbsgy5/yB4sdnbDaFhj+PV4ee3q0aAZ5/Kkp5yV9vUlzhX2+72 VhSn3Z5im7bHRZB0lV2U9xez353oTmfSWk70xSVZlqGm+BeuP3SrZluekbx1BQjH apgmhK6Jz8ukaN7hMlYSMJGqTXU3fRsx33EanV1bg3souo5wUtJnOpyM5yrTHL/E niLP0u3b5J4/sXDWHw/Bg99i2pu/2q0CdtUQh6eylXRlpsgjKgwnao+3Z0gU1OYz oXK5n1IQ1RH+1FnXLq/V/S5iE6NZi0vXIodr8P56rwVcpBR0gJMIXljlOO0p4J92 Ss4PPlqnSfLQNUHOzjCdTdD7eqN6Xv3KuW2SCGk+ORjlW8IGV7k= =d1ue -----END PGP SIGNATURE-----