Ausführen beliebiger Kommandos in firefox-esr
ID: | DSA-4466-1 |
Distribution: | Debian |
Plattformen: | Debian stretch |
Datum: | Di, 18. Juni 2019, 23:38 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11707 |
Applikationen: | Mozilla Firefox |
Originalnachricht |
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4466-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff June 18, 2019 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : firefox-esr CVE ID : CVE-2019-11707 Samuel Gross discovered a type confusion bug in the JavaScript engine of the Mozilla Firefox web browser, which could result in the execution of arbitrary code when browsing a malicious website. For the stable distribution (stretch), this problem has been fixed in version 60.7.1esr-1~deb9u1. We recommend that you upgrade your firefox-esr packages. For the detailed security status of firefox-esr please refer to its security tracker page at: https://security-tracker.debian.org/tracker/firefox-esr Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl0JVPcACgkQEMKTtsN8 TjbL6BAAi3u5ewqKWa7jrmKVMhebGa6hGODD2Ce1XGqNTsXuHP2pLw8M9Z5ER6+Z 993QgptpHib4/cijMKddcjy71Tcn4ue9dZWxjdvmumZ2TP8wMoZse249PAjSccSX Bf7li9LHvn74CcdIpTd6BlIqd7dp32JqiC2mlqvXa5DODBcUpV+XA0wqg4LYCiqc IDERwH5Qj9oSAkI+VgQGSRw/9KNLMqqNikT7nDNYro1PCk4Hs1n4U2QxFl+Fir4K X9O8ykvJcEYYrfbAJ5LTQ5o9waiqu6OisbhdvStNrloJu6Xw1bwX45oG4GE8FrSo UENwzHi2zrMTDGUH8NMwElklqi/jDo/qlwbnlQAYasn1NzV9vAQOK7YbiGyjQadR QInHCU5QC7uL2xfQ2PBLBpAlYLx5QEpL+huvSAQgOQs50jo62VtWZ65HRsR4jbA4 gIIcSr7REniYhTxraHJMUdFrRmXzU/1docU2Ra0rl25VPALWNJV1Kuv76DNELjy7 pavITrkX+VdDbyqJ3dJoXwMx8uojPtEN1Zdy/dBDrEr5Wr8IygINJM9ZBAOUlrwH 7yU6B7+kcz60n8ZXOndog+zquRh45C4N2NkjrbKhuVrMPCzaNFSrMv5XadB7CIbb U/U2imVHr1+7pNkUt9zfjAJU0/Vp3OgW+qFq6JRk8ILT0pgCByg= =GR0N -----END PGP SIGNATURE----- |