Univention Bugzilla – Bug 51924
firefox-esr: Multiple issues (4.4)
Last modified: 2020-09-02 11:40:01 CEST
New Debian firefox-esr 68.12.0esr-1~deb9u1 fixes: This update addresses the following issues: * Attacker-induced prompt for extension installation (CVE-2020-15664) * Use-After-Free when aborting an operation (CVE-2020-15669)
--- mirror/ftp/4.4/unmaintained/component/4.4-5-errata/source/firefox-esr_68.11.0esr-1~deb9u1.dsc +++ apt/ucs_4.4-0-errata4.4-5/source/firefox-esr_68.12.0esr-1~deb9u1.dsc @@ -1,3 +1,8 @@ +68.12.0esr-1~deb9u1 [Thu, 27 Aug 2020 09:46:39 +0200] Emilio Pozuelo Monfort <pochu@debian.org>: + + * New upstream release. + * Fixes for mfsa2020-37, also known as CVE-2020-15664 and CVE-2020-15669. + 68.11.0esr-1~deb9u1 [Wed, 29 Jul 2020 07:23:16 +0900] Mike Hommey <glandium@debian.org>: * New upstream release <http://10.200.17.11/4.4-5/#4128381718418971064>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-5] b4a94148c2 Bug #51924: firefox-esr 68.12.0esr-1~deb9u1 doc/errata/staging/firefox-esr.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) [4.4-5] 9498a80aea Bug #51924: firefox-esr 68.12.0esr-1~deb9u1 doc/errata/staging/firefox-esr.yaml | 14 ++++++++++++++ 1 file changed, 14 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x728>