Univention Bugzilla – Bug 52858
firefox-esr: Multiple issues (4.4)
Last modified: 2021-03-17 14:00:07 CET
New Debian firefox-esr 78.8.0esr-1~deb9u1 fixes: This update addresses the following issues: * Content Security Policy violation report could have contained the destination of a redirect (CVE-2021-23968) * Content Security Policy violation report could have contained the destination of a redirect (CVE-2021-23969) * MediaError message property could have leaked information about cross-origin resources (CVE-2021-23973) * Memory safety bugs fixed in Firefox 86 and Firefox ESR 78.8 (CVE-2021-23978)
--- mirror/ftp/4.4/unmaintained/component/4.4-7-errata/source/firefox-esr_78.7.0esr-1~deb9u1.dsc +++ apt/ucs_4.4-0-errata4.4-7/source/firefox-esr_78.8.0esr-1~deb9u1.dsc @@ -1,3 +1,13 @@ +78.8.0esr-1~deb9u1 [Wed, 24 Feb 2021 11:23:49 +0100] Emilio Pozuelo Monfort <pochu@debian.org>: + + * Backport to stretch. + +78.8.0esr-1 [Wed, 24 Feb 2021 06:29:25 +0900] Mike Hommey <glandium@debian.org>: + + * New upstream release. + * Fixes for mfsa2021-08, also known as: + CVE-2021-23969, CVE-2021-23968, CVE-2021-23973, CVE-2021-23978. + 78.7.0esr-1~deb9u1 [Thu, 28 Jan 2021 13:20:54 +0100] Emilio Pozuelo Monfort <pochu@debian.org>: * Backport to stretch. <http://10.200.17.11/4.4-7/#7369595470999040689>
OK: yaml OK: announce_errata OK: patch FAIL: piuparts [4.4-7] e051ca25b1 Bug #52858: firefox-esr 78.8.0esr-1~deb9u1 doc/errata/staging/firefox-esr.yaml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+)
Reopen: piuparts errors
http://piuparts.knut.univention.de/4.4-7/#7369595470999040689
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-7] e051ca25b1 Bug #52858: firefox-esr 78.8.0esr-1~deb9u1 doc/errata/staging/firefox-esr.yaml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x911>