Univention Bugzilla – Bug 53896
firefox-esr: Multiple issues (5.0)
Last modified: 2021-10-13 16:18:35 CEST
New Debian firefox-esr 78.15.0esr-1~deb10u1 fixes: This update addresses the following issues: * Use-after-free in MessageTask (CVE-2021-38496) * Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 (CVE-2021-38500)
--- mirror/ftp/pool/main/f/firefox-esr/firefox-esr_78.14.0esr-1~deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-0/source/firefox-esr_78.15.0esr-1~deb10u1.dsc @@ -1,3 +1,8 @@ +78.15.0esr-1~deb10u1 [Wed, 06 Oct 2021 06:18:02 +0900] Mike Hommey <glandium@debian.org>: + + * New upstream release. + * Fixes for mfsa2021-44, also known as CVE-2021-38496, CVE-2021-38500. + 78.14.0esr-1~deb10u1 [Wed, 08 Sep 2021 06:35:55 +0900] Mike Hommey <glandium@debian.org>: * New upstream release. <http://piuparts.knut.univention.de/5.0-0/#7755417997583454369>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-0] 6b50d0ad73 Bug #53896: firefox-esr 78.15.0esr-1~deb10u1 doc/errata/staging/firefox-esr.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) [5.0-0] 4cc504fe97 Bug #53896: firefox-esr 78.15.0esr-1~deb10u1 doc/errata/staging/firefox-esr.yaml | 15 +++++++++++++++ 1 file changed, 15 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x118>