—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

– ————————————————————————-
Debian Security Advisory DSA-4466-1 security@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
June 18, 2019 https://www.debian.org/security/faq
– ————————————————————————-

Package : firefox-esr
CVE ID : CVE-2019-11707

Samuel Gross discovered a type confusion bug in the JavaScript engine of
the Mozilla Firefox web browser, which could result in the execution of
arbitrary code when browsing a malicious website.

For the stable distribution (stretch), this problem has been fixed in
version 60.7.1esr-1~deb9u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
—–BEGIN PGP SIGNATURE—–
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=GR0N
—–END PGP SIGNATURE—–