Debian: DSA-3050-3: iceweasel security update

    Date12 Nov 2014
    CategoryDebian
    40
    Posted ByLinuxSecurity Advisories
    The previous update for iceweasel in DSA-3050-1 did not contain builds for the armhf architecture due to an error in the Debian packaging specific to the armhf build. This update corrects that problem. For reference, the original advisory text follows.
    
    - -------------------------------------------------------------------------
    Debian Security Advisory DSA-3050-3                   This email address is being protected from spambots. You need JavaScript enabled to view it.
    http://www.debian.org/security/                      Salvatore Bonaccorso
    November 12, 2014                      http://www.debian.org/security/faq
    - -------------------------------------------------------------------------
    
    Package        : iceweasel
    CVE ID         : CVE-2014-1574 CVE-2014-1576 CVE-2014-1577 CVE-2014-1578 
                     CVE-2014-1581 CVE-2014-1583 CVE-2014-1585 CVE-2014-1586
    
    The previous update for iceweasel in DSA-3050-1 did not contain builds
    for the armhf architecture due to an error in the Debian packaging
    specific to the armhf build. This update corrects that problem. For
    reference, the original advisory text follows.
    
    Multiple security issues have been found in Iceweasel, Debian's version
    of the Mozilla Firefox web browser: Multiple memory safety errors,
    buffer overflows, use-after-frees and other implementation errors may
    lead to the execution of arbitrary code, denial of service, the bypass
    of the same-origin policy or a loss of privacy.
    
    This update updates Iceweasel to the ESR31 series of Firefox. The new
    release introduces a new user interface.
    
    In addition, this update also disables SSLv3.
    
    For the stable distribution (wheezy), this problem has been fixed
    in version 31.2.0esr-3~deb7u1.
    
    We recommend that you upgrade your iceweasel packages.
    
    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/
    
    Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"6","type":"x","order":"1","pct":54.55,"resources":[]},{"id":"88","title":"Should be more technical","votes":"3","type":"x","order":"2","pct":27.27,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"2","type":"x","order":"3","pct":18.18,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.