Home / mailings [SECURITY] [DSA 5964-1] firefox-esr security update
Posted on 23 July 2025
Debian Security Advisory- -------------------------------------------------------------------------
Debian Security Advisory DSA-5964-1 security@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
July 23, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : firefox-esr
CVE ID : CVE-2025-8027 CVE-2025-8028 CVE-2025-8029 CVE-2025-8030
CVE-2025-8031 CVE-2025-8032 CVE-2025-8033 CVE-2025-8034
CVE-2025-8035
Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code.
For the stable distribution (bookworm), these problems have been fixed in
version 128.13.0esr-1~deb12u1.
We recommend that you upgrade your firefox-esr packages.
For the detailed security status of firefox-esr please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org
