Insecure version of firefox? (actually, no)

Tagged: firefox

This topic has 13 replies, 6 voices, and was last updated Nov 8-11:42 pm by andfree.

Viewing 14 posts - 1 through 14 (of 14 total)

Author

Posts
November 8, 2017 at 12:13 am #2109
Member
andfree
Hi. When I login to forum, there is a message on the wordpress dashboard. It says that I use an insecure, outdated version of firefox. The version I use is 45.5.0. I tried to install a new one without success:
```
$ sudo apt-get install firefox
 
Reading package lists... Done
Building dependency tree       
Reading state information... Done
Package firefox is not available, but is referred to by another package.
This may mean that the package is missing, has been obsoleted, or
is only available from another source

E: Package 'firefox' has no installation candidate
```
Any idea what I should do now? Thanks.
- This topic was modified 3 years, 5 months ago by skidoo.
November 8, 2017 at 2:55 am #2117

Member
fatmac

We use Firefox-esr, not the ordinary Firefox. 🙂

Linux (& BSD) since 1999

November 8, 2017 at 3:16 am #2118
Member
andfree
fatmac wrote:

We use Firefox-esr, not the ordinary Firefox.

Indeed, it’s ESR. So, the message is because of this? I have to ignore it?
- This reply was modified 3 years, 5 months ago by andfree.
November 8, 2017 at 3:29 am #2120

Member
andfree

$ sudo apt-get install firefox-esr

and firefox-esr has been updated to 52.4.0 (32-bit) version. But the dashboard message still remains.

November 8, 2017 at 3:34 am #2121

Forum Admin
anticapitalista

You can safely ignore that forum message and keep using the firefox-esr you have.
BTW what operating system are you using?

Philosophers have interpreted the world in many ways; the point is to change it.

antiX with runit - leaner and meaner.

November 8, 2017 at 4:20 am #2123
Member
andfree
I have installed antix 15 and then I have done several dist-upgrades, but I don’t remember when the most recent was. I tried an update today, but there are some errors:
```
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://antix.daveserver.info jessie InRelease: The following signatures were invalid: KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573

W: Failed to fetch http://antix.daveserver.info/jessie/dists/jessie/InRelease  

W: Some index files failed to download. They have been ignored, or old ones used instead.
```
November 8, 2017 at 4:58 am #2124

Forum Admin
anticapitalista

Use this repo

deb http://repo.antixlinux.com/jessie jessie main nosystemd

Also, post the output of inxi -r

Philosophers have interpreted the world in many ways; the point is to change it.

antiX with runit - leaner and meaner.

November 8, 2017 at 6:07 am #2126
Member
andfree
anticapitalista wrote:

Use this repo

deb http://repo.antixlinux.com/jessie jessie main nosystemd

There was not such a repo at SPM. I added it, but after trying to update, I got error messages again:
```
W: GPG error: http://repo.antixlinux.com jessie InRelease: The following signatures were invalid: KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://antix.daveserver.info jessie InRelease: The following signatures were invalid: KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573

W: Failed to fetch http://antix.daveserver.info/jessie/dists/jessie/InRelease  

W: Some index files failed to download. They have been ignored, or old ones used instead.
```
anticapitalista wrote:

Also, post the output of inxi -r
```
$ inxi -r
Repos:     Active apt sources in file: /etc/apt/sources.list
           deb http://repo.antixlinux.com/jessie jessie main nosystemd
           Active apt sources in file: /etc/apt/sources.list.d/antix.list
           deb http://antix.daveserver.info/jessie/ jessie main nosystemd
           Active apt sources in file: /etc/apt/sources.list.d/debian.list
           deb http://ftp.gr.debian.org/debian/ jessie main contrib non-free
           deb http://security.debian.org/ jessie/updates main contrib non-free
```
November 8, 2017 at 9:01 am #2128
Forum Admin
rokytnji
For comparison purposes
```
$ inxi -S
System:    Host: biker Kernel: 4.10.1-antix.1-686-smp-pae i686 (32 bit) Desktop: IceWM 1.3.8
           Distro: antiX-15-V_386-full Killah P 30 June 2015
```
```
$ inxi -r
Repos:     Active apt sources in file: /etc/apt/sources.list.d/antix.list
           deb http://repo.antixlinux.com/jessie jessie main nosystemd
           Active apt sources in file: /etc/apt/sources.list.d/debian.list
           deb http://ftp.gr.debian.org/debian/ jessie main contrib non-free
           deb http://security.debian.org/ jessie/updates main contrib non-free
           Active apt sources in file: /etc/apt/sources.list.d/palemoon.list
           deb http://download.opensuse.org/repositories/home:/stevenpusser/Debian_8.0/ /
```
Just posting mine to help trouble shoot.

I fixed any failed to download errors and keyring errors long ago. I used Gdebi.

http://antix.daveserver.info/jessie/pool/main/a/antix-archive-keyring/
```
harry@biker:~
$ sudo apt-get -f install
[sudo] password for harry: 
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following packages were automatically installed and are no longer required:
  libexo-1-0 libexo-common libexo-helpers
Use 'apt-get autoremove' to remove them.
0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded.
```
Sometimes I drive a crooked road to get my mind straight.
Not all who Wander are Lost.
I'm not outa place. I'm from outer space.

Linux Registered User # 475019
How to Search for AntiX solutions to your problems
November 8, 2017 at 9:06 am #2129
Forum Admin
rokytnji
deb http://antix.daveserver.info/jessie/ jessie main nosystemd

That need to commented out with a hash tag in front. Or be removed entirely. If commented out. When you do a dist-upgrade of antix 15. You will be asked to replace config files for /etc/apt/sources.list. Say yes to each question and all the old pages will be replaced with correct entries.

You can run inxi -r again to make sure you commented Daves Server entry correctly before doing apt-get dis-update && apt get dist-upgrade again later on.
- This reply was modified 3 years, 5 months ago by rokytnji.
Sometimes I drive a crooked road to get my mind straight.
Not all who Wander are Lost.
I'm not outa place. I'm from outer space.

Linux Registered User # 475019
How to Search for AntiX solutions to your problems
November 8, 2017 at 9:13 am #2131
Forum Admin
rokytnji
On the firefox question. Our installs rely on package maintainers from MX Linux to keep us up to date on new programs. Just got to patient is all. It’ll get there.
```
harry@biker:~
$ apt-cache policy iceweasel
iceweasel:
  Installed: 52.4.0esr-1~deb8u1
  Candidate: 52.4.0esr-1~deb8u1
  Version table:
 *** 52.4.0esr-1~deb8u1 0
        500 http://security.debian.org/ jessie/updates/main i386 Packages
        100 /var/lib/dpkg/status
     45.9.0esr-1~deb8u1 0
        500 http://ftp.gr.debian.org/debian/ jessie/main i386 Packages
     22.0~b1-1~bpo70+1 0
        500 http://repo.antixlinux.com/jessie/ jessie/main i386 Packages
```
- This reply was modified 3 years, 5 months ago by rokytnji.
Sometimes I drive a crooked road to get my mind straight.
Not all who Wander are Lost.
I'm not outa place. I'm from outer space.

Linux Registered User # 475019
How to Search for AntiX solutions to your problems
November 8, 2017 at 9:30 am #2135

Member
skidoo

52.4.0esr is the newest in the esr series.
We can expect Mozilla to release v52.5.0 around the end of November (approximately 2wks after the release of firefox57).

November 8, 2017 at 10:52 am #2140
Moderator
Brian Masinick
Firefox 57.0, according to the Mozilla calendar, is expected on 11/14/2017.
https://wiki.mozilla.org/RapidRelease/Calendar contains the calendar

Release Owners
quarter merge date central beta release date release ESR
Q4 2017-11-13 Firefox 59 Firefox 58 2017-11-14 Firefox 57 Firefox 52.5
Q1 2018-01-22 Firefox 60 Firefox 59 2018-01-23 Firefox 58 Firefox 52.6
2018-03-12 Firefox 61 Firefox 60 2018-03-13 Firefox 59 Firefox 52.7; 59.0
Q2 2018-05-07 Firefox 62 Firefox 61 2018-05-08 Firefox 60 Firefox 52.8; 59.1
2018-07-02 Firefox 63 Firefox 62 2018-07-03 Firefox 61 Firefox 59.2
Q3 2018-08-27 Firefox 64 Firefox 63 2018-08-28 Firefox 62 Firefox 59.3
Q4 2018-10-22 Firefox 65 Firefox 64 2018-10-23 Firefox 63 Firefox 59.4
2018-11-26 Firefox 66 Firefox 65 2018-11-27 Firefox 64 Firefox 59.5
- This reply was modified 3 years, 5 months ago by Brian Masinick.
Brian Masinick
November 8, 2017 at 11:42 pm #2185
Member
andfree
rokytnji wrote:

I fixed any failed to download errors and keyring errors long ago. I used Gdebi.

http://antix.daveserver.info/jessie/pool/main/a/antix-archive-keyring/

It seems to have worked for me, too. After that, I updated & upgraded the system without any errors at all. And now:
```
$ inxi -S
System:    Host: me Kernel: 4.0.5-antix.1-486-smp i686 (32 bit)
           Desktop: IceWM 1.3.8
           Distro: antiX-15-V_386-full Killah P 30 June 2015

$ inxi -r
Repos:     Active apt sources in file: /etc/apt/sources.list.d/antix.list
           deb http://repo.antixlinux.com/jessie/ jessie main nosystemd
           Active apt sources in file: /etc/apt/sources.list.d/debian.list
           deb http://ftp.gr.debian.org/debian/ jessie main contrib non-free
           deb http://security.debian.org/ jessie/updates main contrib non-free
```
Author

Posts

Viewing 14 posts - 1 through 14 (of 14 total)

You must be logged in to reply to this topic.