Revisions of MozillaFirefox
Thomas Williams (junknot)
committed
(revision 24)
Thomas Williams (junknot)
committed
(revision 22)
- _constraints: increase RAM on s390x to fix the build
- Mozilla Firefox 129.0.1
* Fixed playback issues on some websites with copyrighted video
served via digital rights management. (bmo#1911283)
* Fixed a crash when dragging a video file onto some websites
(bmo#1910990)
- Mozilla Firefox 129.0
https://www.mozilla.org/en-US/firefox/129.0/releasenotes
MFSA 2024-33 (bsc#1228648))
* CVE-2024-7518 (bmo#1875354)
Fullscreen notification dialog can be obscured by document content
* CVE-2024-7519 (bmo#1902307)
Out of bounds memory access in graphics shared memory handling
* CVE-2024-7520 (bmo#1903041)
Type confusion in WebAssembly
* CVE-2024-7521 (bmo#1904644)
Incomplete WebAssembly exception handing
* CVE-2024-7522 (bmo#1906727)
Out of bounds read in editor component
* CVE-2024-7523 (bmo#1908344)
Document content could partially obscure security prompts
* CVE-2024-7524 (bmo#1909241)
CSP strict-dynamic bypass using web-compatibility shims
* CVE-2024-7525 (bmo#1909298)
Missing permission check when creating a StreamFilter
* CVE-2024-7526 (bmo#1910306)
Uninitialized memory used by WebGL
* CVE-2024-7527 (bmo#1871303)
Thomas Williams (junknot)
committed
(revision 21)
- Mozilla Firefox 106.0.5:
* Addresses a crash experienced by users with Intel Gemini Lake
CPUs (bmo#1702019)
- Mozilla Firefox 106.0.4:
* Fixed an issue with DRM Video playback (bmo#1797292)
* Fixed broken layout of datetime input when switching
types (bmo#1797139)
- Mozilla Firefox 106.0.3
* Fixes for other platforms
- Mozilla Firefox 106.0.2
* Fix missing content on some PDF forms (bmo#1794351)
* Fix column width for the Notification sub-panel in Settings
(bmo#1793558)
* Fix a browser freeze with accessibility enabled on some sites
such as the Proxmox Web UI (bmo#1793748)
* Fix page reloading not working with Firefox View and not
refreshing synced data (bmo#1792680, bmo#1794474)
- Mozilla Firefox 106.0.1
* Addresses a crash experienced by users with AMD Zen 1 CPUs
(bmo#1796126)
Thomas Williams (junknot)
committed
(revision 20)
Thomas Williams (junknot)
committed
(revision 18)
- Mozilla Firefox 106.0
* support editing of PDFs
* introduced Firefox View
* major WebRTC update
- Better screen sharing for Windows and Linux Wayland users
- RTP performance and reliability improvements
- Richer statistics
- Cross-browser and service compatibility improvements
* detailed releasenotes
https://www.mozilla.org/en-US/firefox/106.0/releasenotes
MFSA 2022-44 (bsc#1204421)
* CVE-2022-42927 (bmo#1789128)
Same-origin policy violation could have leaked cross-origin URLs
* CVE-2022-42928 (bmo#1791520)
Memory Corruption in JS Engine
* CVE-2022-42929 (bmo#1789439)
Denial of Service via window.print
* CVE-2022-42930 (bmo#1789503)
Race condition in DOM Workers
* CVE-2022-42931 (bmo#1780571)
Username saved to a plaintext file on disk
* CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041)
Memory safety bugs fixed in Firefox
- added -msse2 flag to fix i386 build and workaround bmo#1795993
- fixed used buildflags
- renamed mozilla-i686-build.patch to mozilla-buildfixes.patch
as it was extended with changes for other archs
- Mozilla Firefox 105.0.3:
* Fixes for other platforms
Thomas Williams (junknot)
committed
(revision 17)
Thomas Williams (junknot)
committed
(revision 16)
- Mozilla Firefox 90.0
MFSA 2021-28 (bsc#1188275)
* CVE-2021-29970 (bmo#1709976)
Use-after-free in accessibility features of a document
* CVE-2021-29971 (bmo#1713638)
Granted permissions only compared host; omitting scheme and
port on Android
* CVE-2021-30547 (bmo#1715766)
Out of bounds write in ANGLE
* CVE-2021-29972 (bmo#1696816)
Use of out-of-date library included use-after-free
vulnerability
* CVE-2021-29973 (bmo#1701932)
Password autofill on HTTP websites was enabled without user
interaction on Android
* CVE-2021-29974 (bmo#1704843)
HSTS errors could be overridden when network partitioning was
enabled
* CVE-2021-29975 (bmo#1713259)
Text message could be overlaid on top of another website
* CVE-2021-29976 (bmo#1700895, bmo#1703334, bmo#1706910,
bmo#1711576, bmo#1714391)
Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12
* CVE-2021-29977 (bmo#1665836, bmo#1686138, bmo#1704316,
bmo#1706314, bmo#1709931, bmo#1712084, bmo#1712357,
bmo#1714066)
Memory safety bugs fixed in Firefox 90
- requires
NSPR 4.31
NSS 3.66
Thomas Williams (junknot)
committed
(revision 12)
- Mozilla Firefox 81.0.1
* https://www.mozilla.org/en-US/firefox/81.0.1/releasenotes/
- remove obsolete python2 build requires
- Increase disk requirements in _constraints to match current needs
- Mozilla Firefox 81.0
* https://www.mozilla.org/en-US/firefox/81.0/releasenotes
MFSA 2020-42 (bsc#1176756)
* CVE-2020-15675 (bmo#1654211)
Use-After-Free in WebGL
* CVE-2020-15677 (bmo#1641487)
Download origin spoofing via redirect
* CVE-2020-15676 (bmo#1646140)
XSS when pasting attacker-controlled data into a
contenteditable element
* CVE-2020-15678 (bmo#1660211)
When recursing through layers while scrolling, an iterator
may have become invalid, resulting in a potential use-after-
free scenario
* CVE-2020-15673 (bmo#1648493, bmo#1660800)
Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3
* CVE-2020-15674 (bmo#1656063, bmo#1656064, bmo#1656067, bmo#1660293)
Memory safety bugs fixed in Firefox 81
- requires
NSPR 4.28
NSS 3.56
- removed obsolete patches
* mozilla-system-nspr.patch
* mozilla-bmo1661715.patch
Thomas Williams (junknot)
committed
(revision 11)
Language name typo (nb_NO/nn_NO) causing build to fail
Thomas Williams (junknot)
committed
(revision 10)
Thomas Williams (junknot)
committed
(revision 9)
Thomas Williams (junknot)
committed
(revision 8)
Thomas Williams (junknot)
committed
(revision 7)
Thomas Williams (junknot)
committed
(revision 5)
Displaying revisions 1 - 20 of 24
