Overview
Request 1186958 accepted
- Firefox Extended Support Release 115.13.0 ESR
* Changed: The root certificate used to verify add-ons and
signed content has been renewed to avoid upcoming expiration.
(bmo#None)
* Fixed: Various security fixes and other quality improvements.
- Mozilla Firefox ESR 115.13.0
https://www.mozilla.org/security/advisories/mfsa2024-30
MFSA 2024-30 (boo#1226316)
* CVE-2024-6600 (bmo#1888340)
Memory corruption in WebGL API
* CVE-2024-6601 (bmo#1890748)
Race condition in permission assignment
* CVE-2024-6602 (bmo#1895032)
Memory corruption in NSS
* CVE-2024-6603 (bmo#1895081)
Memory corruption in thread creation
* CVE-2024-6604 (bmo#1748105, bmo#1837550, bmo#1884266)
Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13,
and Thunderbird 115.13
- Update create_tar.sh from our firefox-scripts git
- Use gcc13 and gcc13-c++ on all Leap versions.
- Use cargo/rust1.76 for building.
Request History
manfred-h created request
- Firefox Extended Support Release 115.13.0 ESR
* Changed: The root certificate used to verify add-ons and
signed content has been renewed to avoid upcoming expiration.
(bmo#None)
* Fixed: Various security fixes and other quality improvements.
- Mozilla Firefox ESR 115.13.0
https://www.mozilla.org/security/advisories/mfsa2024-30
MFSA 2024-30 (boo#1226316)
* CVE-2024-6600 (bmo#1888340)
Memory corruption in WebGL API
* CVE-2024-6601 (bmo#1890748)
Race condition in permission assignment
* CVE-2024-6602 (bmo#1895032)
Memory corruption in NSS
* CVE-2024-6603 (bmo#1895081)
Memory corruption in thread creation
* CVE-2024-6604 (bmo#1748105, bmo#1837550, bmo#1884266)
Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13,
and Thunderbird 115.13
- Update create_tar.sh from our firefox-scripts git
- Use gcc13 and gcc13-c++ on all Leap versions.
- Use cargo/rust1.76 for building.
wrosenauer accepted request
