Overview
Request 1203619 accepted
- Update to version 128.2.0:
+ CVE-2024-8385: WASM type confusion involving ArrayTypes
+ CVE-2024-8381: Type confusion when looking up a property name
in a "with" block
+ CVE-2024-8382: Internal event interfaces were exposed to web
content when browser EventHandler listener callbacks ran
+ CVE-2024-8383: Firefox did not ask before openings news: links
in an external application
+ CVE-2024-8384: Garbage collection could mis-color
cross-compartment objects in OOM conditions
+ CVE-2024-8386: SelectElements could be shown over another site
if popups are allowed
+ CVE-2024-8387: Memory safety bugs fixed in Firefox 130,
Firefox ESR 128.2, and Thunderbird 128.2
- Drop 0001-Skip-failing-tests-on-ppc64-and-s390x.patch: Fixed
upstream.
Request History
iznogood created request
- Update to version 128.2.0:
+ CVE-2024-8385: WASM type confusion involving ArrayTypes
+ CVE-2024-8381: Type confusion when looking up a property name
in a "with" block
+ CVE-2024-8382: Internal event interfaces were exposed to web
content when browser EventHandler listener callbacks ran
+ CVE-2024-8383: Firefox did not ask before openings news: links
in an external application
+ CVE-2024-8384: Garbage collection could mis-color
cross-compartment objects in OOM conditions
+ CVE-2024-8386: SelectElements could be shown over another site
if popups are allowed
+ CVE-2024-8387: Memory safety bugs fixed in Firefox 130,
Firefox ESR 128.2, and Thunderbird 128.2
- Drop 0001-Skip-failing-tests-on-ppc64-and-s390x.patch: Fixed
upstream.
dimstar accepted review
gnome-review-bot accepted review
Check script succeeded
gnome-review-bot approved review
Check script succeeded
iznogood accepted request
XinFwd
