Package firefox-esr: Information

    Source package: firefox-esr
    Version: 68.6.0-alt0.M80C.1
    Build time:  Mar 18, 2020, 01:58 AM in the task #246041
    Category: Networking/WWW
    Report package bug
    Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=4602d…
    Home page: http://www.mozilla.org/projects/firefox/
    License: MPL-2.0
    Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
    Description: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
    List of rpms provided by this srpm:
    firefox-esr (x86_64, i586)
    firefox-esr-debuginfo (x86_64, i586)
    firefox-esr-wayland (noarch)
    Maintainer: Andrey Cherepanov
    List of contributors:
    Andrey Cherepanov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev
      1. /proc
      2. fontconfig-devel
      3. libhunspell-devel
      4. libX11-devel
      5. libpulseaudio-devel
      6. libXScrnSaver-devel
      7. libjpeg-devel
      8. libXcomposite-devel
      9. libXcursor-devel
      10. libXdamage-devel
      11. libXext-devel
      12. libXft-devel
      13. libXi-devel
      14. python3-base
      15. libXt-devel
      16. libvpx5-devel
      17. libalsa-devel
      18. libwireless-devel
      19. libcairo-devel
      20. libxkbcommon-devel
      21. libshell
      22. libcurl-devel
      23. libdbus-devel
      24. alternatives
      25. libdbus-glib-devel
      26. libstartup-notification-devel
      27. libstdc++-devel
      28. rust >= 1.35.0
      29. autoconf_2.13
      30. autoconf_2.13
      31. rust-cargo >= 1.35.0
      32. rustfmt
      33. lld-devel
      34. llvm6.0-devel
      35. libevent-devel
      36. libffi-devel
      37. pkgconfig(nspr)
      38. libnotify-devel
      39. browser-plugins-npapi-devel
      40. rpm-build-mozilla.org
      41. libfreetype-devel
      42. bzlib-devel
      43. mozilla-common-devel
      44. rpm-macros-alternatives
      45. chrpath
      46. libopus-devel
      47. clang6.0
      48. clang6.0-devel
      49. nasm
      50. python-module-distribute
      51. node
      52. python-module-pip
      53. unzip
      54. libgio-devel
      55. gst-plugins1.0-devel
      56. libpixman-devel
      57. python-modules-compiler
      58. gstreamer1.0-devel
      59. python-modules-json
      60. python-modules-logging
      61. python-modules-sqlite3
      62. libGL-devel
      63. libgtk+2-devel
      64. libgtk+3-devel
      65. xorg-cf-files
      66. yasm
      67. zip
      68. zlib-devel
      69. libproxy-devel

    Last changed

    March 14, 2020 Andrey Cherepanov 68.6.0-alt0.M80C.1
    - Backport new version with security fixes to c8 branch.
    March 10, 2020 Andrey Cherepanov 68.6.0-alt1
    - New ESR version (68.6.0).
- Fix license tag according to SPDX.
- Fixed:
  + CVE-2020-6805 Use-after-free when removing data about origins
  + CVE-2020-6806 BodyStream::OnInputStreamReady was missing protections against state confusion
  + CVE-2020-6807 Use-after-free in cubeb during stream destruction
  + CVE-2020-6811 Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection
  + CVE-2019-20503 Out of bounds reads in sctp_load_addresses_from_init
  + CVE-2020-6812 The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission
  + CVE-2020-6814 Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6
    Feb. 13, 2020 Andrey Cherepanov 68.5.0-alt0.M80C.1
    - Backport new version with security fixes to c8 branch.
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.5.3
    Back to top