Package firefox-esr: Information

    Source package: firefox-esr
    Version: 68.8.0-alt0.M80C.1
    Build time:  May 27, 2020, 05:22 PM in the task #251195
    Category: Networking/WWW
    Report package bug
    Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=37fd6…
    Home page: http://www.mozilla.org/projects/firefox/
    License: MPL-2.0
    Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
    Description: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
    List of rpms provided by this srpm:
    firefox-esr (x86_64, i586)
    firefox-esr-debuginfo (x86_64, i586)
    firefox-esr-wayland (noarch)
    Maintainer: Andrey Cherepanov
    List of contributors:
    Andrey Cherepanov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev
      1. libhunspell-devel
      2. /proc
      3. fontconfig-devel
      4. libX11-devel
      5. libpulseaudio-devel
      6. libXScrnSaver-devel
      7. libcairo-devel
      8. libXcomposite-devel
      9. libjpeg-devel
      10. libXcursor-devel
      11. libXdamage-devel
      12. libXext-devel
      13. libXft-devel
      14. libXi-devel
      15. libvpx5-devel
      16. libXt-devel
      17. libcurl-devel
      18. libdbus-devel
      19. libdbus-glib-devel
      20. python3-base
      21. libalsa-devel
      22. libevent-devel
      23. libshell
      24. libwireless-devel
      25. libffi-devel
      26. libfreetype-devel
      27. libxkbcommon-devel
      28. rust >= 1.35.0
      29. rust-cargo >= 1.35.0
      30. rustfmt
      31. rpm-build-mozilla.org
      32. libstartup-notification-devel
      33. libgio-devel
      34. libstdc++-devel
      35. rpm-macros-alternatives
      36. gst-plugins1.0-devel
      37. gstreamer1.0-devel
      38. lld-devel
      39. llvm6.0-devel
      40. pkgconfig(nspr)
      41. libnotify-devel
      42. alternatives
      43. libGL-devel
      44. libgtk+2-devel
      45. libgtk+3-devel
      46. mozilla-common-devel
      47. python-module-distribute
      48. autoconf_2.13
      49. autoconf_2.13
      50. python-module-pip
      51. libopus-devel
      52. libpixman-devel
      53. browser-plugins-npapi-devel
      54. clang6.0
      55. chrpath
      56. bzlib-devel
      57. clang6.0-devel
      58. python-modules-compiler
      59. unzip
      60. xorg-cf-files
      61. python-modules-json
      62. python-modules-logging
      63. python-modules-sqlite3
      64. libproxy-devel
      65. nasm
      66. yasm
      67. node
      68. zip
      69. zlib-devel

    Last changed

    May 5, 2020 Andrey Cherepanov 68.8.0-alt0.M80C.1
    - Backport new version with security fixes to c8 branch.
    May 5, 2020 Andrey Cherepanov 68.8.0-alt1
    - New ESR version (68.8.0).
- Fixes:
  + CVE-2020-12387 Use-after-free during worker shutdown
  + CVE-2020-12388 Sandbox escape with improperly guarded Access Tokens
  + CVE-2020-12389 Sandbox escape with improperly separated process types
  + CVE-2020-6831 Buffer overflow in SCTP chunk input validation
  + CVE-2020-12392 Arbitrary local file access with 'Copy as cURL'
  + CVE-2020-12393 Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection
  + CVE-2020-12395 Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8
    April 8, 2020 Andrey Cherepanov 68.7.0-alt0.M80C.1
    - Backport new version with security fixes to c8 branch.
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.5.3
    Back to top