Package firefox: Information
Default inline alert: Version in the repository: 126.0-alt1.0.port
Source package: firefox
Version: 121.0-alt1.0.port
Build time: Jan 1, 2024, 09:17 PM
Category: Networking/WWW
Report package bugHome page: https://www.mozilla.org/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
List of rpms provided by this srpm:
firefox (loongarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (loongarch64)
firefox (loongarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (loongarch64)
Maintainer: Alexey Sheplyakov
List of contributors:
Alexey Sheplyakov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Alexey Sheplyakov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Last changed
Dec. 21, 2023 Alexey Sheplyakov 121.0-alt1.0.port
- Bumped release for LoongArch rebuild
Dec. 21, 2023 Alexey Sheplyakov 121.0-alt2
- Support LoongArch architecture (lp64d ABI): + rust: nix: adjusted for LoongArch (lp64 ABIs) + libwebrtc: adjusted build_config.h for LoongArch + spec: use GNU linker on LoongArch (lld for LoongArch is not ready yet as of LLVM 17)
Dec. 20, 2023 Alexey Gladkov 121.0-alt1
- New release (121.0). - Security fixes: + CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver + CVE-2023-6135: NSS susceptible to "Minerva" attack + CVE-2023-6865: Potential exposure of uninitialized data in EncryptingOutputStream + CVE-2023-6857: Symlinks may resolve to smaller than expected buffers + CVE-2023-6858: Heap buffer overflow in nsTextFragment + CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer + CVE-2023-6866: TypedArrays lack sufficient exception handling + CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture validation + CVE-2023-6867: Clickjacking permission prompts using the popup transition + CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in headless mode + CVE-2023-6868: WebPush requests on Firefox for Android did not require VAPID key + CVE-2023-6869: Content can paint outside of sandboxed iframe + CVE-2023-6870: Android Toast notifications may obscure fullscreen event notifications + CVE-2023-6871: Lack of protocol handler warning in some instances + CVE-2023-6872: Browsing history leaked to syslogs via GNOME + CVE-2023-6863: Undefined behavior in ShutdownObserver() + CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6 + CVE-2023-6873: Memory safety bugs fixed in Firefox 121