Пакет firefox-esr: Информация

  • Default inline alert: Версия в репозитории: 115.11.0-alt1

Исходный пакет: firefox-esr
Версия: 102.8.0-alt1
Собран:  15 марта 2023 г. 2:19 в задании #316239
Категория: Сети/WWW
Сообщить об ошибке в пакете
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=cc962…
Домашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL-2.0
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Описание: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox-esr (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-wayland (x86_64, ppc64le, i586, armh, aarch64)
Сопровождающий: Andrey Cherepanov
Список участников:
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
    1. mozilla-common-devel
    2. nasm
    3. node
    4. /dev/shm
    5. python3-base
    6. libpixman-devel
    7. browser-plugins-npapi-devel
    8. bzlib-devel
    9. chrpath
    10. clang12.0
    11. clang12.0-devel
    12. python3-module-pip
    13. libproxy-devel
    14. python3-module-setuptools
    15. /proc
    16. libpulseaudio-devel
    17. python3-modules-sqlite3
    18. libcairo-devel
    19. libcurl-devel
    20. gst-plugins1.0-devel
    21. gstreamer1.0-devel
    22. libshell
    23. libdav1d-devel
    24. libdbus-devel
    25. libdbus-glib-devel
    26. libdrm-devel
    27. rpm-build-mozilla.org
    28. libstartup-notification-devel
    29. libstdc++-devel
    30. libevent-devel
    31. libffi-devel
    32. rpm-macros-alternatives
    33. libfreetype-devel
    34. fontconfig-devel
    35. alternatives
    36. pkgconfig(alsa)
    37. pkgconfig(aom)
    38. autoconf_2.13
    39. autoconf_2.13
    40. pkgconfig(bzip2)
    41. pkgconfig(cairo)
    42. pkgconfig(dav1d)
    43. pkgconfig(dbus-1)
    44. pkgconfig(dbus-glib-1)
    45. pkgconfig(dri)
    46. pkgconfig(fontconfig)
    47. pkgconfig(freetype2)
    48. pkgconfig(gio-2.0)
    49. pkgconfig(graphite2)
    50. pkgconfig(gtk+-2.0)
    51. pkgconfig(gtk+-3.0)
    52. pkgconfig(harfbuzz)
    53. pkgconfig(hunspell)
    54. pkgconfig(icu-i18n)
    55. pkgconfig(libcurl)
    56. pkgconfig(libdrm)
    57. libX11-devel
    58. pkgconfig(libevent)
    59. pkgconfig(libffi)
    60. libXScrnSaver-devel
    61. libXcomposite-devel
    62. libXcursor-devel
    63. libXdamage-devel
    64. libXext-devel
    65. libXft-devel
    66. libXi-devel
    67. libgio-devel
    68. pkgconfig(libjpeg)
    69. libXt-devel
    70. pkgconfig(libnotify)
    71. pkgconfig(libproxy-1.0)
    72. pkgconfig(libpulse)
    73. libalsa-devel
    74. libaom-devel
    75. pkgconfig(libstartup-notification-1.0)
    76. pkgconfig(nspr) >= 4.33
    77. pkgconfig(nss) >= 3.72
    78. pkgconfig(opus)
    79. pkgconfig(pixman-1)
    80. pkgconfig(vpx)
    81. pkgconfig(x11)
    82. pkgconfig(xcomposite)
    83. pkgconfig(xcursor)
    84. pkgconfig(xdamage)
    85. pkgconfig(xext)
    86. pkgconfig(xft)
    87. pkgconfig(xi)
    88. pkgconfig(xkbcommon)
    89. pkgconfig(xrandr)
    90. pkgconfig(xscrnsaver)
    91. pkgconfig(xt)
    92. pkgconfig(xtst)
    93. pkgconfig(zlib)
    94. libgtk+2-devel
    95. libgtk+3-devel
    96. rust >= 1.60.0
    97. rust-cargo >= 1.60.0
    98. libhunspell-devel
    99. libjpeg-devel
    100. python-module-setuptools
    101. python-modules-compiler
    102. python-modules-json
    103. python-modules-logging
    104. python-modules-sqlite3
    105. libvpx-devel
    106. unzip
    107. yasm
    108. xorg-cf-files
    109. zip
    110. libwireless-devel
    111. zlib-devel
    112. libGL-devel
    113. libxkbcommon-devel
    114. lld12.0-devel
    115. libnotify-devel
    116. libnss-devel-static
    117. llvm12.0-devel
    118. libopus-devel

Последнее изменение

3 марта 2023 г. Pavel Vasenkov 102.8.0-alt1
- New ESR version.
- Security fixes
  + CVE-2023-25728 Content security policy leak in violation reports using iframes
  + CVE-2023-25730 Screen hijack via browser fullscreen mode
  + CVE-2023-0767 Arbitrary memory write via PKCS 12 in NSS
  + CVE-2023-25735 Potential use-after-free from compartment mismatch in SpiderMonkey
  + CVE-2023-25737 Invalid downcast in SVGUtils::SetupStrokeGeometry
  + CVE-2023-25738 Printing on Windows could potentially crash Firefox with some device drivers
  + CVE-2023-25739 Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext
  + CVE-2023-25729 Extensions could have opened external schemes without user knowledge
  + CVE-2023-25732 Out of bounds memory write from EncodeInputStream
  + CVE-2023-25734 Opening local .url files could cause unexpected network loads
  + CVE-2023-25742 Web Crypto ImportKey crashes tab
  + CVE-2023-25744 Memory safety bugs fixed in Firefox 110 and Firefox ESR 102.8
  + CVE-2023-25746 Memory safety bugs fixed in Firefox ESR 102.8
18 января 2023 г. Pavel Vasenkov 102.7.0-alt1
- New ESR version.
- Security fixes
  + CVE-2022-46871 libusrsctp library out of date
  + CVE-2023-23598 Arbitrary file read from GTK drag and drop on Linux
  + CVE-2023-23599 Malicious command could be hidden in devtools output on Windows
  + CVE-2023-23601 URL being dragged from cross-origin iframe into same tab triggers navigation
  + CVE-2023-23602 Content Security Policy wasn't being correctly applied to WebSockets in WebWorkers
  + CVE-2022-46877 Fullscreen notification bypass
  + CVE-2023-23603 Calls to <code>console.log</code> allowed bypasing Content Security Policy via format directive
  + CVE-2023-23605 Memory safety bugs fixed in Firefox 109 and Firefox ESR 102.7
14 декабря 2022 г. Pavel Vasenkov 102.6.0-alt1
- New ESR version.
- Security fixes
  + CVE-2022-46880 Use-after-free in WebGL
  + CVE-2022-46872 Arbitrary file read from a compromised content process
  + CVE-2022-46881 Memory corruption in WebGL
  + CVE-2022-46874 Drag and Dropped Filenames could have been truncated to malicious extensions
  + CVE-2022-46875 Download Protections were bypassed by .atloc and .ftploc files on Mac OS
  + CVE-2022-46882 Use-after-free in WebGL
  + CVE-2022-46878 Memory safety bugs fixed in Firefox 108 and Firefox ESR 102.6
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Версия: v24.5.3
Наверх