Sisyphus repository
Last update: 2017-07-23 12:06:02 +0400 | SRPMs: 17935 | Sign in or Sign up
en ru uk br
ALT Linux repositories
hide window
Sisyphus: 54.0.1-alt1
p8: 53.0.2-alt0.M80P.1
p7: 45.9.0-alt0.M70P.1
t7: 45.9.0-alt0.M70P.1
Platform6: 17.0.11-alt0.M60P.1
t6: 17.0.11-alt0.M60P.1
Platform5: 10.0.12-alt0.M50P.1

Group :: Networking/WWW
Source RPM: firefox

 Main   Changelog   Spec   Patches   Sources   Download   Gear   Bugs and FR (27/155)   Repocop 

Current version: 54.0.1-alt1
Built: 8 days ago
Size: 222 MB
Repocop status: ok

Home page:

Summary: The Mozilla Firefox project is a redesign of Mozilla's browser

The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be

Current maintainer: Alexey Gladkov

List of contributors: ACL: List of rpms provided by this srpm:
  • firefox
  • firefox-debuginfo
  • rpm-build-firefox
Recent changes (last three changelog entries):

2017-07-12 Alexey Gladkov <legion at> 54.0.1-alt1

    - New release (54.0.1).

2017-06-25 Alexey Gladkov <legion at> 54.0-alt1

    - New release (54.0).
    - Fixed:
    + CVE-2017-5472: Use-after-free using destroyed node when regenerating trees
    + CVE-2017-7749: Use-after-free during docshell reloading
    + CVE-2017-7750: Use-after-free with track elements
    + CVE-2017-7751: Use-after-free with content viewer listeners
    + CVE-2017-7752: Use-after-free with IME input
    + CVE-2017-7754: Out-of-bounds read in WebGL with ImageInfo object
    + CVE-2017-7755: Privilege escalation through Firefox Installer with same directory DLL files
    + CVE-2017-7756: Use-after-free and use-after-scope logging XHR header errors
    + CVE-2017-7757: Use-after-free in IndexedDB
    + CVE-2017-7778: Vulnerabilities in the Graphite 2 library
    + CVE-2017-7758: Out-of-bounds read in Opus encoder
    + CVE-2017-7759: Android intent URLs can cause navigation to local file system
    + CVE-2017-7760: File manipulation and privilege escalation via callback parameter in Mozilla Windows Updater and Maintenance Service
    + CVE-2017-7761: File deletion and privilege escalation through Mozilla Maintenance Service helper.exe application
    + CVE-2017-7762: Addressbar spoofing in Reader mode
    + CVE-2017-7763: Mac fonts render some unicode characters as spaces
    + CVE-2017-7764: Domain spoofing with combination of Canadian Syllabics and other unicode blocks
    + CVE-2017-7765: Mark of the Web bypass when saving executable files
    + CVE-2017-7766: File execution and privilege escalation through updater.ini, Mozilla Windows Updater, and Mozilla Maintenance Service
    + CVE-2017-7767: Privilege escalation and arbitrary file overwrites through Mozilla Windows Updater and Mozilla Maintenance Service
    + CVE-2017-7768: 32 byte arbitrary file read through Mozilla Maintenance Service
    + CVE-2017-7770: Addressbar spoofing with JavaScript events and fullscreen mode
    + CVE-2017-5471: Memory safety bugs fixed in Firefox 54
    + CVE-2017-5470: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2

2017-05-07 Alexey Gladkov <legion at> 53.0.2-alt1

    - New release (53.0.2).
    - Fixed:
    + CVE-2017-5031: Use after free in ANGLE

© 2009–2017 Igor Zubkov