Sisyphus repository
Last update: 2018-08-19 08:07:56 +0400 | SRPMs: 18645 | Sign in or Sign up
en ru uk br
ALT Linux repositories
hide window
Sisyphus: 60.1.0-alt1
p8: 60.1.0-alt0.M80P.1
p7: 45.9.0-alt0.M70P.1
t7: 45.9.0-alt0.M70P.1

Group :: Networking/WWW
Source RPM: firefox-esr

 Main   Changelog   Spec   Patches   Sources   Download   Gear   Bugs and FR (3/8)   Repocop 

Current version: 60.1.0-alt1
Built: about 2 months ago
Size: 258 MB
Repocop status: info

Home page:   http://www.mozilla.org/projects/firefox/

License: MPL/GPL/LGPL
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description:

The Mozilla Firefox project is a redesign of Mozilla's browser
component, written using the XUL user interface language and designed to
be cross-platform.

Current maintainer: Andrey Cherepanov

List of contributors: ACL: List of rpms provided by this srpm:
  • firefox-esr
  • firefox-esr-debuginfo
Recent changes (last three changelog entries):

2018-06-26 Andrey Cherepanov <cas at altlinux.org> 60.1.0-alt1

    - New ESR version (60.1.0).
    - Fixed:
    + CVE-2018-12359 Buffer overflow using computed size of canvas element
    + CVE-2018-12360 Use-after-free when using focus()
    + CVE-2018-12361 Integer overflow in SwizzleData
    + CVE-2018-12362 Integer overflow in SSSE3 scaler
    + CVE-2018-5156 Media recorder segmentation fault when track type is changed during capture
    + CVE-2018-12363 Use-after-free when appending DOM nodes
    + CVE-2018-12364 CSRF attacks through 307 redirects and NPAPI plugins
    + CVE-2018-12365 Compromised IPC child process can list local filenames
    + CVE-2018-12371 Integer overflow in Skia library during edge builder allocation
    + CVE-2018-12366 Invalid data handling during QCMS transformations
    + CVE-2018-12367 Timing attack mitigation of PerformanceNavigationTiming
    + CVE-2018-12368 No warning when opening executable SettingContent-ms files
    + CVE-2018-12369 WebExtension security permission checks bypassed by embedded experiments
    + CVE-2018-5187 Memory safety bugs fixed in Firefox 60 and Firefox ESR 60.1
    + CVE-2018-5188 Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and Firefox ESR 52.9

2018-06-18 Andrey Cherepanov <cas at altlinux.org> 60.0.2-alt2

    - Fix build for aarch64 (thanks legion@).

2018-06-11 Andrey Cherepanov <cas at altlinux.org> 60.0.2-alt1

    - New ESR version (60.0.2).
    - Fixed:
    + CVE-2018-6126 Heap buffer overflow rasterizing paths in SVG with Skia

 
© 2009–2018 Igor Zubkov