Package firefox: Information

Source package: firefox
Version: 94.0-alt1
Build time:  Nov 29, 2021, 04:01 PM in the task #288832
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=b4b33e29c…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, ppc64le, i586, armh, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-wayland (x86_64, ppc64le, i586, armh, aarch64)
Maintainer: Alexey Gladkov
List of contributors:
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
    1. /proc
    2. /dev/shm
    3. python3-base
    4. libwireless-devel
    5. rust >= 1.56.0
    6. rust-cargo >= 1.56.0
    7. libshell
    8. pkgconfig(alsa)
    9. pkgconfig(aom)
    10. pkgconfig(bzip2)
    11. pkgconfig(cairo)
    12. pkgconfig(dav1d)
    13. pkgconfig(dbus-1)
    14. pkgconfig(dbus-glib-1)
    15. pkgconfig(dri)
    16. pkgconfig(fontconfig)
    17. pkgconfig(freetype2)
    18. pkgconfig(gio-2.0)
    19. pkgconfig(graphite2)
    20. lld12.0-devel
    21. pkgconfig(gtk+-2.0)
    22. pkgconfig(gtk+-3.0)
    23. llvm12.0-devel
    24. python3(pip)
    25. alternatives
    26. pkgconfig(harfbuzz)
    27. pkgconfig(hunspell)
    28. pkgconfig(icu-i18n)
    29. pkgconfig(libcurl)
    30. pkgconfig(libdrm)
    31. pkgconfig(libevent)
    32. pkgconfig(libffi)
    33. pkgconfig(libjpeg)
    34. pkgconfig(libnotify)
    35. pkgconfig(libproxy-1.0)
    36. pkgconfig(libpulse)
    37. pkgconfig(libstartup-notification-1.0)
    38. libstdc++-devel
    39. pkgconfig(nspr) >= 4.32
    40. pkgconfig(nss) >= 3.72
    41. pkgconfig(opus)
    42. pkgconfig(pixman-1)
    43. pkgconfig(vpx)
    44. pkgconfig(x11)
    45. pkgconfig(xcomposite)
    46. pkgconfig(xcursor)
    47. pkgconfig(xdamage)
    48. pkgconfig(xext)
    49. pkgconfig(xft)
    50. pkgconfig(xi)
    51. pkgconfig(xkbcommon)
    52. mozilla-common-devel
    53. pkgconfig(xrandr)
    54. pkgconfig(xscrnsaver)
    55. pkgconfig(xt)
    56. pkgconfig(zlib)
    57. python3(setuptools)
    58. browser-plugins-npapi-devel
    59. nasm
    60. unzip
    61. rpm-build-firefox
    62. node
    63. python3(sqlite3)
    64. chrpath
    65. clang12.0
    66. clang12.0-devel
    67. libnss-devel-static
    68. rpm-macros-alternatives
    69. xorg-cf-files
    70. yasm
    71. zip
    72. gst-plugins1.0-devel
    73. gstreamer1.0-devel

Last changed

Nov. 2, 2021 Alexey Gladkov 94.0-alt1
- New release (94.0).
- Security fixes:
  + CVE-2021-38503: iframe sandbox rules did not apply to XSLT stylesheets
  + CVE-2021-38504: Use-after-free in file picker dialog
  + CVE-2021-38505: Windows 10 Cloud Clipboard may have recorded sensitive user data
  + CVE-2021-38506: Firefox could be coaxed into going into fullscreen mode without notification or warning
  + CVE-2021-38507: Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports
  + MOZ-2021-0003: Universal XSS in Firefox for Android via QR Code URLs
  + CVE-2021-38508: Permission Prompt could be overlaid, resulting in user confusion and potential spoofing
  + MOZ-2021-0004: Web Extensions could access pre-redirect URL when their context menu was triggered by a user
  + CVE-2021-38509: Javascript alert box could have been spoofed onto an arbitrary domain
  + CVE-2021-38510: Download Protections were bypassed by .inetloc files on Mac OS
  + MOZ-2021-0005: 'Copy Image Link' context menu action could have been abused to see authentication tokens
  + MOZ-2021-0006: URL Parsing may incorrectly parse internationalized domains
  + MOZ-2021-0007: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3
Oct. 6, 2021 Alexey Gladkov 93.0-alt1
- New release (93.0).
- Security fixes:
  + CVE-2021-38496: Use-after-free in MessageTask
  + CVE-2021-38497: Validation message could have been overlaid on another origin
  + CVE-2021-38498: Use-after-free of nsLanguageAtomService object
  + CVE-2021-32810: Data race in crossbeam-deque
  + CVE-2021-38500: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2
  + CVE-2021-38501: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2
  + CVE-2021-38499: Memory safety bugs fixed in Firefox 93
Sept. 28, 2021 Alexey Gladkov 92.0.1-alt1
- New release (92.0.1).
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top