Package firefox-esr

Source package: firefox-esr
Version: 52.8.0-alt0.M80C.1
Build time:  May 11, 2018, 08:16 PM
 in the task #206097
Copied in the task: #206196
Category: Networking/WWW
Report package bug
License:  MPL/GPL/LGPL
Summary:  The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser
component, written using the XUL user interface language and designed to
be cross-platform.
List of rpms provided by this srpm: 
firefox-esr (x86_64, i586)
firefox-esr-debuginfo (x86_64, i586)
Maintainer: Andrey Cherepanov
List of contributors: 
Andrey Cherepanov
Ivan Zakharyaschev
Last changes:
May 10, 2018 Andrey Cherepanov 52.8.0-alt0.M80C.1
- Backport new version with security fixes to c8 branch
May 9, 2018 Andrey Cherepanov 52.8.0-alt1
- New ESR version (52.8.0).
- Fixes:
  + CVE-2018-5183 Backport critical security fixes in Skia
  + CVE-2018-5154 Use-after-free with SVG animations and clip paths
  + CVE-2018-5155 Use-after-free with SVG animations and text paths
  + CVE-2018-5157 Same-origin bypass of PDF Viewer to view protected PDF files
  + CVE-2018-5158 Malicious PDF can inject JavaScript into PDF Viewer
  + CVE-2018-5159 Integer overflow and out-of-bounds write in Skia
  + CVE-2018-5168 Lightweight themes can be installed without user interaction
  + CVE-2018-5178 Buffer overflow during UTF-8 to Unicode string conversion through legacy extension
  + CVE-2018-5150 Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8
May 2, 2018 Andrey Cherepanov 52.7.4-alt1
- New ESR version (52.7.4).

Back to Top