Package firefox-esr

Source package: firefox-esr
Version: 60.3.0-alt0.M80C.1
Build time:  Nov 13, 2018, 03:04 AM
 in the task #215187
Category: Networking/WWW
Report package bug
License:  MPL/GPL/LGPL
Summary:  The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser
component, written using the XUL user interface language and designed to
be cross-platform.
List of rpms provided by this srpm: 
firefox-esr (x86_64, i586)
firefox-esr-debuginfo (x86_64, i586)
Maintainer: Andrey Cherepanov
List of contributors: 
Andrey Cherepanov
Ivan Zakharyaschev
Last changes:
Oct. 24, 2018 Andrey Cherepanov 60.3.0-alt0.M80C.1
- Backport new version with security fixes to c8 branch.
Oct. 23, 2018 Andrey Cherepanov 60.3.0-alt1
- New ESR version (60.3.0).
- Fixed:
  + CVE-2018-12391 HTTP Live Stream audio data is accessible cross-origin
  + CVE-2018-12392 Crash with nested event loops
  + CVE-2018-12393 Integer overflow during Unicode conversion while loading JavaScript
  + CVE-2018-12395 WebExtension bypass of domain restrictions through header rewriting
  + CVE-2018-12396 WebExtension content scripts can execute in disallowed contexts
  + CVE-2018-12397 WebExtension can request access to local files without the warning prompt
  + CVE-2018-12389 Memory safety bugs fixed in Firefox ESR 60.3
  + CVE-2018-12390 Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3
Oct. 2, 2018 Andrey Cherepanov 60.2.2-alt0.M80C.1
- Backport new version with security fixes to c8 branch.
- Build with bundled NSS.
- Requires devshm-namespaced for work in SElinux enforced mode.

Back to Top