Package firefox-esr

Source package: firefox-esr
Version: 60.4.0-alt0.M80C.1
Build time:  Jan 31, 2019, 01:45 PM
 in the task #219961
Category: Networking/WWW
Report package bug
License:  MPL/GPL/LGPL
Summary:  The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser
component, written using the XUL user interface language and designed to
be cross-platform.
List of rpms provided by this srpm: 
firefox-esr (x86_64, i586)
firefox-esr-debuginfo (x86_64, i586)
Maintainer: Andrey Cherepanov
List of contributors: 
Andrey Cherepanov
Ivan Zakharyaschev
Last changes:
Dec. 12, 2018 Andrey Cherepanov 60.4.0-alt0.M80C.1
- Backport new version with security fixes to c8 branch.
Dec. 11, 2018 Andrey Cherepanov 60.4.0-alt1
- New ESR version (60.4.0)
- Fixed:
  + CVE-2018-17466 Buffer overflow and out-of-bounds read in ANGLE library with TextureStorage11
  + CVE-2018-18492 Use-after-free with select element
  + CVE-2018-18493 Buffer overflow in accelerated 2D canvas with Skia
  + CVE-2018-18494 Same-origin policy violation using location attribute and performance.getEntries to steal cross-origin URLs
  + CVE-2018-18498 Integer overflow when calculating buffer sizes for images
  + CVE-2018-12405 Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4
Oct. 24, 2018 Andrey Cherepanov 60.3.0-alt0.M80C.1
- Backport new version with security fixes to c8 branch.

Back to Top