Package firefox-esr

Source package: firefox-esr
Version: 60.7.0-alt0.M80C.1
Build time:  Jul 2, 2019, 05:45 PM
 in the task #228967
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=ecef3…
Home page: http://www.mozilla.org/projects/firefox/
License:  MPL/GPL/LGPL
Summary:  The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser
component, written using the XUL user interface language and designed to
be cross-platform.
List of rpms provided by this srpm: 
firefox-esr (x86_64, i586)
firefox-esr-debuginfo (x86_64, i586)
Maintainer: Andrey Cherepanov
List of contributors: 
Andrey Cherepanov
Ivan Zakharyaschev
    1. libwireless-devel
    2. /proc
    3. libshell
    4. libnotify-devel
    5. libX11-devel
    6. libXScrnSaver-devel
    7. libgio-devel
    8. libXcomposite-devel
    9. lld-devel
    10. libXcursor-devel
    11. rust >= 1.24.1
    12. rust-cargo >= 0.25.0
    13. llvm6.0-devel
    14. libXdamage-devel
    15. libopus-devel
    16. libstartup-notification-devel
    17. libstdc++-devel
    18. fontconfig-devel
    19. libXext-devel
    20. libXft-devel
    21. libXi-devel
    22. libpixman-devel
    23. pkgconfig(nspr)
    24. libXt-devel
    25. libGL-devel
    26. alternatives
    27. libproxy-devel
    28. mozilla-common-devel
    29. unzip
    30. python-module-distribute
    31. rpm-macros-alternatives
    32. rpm-build-mozilla.org
    33. libalsa-devel
    34. autoconf_2.13
    35. autoconf_2.13
    36. python-module-pip
    37. libgtk+2-devel
    38. libgtk+3-devel
    39. libcairo-devel
    40. python-modules-compiler
    41. xorg-cf-files
    42. python-modules-json
    43. python-modules-logging
    44. python-modules-sqlite3
    45. browser-plugins-npapi-devel
    46. libpulseaudio-devel
    47. bzlib-devel
    48. yasm
    49. zip
    50. zlib-devel
    51. chrpath
    52. libcurl-devel
    53. gst-plugins1.0-devel
    54. gstreamer1.0-devel
    55. libhunspell-devel
    56. clang6.0
    57. clang6.0-devel
    58. libdbus-devel
    59. libdbus-glib-devel
    60. libjpeg-devel
    61. libevent-devel
    62. libvpx-devel
    63. libfreetype-devel
    64. libffi-devel
Last changes:
May 22, 2019 Andrey Cherepanov 60.7.0-alt0.M80C.1
- Backport new version to c8 branch.
May 21, 2019 Andrey Cherepanov 60.7.0-alt1
- New ESR version (60.7.0).
- Fixed:
  + CVE-2019-9815 Disable hyperthreading on content JavaScript threads on macOS
  + CVE-2019-9816 Type confusion with object groups and UnboxedObjects
  + CVE-2019-9817 Stealing of cross-domain images using canvas
  + CVE-2019-9818 Use-after-free in crash generation server
  + CVE-2019-9819 Compartment mismatch with fetch API
  + CVE-2019-9820 Use-after-free of ChromeEventHandler by DocShell
  + CVE-2019-11691 Use-after-free in XMLHttpRequest
  + CVE-2019-11692 Use-after-free removing listeners in the event listener manager
  + CVE-2019-11693 Buffer overflow in WebGL bufferdata on Linux
  + CVE-2019-7317 Use-after-free in png_image_free of libpng library
  + CVE-2019-9797 Cross-origin theft of images with createImageBitmap
  + CVE-2018-18511 Cross-origin theft of images with ImageBitmapRenderingContext
  + CVE-2019-11694 Uninitialized memory memory leakage in Windows sandbox
  + CVE-2019-11698 Theft of user history data through drag and drop of hyperlinks to and from bookmarks
  + CVE-2019-5798 Out-of-bounds read in Skia
  + CVE-2019-9800 Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
May 5, 2019 Andrey Cherepanov 60.6.2-alt0.M80C.1
- Backport new version to c8 branch.

Back to Top