Package firefox-esr

Source package: firefox-esr
Version: 60.8.0-alt0.M80C.1
Build time:  Jul 19, 2019, 02:41 PM
 in the task #234617
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=e76a4…
Home page: http://www.mozilla.org/projects/firefox/
License:  MPL/GPL/LGPL
Summary:  The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser
component, written using the XUL user interface language and designed to
be cross-platform.
List of rpms provided by this srpm: 
firefox-esr (x86_64, i586)
firefox-esr-debuginfo (x86_64, i586)
Maintainer: Andrey Cherepanov
List of contributors: 
Andrey Cherepanov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
    1. libshell
    2. /proc
    3. libwireless-devel
    4. libstartup-notification-devel
    5. libstdc++-devel
    6. libnotify-devel
    7. libgio-devel
    8. libX11-devel
    9. libXScrnSaver-devel
    10. libXcomposite-devel
    11. libXcursor-devel
    12. libXdamage-devel
    13. libXext-devel
    14. libXft-devel
    15. libXi-devel
    16. rust >= 1.24.1
    17. rust-cargo >= 0.25.0
    18. fontconfig-devel
    19. libXt-devel
    20. libcairo-devel
    21. pkgconfig(nspr)
    22. libalsa-devel
    23. lld-devel
    24. llvm6.0-devel
    25. libopus-devel
    26. libgtk+2-devel
    27. rpm-build-mozilla.org
    28. libgtk+3-devel
    29. rpm-macros-alternatives
    30. python-module-distribute
    31. alternatives
    32. libcurl-devel
    33. python-module-pip
    34. libhunspell-devel
    35. libdbus-devel
    36. libpixman-devel
    37. libvpx-devel
    38. libdbus-glib-devel
    39. python-modules-compiler
    40. python-modules-json
    41. python-modules-logging
    42. python-modules-sqlite3
    43. autoconf_2.13
    44. autoconf_2.13
    45. mozilla-common-devel
    46. gst-plugins1.0-devel
    47. libjpeg-devel
    48. gstreamer1.0-devel
    49. libproxy-devel
    50. unzip
    51. libevent-devel
    52. libfreetype-devel
    53. chrpath
    54. clang6.0
    55. clang6.0-devel
    56. browser-plugins-npapi-devel
    57. bzlib-devel
    58. libpulseaudio-devel
    59. xorg-cf-files
    60. libffi-devel
    61. yasm
    62. zip
    63. zlib-devel
    64. libGL-devel
Last changes:
July 10, 2019 Andrey Cherepanov 60.8.0-alt0.M80C.1
- Backport new version with security fixes to c8 branch.
July 9, 2019 Andrey Cherepanov 60.8.0-alt1
- New ESR version (60.8.0).
- Fixed:
  + CVE-2019-9811 Sandbox escape via installation of malicious language pack
  + CVE-2019-11711 Script injection within domain through inner window reuse
  + CVE-2019-11712 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
  + CVE-2019-11713 Use-after-free with HTTP/2 cached stream
  + CVE-2019-11729 Empty or malformed p256-ECDH public keys may trigger a segmentation fault
  + CVE-2019-11715 HTML parsing error can contribute to content XSS
  + CVE-2019-11717 Caret character improperly escaped in origins
  + CVE-2019-11719 Out-of-bounds read when importing curve25519 private key
  + CVE-2019-11730 Same-origin policy treats all files in a directory as having the same-origin
  + CVE-2019-11709 Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8
July 3, 2019 Gleb Fotengauer-Malinovskiy 60.7.2-alt2
- Added ppc64le support.
- spec: cleaned up rpm-build internal macros.

Back to Top