Package firefox-esr-wayland: Information

    Binary package: firefox-esr-wayland
    Version: 91.4.0-alt0.c9.1
    Architecture: noarch
    Build time:  Jan 12, 2022, 08:49 PM in the task #292448
    Source package: firefox-esr
    Category: Networking/WWW
    Report package bug
    Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=5c37a…
    Download: firefox-esr-wayland-91.4.0-alt0.c9.1.noarch.rpm
    Build log: https://git.altlinux.org/tasks/292448/build/100/x86_64/log
    Home page: http://www.mozilla.org/projects/firefox/
    License: MPL-2.0
    Summary: Firefox Wayland launcher.
    Description: 
    The firefox-wayland package contains launcher and desktop file
to run Firefox natively on Wayland.
    Maintainer: Andrey Cherepanov
    List of contributors:
    Andrey Cherepanov
    Alexey Gladkov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev

    Last changed

    Dec. 8, 2021 Andrey Cherepanov 91.4.0-alt0.c9.1
    - Backport new version with security fixes.
    Dec. 6, 2021 Andrey Cherepanov 91.4.0-alt1
    - New ESR version.
- Security fixes:
  + CVE-2021-43536 URL leakage when navigating while executing asynchronous function
  + CVE-2021-43537 Heap buffer overflow when using structured clone
  + CVE-2021-43538 Missing fullscreen and pointer lock notification when requesting both
  + CVE-2021-43539 GC rooting failure when calling wasm instance methods
  + CVE-2021-43541 External protocol handler parameters were unescaped
  + CVE-2021-43542 XMLHttpRequest error codes could have leaked the existence of an external protocol handler
  + CVE-2021-43543 Bypass of CSP sandbox directive when embedding
  + CVE-2021-43545 Denial of Service when using the Location API in a loop
  + CVE-2021-43546 Cursor spoofing could overlay user interface when native cursor is zoomed
    Nov. 18, 2021 Andrey Cherepanov 91.3.0-alt1.c9.1
    - Backport new ESR major version to c9 branch.
- Disable telemetry by default.
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top