Package firefox-esr

Source package: firefox-esr
Version: 91.9.0-alt0.c9.1
Build time:  May 13, 2022, 02:31 PM
 in the task #299807
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=98678…
Home page: http://www.mozilla.org/projects/firefox/
License:  MPL-2.0
Summary:  The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm: 
firefox-esr (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-config-privacy (noarch)
firefox-esr-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-wayland (noarch)
Maintainer: Andrey Cherepanov
List of contributors: 
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
    1. /dev/shm
    2. browser-plugins-npapi-devel
    3. libvpx-devel
    4. pkgconfig(nspr) >= 4.32
    5. pkgconfig(nss) >= 3.69.0
    6. bzlib-devel
    7. python3-base
    8. libwireless-devel
    9. chrpath
    10. libnotify-devel
    11. clang11.0
    12. clang11.0-devel
    13. libnss-devel-static
    14. libxkbcommon-devel
    15. python3-module-pip
    16. libX11-devel
    17. libcurl-devel
    18. python3-module-setuptools
    19. libopus-devel
    20. python3-modules-sqlite3
    21. python-module-setuptools
    22. /proc
    23. libdav1d-devel
    24. python-modules-compiler
    25. python-modules-json
    26. python-modules-logging
    27. python-modules-sqlite3
    28. libdbus-devel
    29. libdbus-glib-devel
    30. libpixman-devel
    31. libGL-devel
    32. libXScrnSaver-devel
    33. lld11.0-devel
    34. rpm-build-mozilla.org
    35. llvm11.0-devel
    36. libXcomposite-devel
    37. rpm-macros-alternatives
    38. libXcursor-devel
    39. libXdamage-devel
    40. libXext-devel
    41. libdrm-devel
    42. libproxy-devel
    43. libXft-devel
    44. libXi-devel
    45. libXt-devel
    46. gst-plugins1.0-devel
    47. gstreamer1.0-devel
    48. libalsa-devel
    49. libpulseaudio-devel
    50. libaom-devel
    51. mozilla-common-devel
    52. nasm
    53. node
    54. libevent-devel
    55. alternatives
    56. libffi-devel
    57. libfreetype-devel
    58. rust >= 1.54.0
    59. rust-cargo >= 1.54.0
    60. autoconf_2.13
    61. autoconf_2.13
    62. unzip
    63. xorg-cf-files
    64. libgio-devel
    65. yasm
    66. zip
    67. zlib-devel
    68. fontconfig-devel
    69. libshell
    70. libgtk+2-devel
    71. libhunspell-devel
    72. libgtk+3-devel
    73. libcairo-devel
    74. libjpeg-devel
    75. libstartup-notification-devel
    76. libstdc++-devel
Last changes:
May 11, 2022 Pavel Vasenkov 91.9.0-alt0.c9.1
- Backport new version with security fixes.
May 4, 2022 Pavel Vasenkov 91.9.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2022-29914 Fullscreen notification bypass using popups
  + CVE-2022-29909 Bypassing permission prompt in nested browsing contexts
  + CVE-2022-29916 Leaking browser history with CSS variables
  + CVE-2022-29911 iframe Sandbox bypass
  + CVE-2022-29912 Reader mode bypassed SameSite cookies
  + CVE-2022-29917 Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9
April 6, 2022 Pavel Vasenkov 91.8.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2022-1097 Use-after-free in NSSToken objects
  + CVE-2022-28281 Out of bounds write due to unexpected WebAuthN Extensions
  + CVE-2022-1196 Use-after-free after VR Process destruction
  + CVE-2022-28282 Use-after-free in DocumentL10n::TranslateDocument
  + CVE-2022-28285 Incorrect AliasSet used in JIT Codegen
  + CVE-2022-28286 iframe contents could be rendered outside the border
  + CVE-2022-24713 Denial of Service via complex regular expressions
  + CVE-2022-28289 Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8

Back to Top