Package firefox-esr: Information

    Source package: firefox-esr
    Version: 115.9.1-alt1
    Build time:  Apr 9, 2024, 09:23 PM in the task #344254
    Category: Networking/WWW
    Report package bug
    Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=67e12…
    Home page: http://www.mozilla.org/projects/firefox/
    License: MPL-2.0
    Summary: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
    Description: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
    List of rpms provided by this srpm:
    firefox-esr (x86_64, i586, armh, aarch64)
    firefox-esr-config-privacy (x86_64, i586, armh, aarch64)
    firefox-esr-debuginfo (x86_64, i586, armh, aarch64)
    firefox-esr-wayland (x86_64, i586, armh, aarch64)
    Maintainer: Andrey Cherepanov
    List of contributors:
    Pavel Vasenkov
    Andrey Cherepanov
    Alexey Sheplyakov
    Grigory Ustinov
    Alexey Gladkov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev
      1. /dev/shm
      2. /proc
      3. alternatives
      4. autoconf_2.13
      5. autoconf_2.13
      6. browser-plugins-npapi-devel
      7. bzlib-devel
      8. chrpath
      9. clang15.0
      10. clang15.0-devel
      11. fontconfig-devel
      12. glibc-kernheaders-generic
      13. gst-plugins1.0-devel
      14. gstreamer1.0-devel
      15. libcairo-devel
      16. libcurl-devel
      17. libdav1d-devel
      18. libdbus-devel
      19. pkgconfig(alsa)
      20. pkgconfig(aom)
      21. pkgconfig(bzip2)
      22. pkgconfig(cairo)
      23. pkgconfig(dav1d)
      24. pkgconfig(dbus-1)
      25. pkgconfig(dbus-glib-1)
      26. pkgconfig(dri)
      27. pkgconfig(fontconfig)
      28. pkgconfig(freetype2)
      29. pkgconfig(gio-2.0)
      30. pkgconfig(graphite2)
      31. pkgconfig(gtk+-2.0)
      32. pkgconfig(gtk+-3.0)
      33. pkgconfig(harfbuzz)
      34. pkgconfig(hunspell)
      35. pkgconfig(icu-i18n)
      36. pkgconfig(libcurl)
      37. pkgconfig(libdrm)
      38. pkgconfig(libevent)
      39. pkgconfig(libffi)
      40. pkgconfig(libjpeg)
      41. pkgconfig(libnotify)
      42. pkgconfig(libproxy-1.0)
      43. pkgconfig(libpulse)
      44. pkgconfig(libstartup-notification-1.0)
      45. libopus-devel
      46. python3(pip)
      47. pkgconfig(nspr) >= 4.35
      48. pkgconfig(nss) >= 3.86
      49. pkgconfig(opus)
      50. pkgconfig(pixman-1)
      51. pkgconfig(vpx)
      52. pkgconfig(x11)
      53. pkgconfig(xcomposite)
      54. pkgconfig(xcursor)
      55. pkgconfig(xdamage)
      56. pkgconfig(xext)
      57. pkgconfig(xft)
      58. pkgconfig(xi)
      59. pkgconfig(xkbcommon)
      60. pkgconfig(xrandr)
      61. pkgconfig(xscrnsaver)
      62. pkgconfig(xt)
      63. pkgconfig(xtst)
      64. pkgconfig(zlib)
      65. python3(setuptools)
      66. rpm-build-mozilla.org
      67. python3(click)
      68. libpixman-devel
      69. python3(sqlite3)
      70. python3(curses)
      71. rpm-macros-alternatives
      72. libproxy-devel
      73. python3(hamcrest)
      74. python3(imp)
      75. python3-base
      76. libpulseaudio-devel
      77. libdbus-glib-devel
      78. libdrm-devel
      79. libshell
      80. libevent-devel
      81. libstartup-notification-devel
      82. libstdc++-devel
      83. libffi-devel
      84. libfreetype-devel
      85. libGL-devel
      86. rust >= 1.65.0
      87. rust-cargo >= 1.65.0
      88. libgio-devel
      89. libvpx-devel
      90. unzip
      91. xorg-cf-files
      92. yasm
      93. zip
      94. zlib-devel
      95. libwireless-devel
      96. libxkbcommon-devel
      97. libgtk+2-devel
      98. libgtk+3-devel
      99. libhunspell-devel
      100. lld15.0-devel
      101. llvm15.0-devel
      102. libjpeg-devel
      103. mozilla-common-devel
      104. nasm
      105. node
      106. libnotify-devel
      107. libnss-devel-static
      108. libX11-devel
      109. libXScrnSaver-devel
      110. libXcomposite-devel
      111. libXcursor-devel
      112. libXdamage-devel
      113. libXext-devel
      114. libXft-devel
      115. libXi-devel
      116. libXt-devel
      117. libalsa-devel
      118. libaom-devel

    Last changed

    April 3, 2024 Pavel Vasenkov 115.9.1-alt1
    - New ESR version.
- Security fixes
  + CVE-2024-0743 Crash in NSS TLS method
  + CVE-2024-2605 Windows Error Reporter could be used as a Sandbox escape vector
  + CVE-2024-2607 JIT code failed to save return registers on Armv7-A
  + CVE-2024-2608 Integer overflow could have led to out of bounds write
  + CVE-2024-2616 Improve handling of out-of-memory conditions in ICU
  + CVE-2023-5388 NSS susceptible to timing attack against RSA decryption
  + CVE-2024-2610 Improper handling of html and body tags enabled CSP nonce leakage
  + CVE-2024-2611 Clickjacking vulnerability could have led to a user accidentally granting permissions
  + CVE-2024-2612 Self referencing object could have potentially led to a use-after-free
  + CVE-2024-2614 Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9
  + CVE-2024-29944 Privileged JavaScript Execution via Event Handlers
    March 7, 2024 Andrey Cherepanov 115.8.0-alt2
    - Use maximize icon for CSD restore button missing in some themes (ALT #49606).
    Feb. 21, 2024 Pavel Vasenkov 115.8.0-alt1
    - New ESR version.
- Security fixes
  + CVE-2024-1546 Out-of-bounds memory read in networking channels
  + CVE-2024-1547 Alert dialog could have been spoofed on another site
  + CVE-2024-1548 Fullscreen Notification could have been hidden by select element
  + CVE-2024-1549 Custom cursor could obscure the permission dialog
  + CVE-2024-1550 Mouse cursor re-positioned unexpectedly could have led to unintended permission grants
  + CVE-2024-1551 Multipart HTTP Responses would accept the Set-Cookie header in response parts
  + CVE-2024-1552 Incorrect code generation on 32-bit ARM devices
  + CVE-2024-1553 Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top