Package firefox: Information

Source package: firefox
Version: 77.0.1-alt1
Build time:  Jun 6, 2020, 01:33 AM in the task #252902
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=d2a16255d…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, ppc64le, i586, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, ppc64le, i586, aarch64)
firefox-wayland (noarch)
rpm-build-firefox (noarch)
Maintainer: Alexey Gladkov
List of contributors:
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
    1. libvpx-devel
    2. libcurl-devel
    3. libwireless-devel
    4. /dev/shm
    5. libdbus-devel
    6. python3-base
    7. libdbus-glib-devel
    8. libshell
    9. libxkbcommon-devel
    10. python3-module-pip
    11. alternatives
    12. python3-module-setuptools
    13. libdrm-devel
    14. libstartup-notification-devel
    15. libstdc++-devel
    16. python3-modules-sqlite3
    17. autoconf_2.13
    18. autoconf_2.13
    19. /proc
    20. libevent-devel
    21. lld10.0-devel
    22. llvm10.0-devel
    23. libffi-devel
    24. rust >= 1.42.0
    25. libfreetype-devel
    26. rust-cargo >= 1.42.0
    27. pkgconfig(nspr) >= 4.25
    28. pkgconfig(nss) >= 3.53.0
    29. browser-plugins-npapi-devel
    30. bzlib-devel
    31. chrpath
    32. clang10.0
    33. clang10.0-devel
    34. mozilla-common-devel
    35. libnotify-devel
    36. libnss-devel-static
    37. nasm
    38. libGL-devel
    39. node
    40. gst-plugins1.0-devel
    41. gstreamer1.0-devel
    42. python-module-pip
    43. libgio-devel
    44. rpm-build-mozilla.org
    45. python-module-setuptools
    46. libopus-devel
    47. rpm-macros-alternatives
    48. python-modules-compiler
    49. python-modules-json
    50. python-modules-logging
    51. python-modules-sqlite3
    52. python2-base
    53. libX11-devel
    54. unzip
    55. libXScrnSaver-devel
    56. libXcomposite-devel
    57. libXcursor-devel
    58. libXdamage-devel
    59. fontconfig-devel
    60. libXext-devel
    61. libpixman-devel
    62. libXft-devel
    63. libXi-devel
    64. libXt-devel
    65. xorg-cf-files
    66. libalsa-devel
    67. libcairo-devel
    68. libgtk+2-devel
    69. libgtk+3-devel
    70. yasm
    71. libproxy-devel
    72. libhunspell-devel
    73. zip
    74. zlib-devel
    75. libjpeg-devel
    76. libpulseaudio-devel

Last changed

June 4, 2020 Alexey Gladkov 77.0.1-alt1
- New release (77.0.1).
- Security fixes:
  + CVE-2020-12399: Timing attack on DSA signatures in NSS library
  + CVE-2020-12405: Use-after-free in SharedWorkerService
  + CVE-2020-12406: JavaScript type confusion with NativeTypes
  + CVE-2020-12407: WebRender leaking GPU memory when using border-image CSS directive
  + CVE-2020-12408: URL spoofing when using IP addresses
  + CVE-2020-12409: URL spoofing with unicode characters
  + CVE-2020-12410: Memory safety bugs fixed in Firefox 77 and Firefox ESR 68.9
  + CVE-2020-12411: Memory safety bugs fixed in Firefox 77
May 8, 2020 Alexey Gladkov 76.0.1-alt1
- New release (76.0.1).
May 6, 2020 Alexey Gladkov 76.0-alt1
- New release (76.0).
- Security fixes:
  + CVE-2020-12387: Use-after-free during worker shutdown
  + CVE-2020-12388: Sandbox escape with improperly guarded Access Tokens
  + CVE-2020-12389: Sandbox escape with improperly separated process types
  + CVE-2020-6831: Buffer overflow in SCTP chunk input validation
  + CVE-2020-12390: Incorrect serialization of nsIPrincipal.origin for IPv6 addresses
  + CVE-2020-12391: Content-Security-Policy bypass using object elements
  + CVE-2020-12392: Arbitrary local file access with 'Copy as cURL'
  + CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection
  + CVE-2020-12394: URL spoofing in location bar when unfocussed
  + CVE-2020-12395: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8
  + CVE-2020-12396: Memory safety bugs fixed in Firefox 76
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.0
Back to top