Package firefox-esr: Information

    Binary package: firefox-esr
    Version: 68.4.1-alt0.M80P.1
    Architecture: x86_64
    Build time:  Jan 15, 2020, 07:47 PM in the task #244114
    Source package: firefox-esr
    Category: Networking/WWW
    Report package bug
    Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=c091f…
    Download: firefox-esr-68.4.1-alt0.M80P.1.x86_64.rpm
    Build log: https://git.altlinux.org/tasks/244114/build/100/x86_64/log
    Home page: http://www.mozilla.org/projects/firefox/
    License: MPL/GPL/LGPL
    Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
    Description: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
    Maintainer: Andrey Cherepanov
    List of contributors:
    Andrey Cherepanov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev

    Last changed

    Jan. 11, 2020 Andrey Cherepanov 68.4.1-alt0.M80P.1
    - Backport new version with security fixes to p8 branch.
    Jan. 8, 2020 Andrey Cherepanov 68.4.1-alt1
    - New ESR version (68.4.1).
- Fixed:
  + CVE-2019-17015 Memory corruption in parent process during new content process initialization on Windows
  + CVE-2019-17016 Bypass of @namespace CSS sanitization during pasting
  + CVE-2019-17017 Type Confusion in XPCVariant.cpp
  + CVE-2019-17021 Heap address disclosure in parent process during content process initialization on Windows
  + CVE-2019-17022 CSS sanitization does not escape HTML tags
  + CVE-2019-17024 Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4
    Dec. 6, 2019 Andrey Cherepanov 68.3.0-alt2
    - Fix last changelog according to https://www.altlinux.org/Vulnerability_Policy.
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top