Package firefox: Information

Source package: firefox
Version: 54.0.1-alt0.M80P.1
Build time:  Aug 6, 2017, 09:42 AM in the task #185512
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=90946c436…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL/GPL/LGPL
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, i586)
firefox-debuginfo (x86_64, i586)
rpm-build-firefox (noarch)
Maintainer: Alexey Gladkov
List of contributors:
Andrey Cherepanov
Alexey Gladkov
Ivan Zakharyaschev
Konstantin Lepikhov
    1. libvpx-devel
    2. libcurl-devel
    3. /dev/shm
    4. libevent-devel
    5. libwireless-devel
    6. alternatives
    7. libffi-devel
    8. libshell
    9. libfreetype-devel
    10. autoconf_2.13
    11. /proc
    12. autoconf_2.13
    13. rust
    14. rust-cargo
    15. browser-plugins-npapi-devel
    16. bzlib-devel
    17. libstartup-notification-devel
    18. chrpath
    19. libnotify-devel
    20. libnss-devel-static
    21. makedepend
    22. pkgconfig(nspr) >= 4.13.1
    23. pkgconfig(nss) >= 3.28.1
    24. doxygen
    25. rpm-build-mozilla.org
    26. libgio-devel
    27. glibc-kernheaders
    28. rpm-macros-alternatives
    29. libopus-devel
    30. mozilla-common-devel
    31. libGL-devel
    32. libX11-devel
    33. gst-plugins1.0-devel
    34. gstreamer1.0-devel
    35. libpixman-devel
    36. libXScrnSaver-devel
    37. libIDL-devel
    38. libXcomposite-devel
    39. libXdamage-devel
    40. libXext-devel
    41. libXft-devel
    42. python-module-distribute
    43. fontconfig-devel
    44. libcairo-devel
    45. libXt-devel
    46. unzip
    47. libgtk+2-devel
    48. libgtk+3-devel
    49. libproxy-devel
    50. libalsa-devel
    51. python-modules-compiler
    52. python-modules-json
    53. python-modules-logging
    54. gcc-c++
    55. python-modules-sqlite3
    56. libhunspell-devel
    57. imake
    58. xorg-cf-files
    59. yasm
    60. libjpeg-devel
    61. zip
    62. zlib-devel
    63. libpulseaudio-devel

Last changed

July 17, 2017 Andrey Cherepanov 54.0.1-alt0.M80P.1
- Backport new version to p8 branch
July 12, 2017 Alexey Gladkov 54.0.1-alt1
- New release (54.0.1).
June 25, 2017 Alexey Gladkov 54.0-alt1
- New release (54.0).
- Fixed:
  + CVE-2017-5472: Use-after-free using destroyed node when regenerating trees
  + CVE-2017-7749: Use-after-free during docshell reloading
  + CVE-2017-7750: Use-after-free with track elements
  + CVE-2017-7751: Use-after-free with content viewer listeners
  + CVE-2017-7752: Use-after-free with IME input
  + CVE-2017-7754: Out-of-bounds read in WebGL with ImageInfo object
  + CVE-2017-7755: Privilege escalation through Firefox Installer with same directory DLL files
  + CVE-2017-7756: Use-after-free and use-after-scope logging XHR header errors
  + CVE-2017-7757: Use-after-free in IndexedDB
  + CVE-2017-7778: Vulnerabilities in the Graphite 2 library
  + CVE-2017-7758: Out-of-bounds read in Opus encoder
  + CVE-2017-7759: Android intent URLs can cause navigation to local file system
  + CVE-2017-7760: File manipulation and privilege escalation via callback parameter in Mozilla Windows Updater and Maintenance Service
  + CVE-2017-7761: File deletion and privilege escalation through Mozilla Maintenance Service helper.exe application
  + CVE-2017-7762: Addressbar spoofing in Reader mode
  + CVE-2017-7763: Mac fonts render some unicode characters as spaces
  + CVE-2017-7764: Domain spoofing with combination of Canadian Syllabics and other unicode blocks
  + CVE-2017-7765: Mark of the Web bypass when saving executable files
  + CVE-2017-7766: File execution and privilege escalation through updater.ini, Mozilla Windows Updater, and Mozilla Maintenance Service
  + CVE-2017-7767: Privilege escalation and arbitrary file overwrites through Mozilla Windows Updater and Mozilla Maintenance Service
  + CVE-2017-7768: 32 byte arbitrary file read through Mozilla Maintenance Service
  + CVE-2017-7770: Addressbar spoofing with JavaScript events and fullscreen mode
  + CVE-2017-5471: Memory safety bugs fixed in Firefox 54
  + CVE-2017-5470: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.0
Back to top