Package firefox: Information

Source package: firefox
Version: 68.0.1-alt0.p9.1
Build time:  Aug 15, 2019, 04:06 PM in the task #235125
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=a2d52e27a…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL/GPL/LGPL
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, ppc64le, i586, aarch64)
firefox-debuginfo (x86_64, ppc64le, i586, aarch64)
firefox-wayland (noarch)
rpm-build-firefox (noarch)
Maintainer: Alexey Gladkov
List of contributors:
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
    1. libvpx5-devel
    2. libcurl-devel
    3. /dev/shm
    4. alternatives
    5. libdbus-devel
    6. libdbus-glib-devel
    7. python3-base
    8. autoconf_2.13
    9. autoconf_2.13
    10. libwireless-devel
    11. libshell
    12. libevent-devel
    13. /proc
    14. libxkbcommon-devel
    15. pkgconfig(nspr) >= 4.21
    16. pkgconfig(nss) >= 3.45.0
    17. libffi-devel
    18. libfreetype-devel
    19. browser-plugins-npapi-devel
    20. bzlib-devel
    21. chrpath
    22. clang7.0
    23. clang7.0-devel
    24. libstartup-notification-devel
    25. libstdc++-devel
    26. rust >= 1.35.0
    27. rust-cargo >= 1.35.0
    28. python-module-distribute
    29. lld-devel
    30. python-module-pip
    31. libGL-devel
    32. llvm7.0-devel
    33. python-modules-compiler
    34. python-modules-json
    35. python-modules-logging
    36. python-modules-sqlite3
    37. gst-plugins1.0-devel
    38. gstreamer1.0-devel
    39. libgio-devel
    40. libX11-devel
    41. mozilla-common-devel
    42. libXScrnSaver-devel
    43. rpm-build-mozilla.org
    44. libXcomposite-devel
    45. fontconfig-devel
    46. libXcursor-devel
    47. unzip
    48. libXdamage-devel
    49. libXext-devel
    50. rpm-macros-alternatives
    51. libXft-devel
    52. libXi-devel
    53. nasm
    54. libnotify-devel
    55. libnss-devel-static
    56. node
    57. libXt-devel
    58. libalsa-devel
    59. libcairo-devel
    60. xorg-cf-files
    61. libgtk+2-devel
    62. libgtk+3-devel
    63. libjpeg-devel
    64. yasm
    65. libhunspell-devel
    66. libopus-devel
    67. libpixman-devel
    68. libpulseaudio-devel
    69. zip
    70. zlib-devel
    71. libproxy-devel

Last changed

Aug. 15, 2019 Andrey Cherepanov 68.0.1-alt0.p9.1
- Backport new version to p9 branch.
Aug. 1, 2019 Alexey Gladkov 68.0.1-alt1
- New release (68.0.1).
July 11, 2019 Alexey Gladkov 68.0-alt1
- New release (68.0).
- Fixed:
  + CVE-2019-9811: Sandbox escape via installation of malicious language pack
  + CVE-2019-11711: Script injection within domain through inner window reuse
  + CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
  + CVE-2019-11713: Use-after-free with HTTP/2 cached stream
  + CVE-2019-11714: NeckoChild can trigger crash when accessed off of main thread
  + CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a segmentation fault
  + CVE-2019-11715: HTML parsing error can contribute to content XSS
  + CVE-2019-11716: globalThis not enumerable until accessed
  + CVE-2019-11717: Caret character improperly escaped in origins
  + CVE-2019-11718: Activity Stream writes unsanitized content to innerHTML
  + CVE-2019-11719: Out-of-bounds read when importing curve25519 private key
  + CVE-2019-11720: Character encoding XSS vulnerability
  + CVE-2019-11721: Domain spoofing through unicode latin 'kra' character
  + CVE-2019-11730: Same-origin policy treats all files in a directory as having the same-origin
  + CVE-2019-11723: Cookie leakage during add-on fetching across private browsing boundaries
  + CVE-2019-11724: Retired site input.mozilla.org has remote troubleshooting permissions
  + CVE-2019-11725: Websocket resources bypass safebrowsing protections
  + CVE-2019-11727: PKCS#1 v1.5 signatures can be used for TLS 1.3
  + CVE-2019-11728: Port scanning through Alt-Svc header
  + CVE-2019-11710: Memory safety bugs fixed in Firefox 68
  + CVE-2019-11709: Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.0
Back to top