Package firefox-esr-config-privacy: Information
Default inline alert: Version in the repository: 115.10.0-alt1
Binary package: firefox-esr-config-privacy
Version: 91.9.0-alt1
Architecture: i586
Build time: May 5, 2022, 06:17 AM in the task #299477
Source package: firefox-esr
Category: System/Configuration/Networking
Report package bugHome page: http://www.mozilla.org/projects/firefox/
License: MPL-2.0
Summary: Firefox configuration with the paranoid privacy settings
Description:
Settings disable: * obsolete ssl protocols; * safebrowsing, trackingprotection and other requests to third-party services; * telemetry; * webrtc; * the social features; * dns and network predictors/prefetch; * and some more... Most likely you don't need to use this package.
Maintainer: Andrey Cherepanov
List of contributors:
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Last changed
May 4, 2022 Pavel Vasenkov 91.9.0-alt1
- New ESR version. - Security fixes: + CVE-2022-29914 Fullscreen notification bypass using popups + CVE-2022-29909 Bypassing permission prompt in nested browsing contexts + CVE-2022-29916 Leaking browser history with CSS variables + CVE-2022-29911 iframe Sandbox bypass + CVE-2022-29912 Reader mode bypassed SameSite cookies + CVE-2022-29917 Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9
April 6, 2022 Pavel Vasenkov 91.8.0-alt1
- New ESR version. - Security fixes: + CVE-2022-1097 Use-after-free in NSSToken objects + CVE-2022-28281 Out of bounds write due to unexpected WebAuthN Extensions + CVE-2022-1196 Use-after-free after VR Process destruction + CVE-2022-28282 Use-after-free in DocumentL10n::TranslateDocument + CVE-2022-28285 Incorrect AliasSet used in JIT Codegen + CVE-2022-28286 iframe contents could be rendered outside the border + CVE-2022-24713 Denial of Service via complex regular expressions + CVE-2022-28289 Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8
March 13, 2022 Pavel Vasenkov 91.7.0-alt1
- New ESR version. - Security fixes: + CVE-2022-26383 Browser window spoof using fullscreen mode + CVE-2022-26384 iframe allow-scripts sandbox bypass + CVE-2022-26387 Time-of-check time-of-use bug when verifying add-on signatures + CVE-2022-26381 Use-after-free in text reflows + CVE-2022-26386 Temporary files downloaded to /tmp and accessible by other local users