Package firefox: Information

    Source package: firefox
    Version: 124.0-alt1
    Latest version according to Repology
    Build time:  Mar 20, 2024, 07:13 PM in the task #343190
    Category: Networking/WWW
    Report package bug
    License: MPL-2.0
    Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
    Description: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
    written using the XUL user interface language and designed to be
    cross-platform.

    List of rpms provided by this srpm:
    firefox (x86_64, aarch64)
    firefox-config-privacy (noarch)
    firefox-debuginfo (x86_64, aarch64)

    Maintainer: Alexey Gladkov



      1. /dev/shm
      2. /proc
      3. alternatives
      4. browser-plugins-npapi-devel
      5. chrpath
      6. clang17.0
      7. clang17.0-devel
      8. glibc-kernheaders-generic
      9. gst-plugins1.0-devel
      10. gstreamer1.0-devel
      11. libwireless-devel
      12. lld17.0-devel
      13. llvm17.0-devel
      14. mozilla-common-devel
      15. nasm
      16. node
      17. python3(click)
      18. python3(curses)
      19. pkgconfig(alsa)
      20. pkgconfig(aom)
      21. pkgconfig(bzip2)
      22. pkgconfig(cairo)
      23. pkgconfig(dav1d)
      24. pkgconfig(dbus-1)
      25. pkgconfig(dbus-glib-1)
      26. pkgconfig(dri)
      27. pkgconfig(fontconfig)
      28. pkgconfig(freetype2)
      29. pkgconfig(gio-2.0)
      30. pkgconfig(graphite2)
      31. pkgconfig(gtk+-3.0)
      32. pkgconfig(harfbuzz)
      33. pkgconfig(hunspell)
      34. pkgconfig(icu-i18n)
      35. pkgconfig(libcurl)
      36. pkgconfig(libdrm)
      37. pkgconfig(libevent)
      38. pkgconfig(libffi)
      39. pkgconfig(libjpeg)
      40. pkgconfig(libnotify)
      41. pkgconfig(libproxy-1.0)
      42. pkgconfig(libpulse)
      43. pkgconfig(libstartup-notification-1.0)
      44. python3(hamcrest)
      45. pkgconfig(nspr) >= 4.35
      46. pkgconfig(nss) >= 3.98
      47. pkgconfig(opus)
      48. pkgconfig(pixman-1)
      49. pkgconfig(vpx)
      50. pkgconfig(x11)
      51. pkgconfig(xcomposite)
      52. pkgconfig(xcursor)
      53. pkgconfig(xdamage)
      54. pkgconfig(xext)
      55. pkgconfig(xft)
      56. pkgconfig(xi)
      57. pkgconfig(xkbcommon)
      58. pkgconfig(xrandr)
      59. pkgconfig(xscrnsaver)
      60. pkgconfig(xt)
      61. pkgconfig(xtst)
      62. pkgconfig(zlib)
      63. python3(sqlite3)
      64. python3-base
      65. python3(pip)
      66. rust >= 1.65.0
      67. rust-cargo >= 1.65.0
      68. python3(setuptools)
      69. rpm-build-firefox
      70. rpm-macros-alternatives
      71. unzip
      72. xorg-cf-files
      73. yasm
      74. zip
      75. libnss-devel-static
      76. libshell
      77. libstdc++-devel

    Last changed


    March 20, 2024 Alexey Gladkov 124.0-alt1
    - New release (124.0).
    - Security fixes:
      + CVE-2024-2605: Windows Error Reporter could be used as a Sandbox escape vector
      + CVE-2024-2606: Mishandling of WASM register values
      + CVE-2024-2607: JIT code failed to save return registers on Armv7-A
      + CVE-2024-2608: Integer overflow could have led to out of bounds write
      + CVE-2023-5388: NSS susceptible to timing attack against RSA decryption
      + CVE-2024-2609: Permission prompt input delay could expire when not in focus
      + CVE-2024-2610: Improper handling of html and body tags enabled CSP nonce leakage
      + CVE-2024-2611: Clickjacking vulnerability could have led to a user accidentally granting permissions
      + CVE-2024-2612: Self referencing object could have potentially led to a use-after-free
      + CVE-2024-2613: Improper handling of QUIC ACK frame data could have led to OOM
      + CVE-2024-2614: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9
      + CVE-2024-2615: Memory safety bugs fixed in Firefox 124
    March 6, 2024 Alexey Gladkov 123.0.1-alt1
    - New release (123.0.1).
    Feb. 24, 2024 Alexey Gladkov 123.0-alt1
    - New release (123.0).
    - Security fixes:
      + CVE-2024-1546: Out-of-bounds memory read in networking channels
      + CVE-2024-1547: Alert dialog could have been spoofed on another site
      + CVE-2024-1554: fetch could be used to effect cache poisoning
      + CVE-2024-1548: Fullscreen Notification could have been hidden by select element
      + CVE-2024-1549: Custom cursor could obscure the permission dialog
      + CVE-2024-1550: Mouse cursor re-positioned unexpectedly could have led to unintended permission grants
      + CVE-2024-1551: Multipart HTTP Responses would accept the Set-Cookie header in response parts
      + CVE-2024-1555: SameSite cookies were not properly respected when opening a website from an external browser
      + CVE-2024-1556: Invalid memory access in the built-in profiler
      + CVE-2024-1552: Incorrect code generation on 32-bit ARM devices
      + CVE-2024-1553: Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8
      + CVE-2024-1557: Memory safety bugs fixed in Firefox 123