ALT repositories
Last updated at Fri, 24 Jul 2020 14:09:54 +0000 | SRPMs: 24197
en ru
SRPMs in branches
hide window
  • 68.4.1-alt0.M80C.1
  • 68.4.1-alt0.M80P.1
  • 45.9.0-alt0.M70P.1
  • 45.9.0-alt0.M70P.1
Group :: Networking/WWW
Source RPM: firefox-esr
Current version: 78.10.1-alt1
Built: 6 days ago
Size: 349 MB
Repocop status: skip
Gear:   http://git.altlinux.org/gears/f/firefox-esr.git
Archive:   http://ftp.altlinux.org/pub/distributions/archive/sisyphus/index/src/f/firefox-esr
Home page:   http://www.mozilla.org/projects/firefox/

License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description:

The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.

Current maintainer: Andrey Cherepanov

List of contributors: ACL: List of rpms provided by this srpm:
  • firefox-esr
  • firefox-esr-config-privacy
  • firefox-esr-debuginfo
  • firefox-esr-wayland
Recent changes (last three changelog entries):

2021-05-05 Andrey Cherepanov 78.10.1-alt1

    - New version (78.10.1).
    - Security fixes:
      + CVE-2021-29951 Mozilla Maintenance Service could have been started or stopped by domain users
        

2021-04-21 Andrey Cherepanov 78.10.0-alt1

    - New version (78.10.0).
    - Security fixes:
      + CVE-2021-23994 Out of bound write due to lazy initialization
      + CVE-2021-23995 Use-after-free in Responsive Design Mode
      + CVE-2021-23998 Secure Lock icon could have been spoofed
      + CVE-2021-23961 More internal network hosts could have been probed by a malicious webpage
      + CVE-2021-23999 Blob URLs may have been granted additional privileges
      + CVE-2021-24002 Arbitrary FTP command execution on FTP servers using an encoded URL
      + CVE-2021-29945 Incorrect size computation in WebAssembly JIT could lead to null-reads
      + CVE-2021-29946 Port blocking could be bypassed
        

2021-03-23 Andrey Cherepanov 78.9.0-alt1

    - New version (78.9.0).
    - Security fixes:
      + CVE-2021-23981 Texture upload into an unbound backing buffer resulted in an out-of-bound read
      + CVE-2021-23982 Internal network hosts could have been probed by a malicious webpage
      + CVE-2021-23984 Malicious extensions could have spoofed popup information
      + CVE-2021-23987 Memory safety bugs fixed in Firefox 87 and Firefox ESR 78.9
    - Do not build for ppc64le.
        
 
The Geyser project is based on code from Prometheus2.0, which had been made available under the MIT License.