Package firefox-esr: Information

    Source package: firefox-esr
    Version: 115.10.0-alt1
    Latest version according to Repology
    Build time:  Apr 16, 2024, 08:38 PM in the task #344912
    Category: Networking/WWW
    Report package bug
    Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=77e1e…
    Home page: http://www.mozilla.org/projects/firefox/
    License: MPL-2.0
    Summary: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
    Description: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
    List of rpms provided by this srpm:
    firefox-esr (x86_64, i586, aarch64)
    firefox-esr-config-privacy (x86_64, i586, aarch64)
    firefox-esr-debuginfo (x86_64, i586, aarch64)
    firefox-esr-wayland (x86_64, i586, aarch64)
    Maintainer: Andrey Cherepanov
    List of contributors:
    Pavel Vasenkov
    Andrey Cherepanov
    Alexey Sheplyakov
    Grigory Ustinov
    Alexey Gladkov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev
    ACL:
    Pavel Vasenkov
    Andrey Cherepanov
    @everybody
      1. /dev/shm
      2. /proc
      3. python3(click)
      4. python3(curses)
      5. libX11-devel
      6. libXScrnSaver-devel
      7. libXcomposite-devel
      8. libXcursor-devel
      9. libXdamage-devel
      10. libXext-devel
      11. libXft-devel
      12. libXi-devel
      13. libXt-devel
      14. libalsa-devel
      15. libaom-devel
      16. alternatives
      17. autoconf_2.13
      18. autoconf_2.13
      19. browser-plugins-npapi-devel
      20. bzlib-devel
      21. chrpath
      22. clang15.0
      23. clang15.0-devel
      24. python3(hamcrest)
      25. python3(imp)
      26. fontconfig-devel
      27. python3(pip)
      28. python3(setuptools)
      29. python3(sqlite3)
      30. libcairo-devel
      31. libcurl-devel
      32. libdav1d-devel
      33. python3-base
      34. libdbus-devel
      35. libdbus-glib-devel
      36. libdrm-devel
      37. libevent-devel
      38. glibc-kernheaders-generic
      39. gst-plugins1.0-devel
      40. gstreamer1.0-devel
      41. libffi-devel
      42. libfreetype-devel
      43. rpm-build-mozilla.org
      44. rpm-macros-alternatives
      45. libgio-devel
      46. libgtk+2-devel
      47. libgtk+3-devel
      48. libhunspell-devel
      49. libGL-devel
      50. libjpeg-devel
      51. rust >= 1.65.0
      52. rust-cargo >= 1.65.0
      53. unzip
      54. xorg-cf-files
      55. yasm
      56. zip
      57. zlib-devel
      58. libnotify-devel
      59. libnss-devel-static
      60. libopus-devel
      61. libpixman-devel
      62. libproxy-devel
      63. libpulseaudio-devel
      64. libshell
      65. libstartup-notification-devel
      66. libstdc++-devel
      67. libvpx-devel
      68. libwireless-devel
      69. libxkbcommon-devel
      70. lld15.0-devel
      71. llvm15.0-devel
      72. mozilla-common-devel
      73. nasm
      74. node
      75. pkgconfig(alsa)
      76. pkgconfig(aom)
      77. pkgconfig(bzip2)
      78. pkgconfig(cairo)
      79. pkgconfig(dav1d)
      80. pkgconfig(dbus-1)
      81. pkgconfig(dbus-glib-1)
      82. pkgconfig(dri)
      83. pkgconfig(fontconfig)
      84. pkgconfig(freetype2)
      85. pkgconfig(gio-2.0)
      86. pkgconfig(graphite2)
      87. pkgconfig(gtk+-2.0)
      88. pkgconfig(gtk+-3.0)
      89. pkgconfig(harfbuzz)
      90. pkgconfig(hunspell)
      91. pkgconfig(icu-i18n)
      92. pkgconfig(libcurl)
      93. pkgconfig(libdrm)
      94. pkgconfig(libevent)
      95. pkgconfig(libffi)
      96. pkgconfig(libjpeg)
      97. pkgconfig(libnotify)
      98. pkgconfig(libproxy-1.0)
      99. pkgconfig(libpulse)
      100. pkgconfig(libstartup-notification-1.0)
      101. pkgconfig(nspr) >= 4.35
      102. pkgconfig(nss) >= 3.86
      103. pkgconfig(opus)
      104. pkgconfig(pixman-1)
      105. pkgconfig(vpx)
      106. pkgconfig(x11)
      107. pkgconfig(xcomposite)
      108. pkgconfig(xcursor)
      109. pkgconfig(xdamage)
      110. pkgconfig(xext)
      111. pkgconfig(xft)
      112. pkgconfig(xi)
      113. pkgconfig(xkbcommon)
      114. pkgconfig(xrandr)
      115. pkgconfig(xscrnsaver)
      116. pkgconfig(xt)
      117. pkgconfig(xtst)
      118. pkgconfig(zlib)

    Last changed

    April 16, 2024 Pavel Vasenkov 115.10.0-alt1
    - New ESR version.
- Security fixes
  + CVE-2024-3852 GetBoundName in the JIT returned the wrong object
  + CVE-2024-3854 Out-of-bounds-read after mis-optimized switch statement
  + CVE-2024-3857 Incorrect JITting of arguments led to use-after-free during garbage collection
  + CVE-2024-2609 Permission prompt input delay could expire when not in focus
  + CVE-2024-3859 Integer-overflow led to out-of-bounds-read in the OpenType sanitizer
  + CVE-2024-3861 Potential use-after-free due to AlignedBuffer self-move
  + CVE-2024-3863 Download Protections were bypassed by .xrm-ms files on Windows
  + CVE-2024-3302 Denial of Service using HTTP/2 CONTINUATION frames
  + CVE-2024-3864 Memory safety bug fixed in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10
    April 3, 2024 Pavel Vasenkov 115.9.1-alt1
    - New ESR version.
- Security fixes
  + CVE-2024-0743 Crash in NSS TLS method
  + CVE-2024-2605 Windows Error Reporter could be used as a Sandbox escape vector
  + CVE-2024-2607 JIT code failed to save return registers on Armv7-A
  + CVE-2024-2608 Integer overflow could have led to out of bounds write
  + CVE-2024-2616 Improve handling of out-of-memory conditions in ICU
  + CVE-2023-5388 NSS susceptible to timing attack against RSA decryption
  + CVE-2024-2610 Improper handling of html and body tags enabled CSP nonce leakage
  + CVE-2024-2611 Clickjacking vulnerability could have led to a user accidentally granting permissions
  + CVE-2024-2612 Self referencing object could have potentially led to a use-after-free
  + CVE-2024-2614 Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9
  + CVE-2024-29944 Privileged JavaScript Execution via Event Handlers
    March 7, 2024 Andrey Cherepanov 115.8.0-alt2
    - Use maximize icon for CSD restore button missing in some themes (ALT #49606).
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top