Package firefox-esr: Information

    Source package: firefox-esr
    Version: 128.7.0-alt1
    Latest version according to Repology
    Build time:  Feb 14, 2025, 11:58 AM in the task #374549
    Category: Networking/WWW
    Report package bug
    License: MPL-2.0
    Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
    Description: 
    Mozilla Firefox is an open-source web browser, designed
    for standards compliance, performance and portability.

    List of RPM packages built from this SRPM:
    firefox-esr (x86_64, i586, aarch64)
    firefox-esr-config-privacy (x86_64, i586, aarch64)
    firefox-esr-debuginfo (x86_64, i586, aarch64)

    Maintainer: Pavel Vasenkov



      1. /dev/shm
      2. /proc
      3. mozilla-common-devel
      4. nasm
      5. node
      6. alternatives
      7. browser-plugins-npapi-devel
      8. cbindgen
      9. chrpath
      10. pkgconfig(alsa)
      11. pkgconfig(aom)
      12. pkgconfig(bzip2)
      13. pkgconfig(cairo)
      14. pkgconfig(dav1d)
      15. pkgconfig(dbus-1)
      16. pkgconfig(dbus-glib-1)
      17. pkgconfig(dri)
      18. pkgconfig(fontconfig)
      19. pkgconfig(freetype2)
      20. pkgconfig(gio-2.0)
      21. pkgconfig(graphite2)
      22. pkgconfig(gtk+-3.0)
      23. pkgconfig(harfbuzz)
      24. pkgconfig(hunspell)
      25. pkgconfig(icu-i18n)
      26. pkgconfig(libcurl)
      27. pkgconfig(libdrm)
      28. pkgconfig(libevent)
      29. pkgconfig(libffi)
      30. pkgconfig(libjpeg)
      31. pkgconfig(libnotify)
      32. pkgconfig(libproxy-1.0)
      33. pkgconfig(libpulse)
      34. pkgconfig(libstartup-notification-1.0)
      35. pkgconfig(nspr) >= 4.35
      36. pkgconfig(nss) >= 3.98
      37. pkgconfig(opus)
      38. pkgconfig(pixman-1)
      39. pkgconfig(vpx)
      40. pkgconfig(x11)
      41. pkgconfig(xcomposite)
      42. pkgconfig(xcursor)
      43. pkgconfig(xdamage)
      44. pkgconfig(xext)
      45. pkgconfig(xft)
      46. pkgconfig(xi)
      47. pkgconfig(xkbcommon)
      48. pkgconfig(xrandr)
      49. pkgconfig(xscrnsaver)
      50. pkgconfig(xt)
      51. pkgconfig(xtst)
      52. pkgconfig(zlib)
      53. clang17.0
      54. clang17.0-devel
      55. libnss-devel-static
      56. python3(click)
      57. python3(curses)
      58. glibc-kernheaders-generic
      59. python3(hamcrest)
      60. libshell
      61. gst-plugins1.0-devel
      62. gstreamer1.0-devel
      63. libstdc++-devel
      64. python3(pip)
      65. python3(setuptools)
      66. python3(sqlite3)
      67. python3-base
      68. rpm-build-firefox
      69. rpm-macros-alternatives
      70. libwireless-devel
      71. lld17.0-devel
      72. llvm17.0-devel
      73. rust >= 1.65.0
      74. rust-cargo >= 1.65.0
      75. unzip
      76. xorg-cf-files
      77. yasm
      78. zip

    Last changed


    Feb. 13, 2025 Pavel Vasenkov 128.7.0-alt1
    - New ESR version.
    - Security fixes:
      + CVE-2025-1009 Use-after-free in XSLT
      + CVE-2025-1010 Use-after-free in Custom Highlight
      + CVE-2025-1011 A bug in WebAssembly code generation could result in a crash
      + CVE-2025-1012 Use-after-free during concurrent delazification
      + CVE-2024-11704 Potential double-free vulnerability in PKCS#7 decryption handling
      + CVE-2025-1013 Potential opening of private browsing tabs in normal browsing windows
      + CVE-2025-1014 Certificate length was not properly checked
      + CVE-2025-1016 Memory safety bugs fixed in Firefox 135, Thunderbird 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 115.20, and
      + CVE-2025-1017 Memory safety bugs fixed in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7
    Jan. 9, 2025 Ajrat Makhmutov 128.6.0-alt1
    - New ESR version.
    - Security fixes:
      + CVE-2025-0237: WebChannel APIs susceptible to confused deputy attack
      + CVE-2025-0238: Use-after-free when breaking lines in text
      + CVE-2025-0239: Alt-Svc ALPN validation failure when redirected
      + CVE-2025-0240: Compartment mismatch when parsing JavaScript JSON module
      + CVE-2025-0241: Memory corruption when using JavaScript Text Segmentation
      + CVE-2025-0242: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6
      + CVE-2025-0243: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6
    Dec. 21, 2024 Ajrat Makhmutov 128.5.2-alt1
    - New ESR version.
    - Fix FTBFS with python 3.12.8.