Package firefox-esr: Information

Source package: firefox-esr
Version: 60.4.0-alt1
Latest version according to Repology
Build time:  Dec 12, 2018, 01:10 AM in the task #217620
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=96d8a…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL/GPL/LGPL
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser
component, written using the XUL user interface language and designed to
be cross-platform.
List of rpms provided by this srpm:
firefox-esr (x86_64, i586, aarch64)
firefox-esr-debuginfo (x86_64, i586, aarch64)
Maintainer: Andrey Cherepanov
List of contributors:
Andrey Cherepanov
Ivan Zakharyaschev
ACL:
Pavel Vasenkov
Andrey Cherepanov
@everybody
    1. libXScrnSaver-devel
    2. libpulseaudio-devel
    3. libXcomposite-devel
    4. libXcursor-devel
    5. libXdamage-devel
    6. libXext-devel
    7. libXft-devel
    8. libcairo-devel
    9. libXi-devel
    10. libjpeg-devel
    11. libXt-devel
    12. libalsa-devel
    13. libvpx-devel
    14. /dev/shm
    15. libwireless-devel
    16. libcurl-devel
    17. libdbus-devel
    18. libdbus-glib-devel
    19. libshell
    20. /proc
    21. alternatives
    22. lld-devel
    23. libevent-devel
    24. llvm6.0-devel
    25. autoconf_2.13
    26. autoconf_2.13
    27. pkgconfig(nspr) >= 4.17
    28. rust >= 1.24.1
    29. pkgconfig(nss) >= 3.36.4
    30. rust-cargo >= 0.25.0
    31. libffi-devel
    32. libstartup-notification-devel
    33. libstdc++-devel
    34. libfreetype-devel
    35. browser-plugins-npapi-devel
    36. bzlib-devel
    37. mozilla-common-devel
    38. chrpath
    39. rpm-macros-alternatives
    40. rpm-build-mozilla.org
    41. clang6.0
    42. clang6.0-devel
    43. python-module-distribute
    44. python-module-pip
    45. python-modules-compiler
    46. python-modules-json
    47. python-modules-logging
    48. python-modules-sqlite3
    49. gst-plugins1.0-devel
    50. gstreamer1.0-devel
    51. unzip
    52. libgio-devel
    53. libX11-devel
    54. libGL-devel
    55. xorg-cf-files
    56. fontconfig-devel
    57. zip
    58. zlib-devel
    59. libgtk+2-devel
    60. yasm
    61. libgtk+3-devel
    62. libnotify-devel
    63. libopus-devel
    64. libpixman-devel
    65. libhunspell-devel
    66. libnss-devel-static
    67. libproxy-devel

Last changed

Dec. 11, 2018 Andrey Cherepanov 60.4.0-alt1
- New ESR version (60.4.0)
- Fixed:
  + CVE-2018-17466 Buffer overflow and out-of-bounds read in ANGLE library with TextureStorage11
  + CVE-2018-18492 Use-after-free with select element
  + CVE-2018-18493 Buffer overflow in accelerated 2D canvas with Skia
  + CVE-2018-18494 Same-origin policy violation using location attribute and performance.getEntries to steal cross-origin URLs
  + CVE-2018-18498 Integer overflow when calculating buffer sizes for images
  + CVE-2018-12405 Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4
Oct. 23, 2018 Andrey Cherepanov 60.3.0-alt1
- New ESR version (60.3.0).
- Fixed:
  + CVE-2018-12391 HTTP Live Stream audio data is accessible cross-origin
  + CVE-2018-12392 Crash with nested event loops
  + CVE-2018-12393 Integer overflow during Unicode conversion while loading JavaScript
  + CVE-2018-12395 WebExtension bypass of domain restrictions through header rewriting
  + CVE-2018-12396 WebExtension content scripts can execute in disallowed contexts
  + CVE-2018-12397 WebExtension can request access to local files without the warning prompt
  + CVE-2018-12389 Memory safety bugs fixed in Firefox ESR 60.3
  + CVE-2018-12390 Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3
Oct. 2, 2018 Andrey Cherepanov 60.2.2-alt1
- New ESR version (60.2.2)
- Fixed:
  + CVE-2018-12386 Type confusion in JavaScript
  + CVE-2018-12387 JavaScript JIT compiler inlines Array.prototype.push with multiple arguments
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top