Package firefox-esr: Information

Source package: firefox-esr
Version: 91.10.0-alt1
Latest version according to Repology
Build time:  Jun 4, 2022, 01:23 AM in the task #301215
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=4f6b5…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox-esr (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-wayland (x86_64, ppc64le, i586, armh, aarch64)
Maintainer: Andrey Cherepanov
List of contributors:
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
ACL:
Pavel Vasenkov
Andrey Cherepanov
@everybody
    1. libdbus-devel
    2. libdbus-glib-devel
    3. libwireless-devel
    4. libdrm-devel
    5. python3-base
    6. alternatives
    7. libevent-devel
    8. libxkbcommon-devel
    9. python3-module-pip
    10. autoconf_2.13
    11. autoconf_2.13
    12. /dev/shm
    13. libffi-devel
    14. python3-module-setuptools
    15. libfreetype-devel
    16. python3-modules-sqlite3
    17. libshell
    18. browser-plugins-npapi-devel
    19. bzlib-devel
    20. chrpath
    21. clang11.0
    22. clang11.0-devel
    23. lld11.0-devel
    24. llvm11.0-devel
    25. /proc
    26. rust >= 1.54.0
    27. rust-cargo >= 1.54.0
    28. libnotify-devel
    29. pkgconfig(nspr) >= 4.32
    30. pkgconfig(nss) >= 3.69.0
    31. libgio-devel
    32. libnss-devel-static
    33. libstartup-notification-devel
    34. libstdc++-devel
    35. gst-plugins1.0-devel
    36. gstreamer1.0-devel
    37. mozilla-common-devel
    38. libopus-devel
    39. libGL-devel
    40. rpm-macros-alternatives
    41. rpm-build-mozilla.org
    42. nasm
    43. node
    44. fontconfig-devel
    45. python-module-setuptools
    46. libgtk+2-devel
    47. libgtk+3-devel
    48. libpixman-devel
    49. libX11-devel
    50. python-modules-compiler
    51. python-modules-json
    52. python-modules-logging
    53. python-modules-sqlite3
    54. unzip
    55. libXScrnSaver-devel
    56. libcairo-devel
    57. libXcomposite-devel
    58. libXcursor-devel
    59. libhunspell-devel
    60. libXdamage-devel
    61. libXext-devel
    62. libXft-devel
    63. libXi-devel
    64. libXt-devel
    65. libproxy-devel
    66. libjpeg-devel
    67. xorg-cf-files
    68. zip
    69. zlib-devel
    70. yasm
    71. libalsa-devel
    72. libaom-devel
    73. libcurl-devel
    74. libdav1d-devel
    75. libpulseaudio-devel
    76. libvpx-devel

Last changed

June 3, 2022 Pavel Vasenkov 91.10.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2022-31736 Cross-Origin resource's length leaked
  + CVE-2022-31737 Heap buffer overflow in WebGL
  + CVE-2022-31738 Browser window spoof using fullscreen mode
  + CVE-2022-31739 Attacker-influenced path traversal when saving downloaded files
  + CVE-2022-31740 Register allocation problem in WASM on arm64
  + CVE-2022-31741 Uninitialized variable leads to invalid memory read
  + CVE-2022-31742 Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information
  + CVE-2022-31747 Memory safety bugs fixed in Firefox 101 and Firefox ESR 91.10
May 22, 2022 Pavel Vasenkov 91.9.1-alt1
- New ESR version.
- Security fixes:
  + CVE-2022-1802 Prototype pollution in Top-Level Await implementation
  + CVE-2022-1529 Untrusted input used in JavaScript object indexing, leading to prototype pollution
May 4, 2022 Pavel Vasenkov 91.9.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2022-29914 Fullscreen notification bypass using popups
  + CVE-2022-29909 Bypassing permission prompt in nested browsing contexts
  + CVE-2022-29916 Leaking browser history with CSS variables
  + CVE-2022-29911 iframe Sandbox bypass
  + CVE-2022-29912 Reader mode bypassed SameSite cookies
  + CVE-2022-29917 Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top