Package firefox-esr: Information

Source package: firefox-esr
Version: 102.10.0-alt1
Latest version according to Repology
Build time:  Apr 20, 2023, 11:25 AM in the task #318816
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=9b475…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox-esr (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-wayland (x86_64, ppc64le, i586, armh, aarch64)
Maintainer: Andrey Cherepanov
List of contributors:
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
ACL:
Pavel Vasenkov
Andrey Cherepanov
@everybody
    1. libGL-devel
    2. libvpx-devel
    3. alternatives
    4. autoconf_2.13
    5. autoconf_2.13
    6. /dev/shm
    7. python-module-setuptools
    8. python-modules-compiler
    9. python-modules-json
    10. python-modules-logging
    11. libwireless-devel
    12. python-modules-sqlite3
    13. libxkbcommon-devel
    14. browser-plugins-npapi-devel
    15. bzlib-devel
    16. /proc
    17. chrpath
    18. clang12.0
    19. clang12.0-devel
    20. libnotify-devel
    21. libnss-devel-static
    22. lld12.0-devel
    23. llvm12.0-devel
    24. libopus-devel
    25. python3-base
    26. mozilla-common-devel
    27. nasm
    28. libpixman-devel
    29. node
    30. python3-module-pip
    31. libproxy-devel
    32. python3-module-setuptools
    33. libpulseaudio-devel
    34. python3-modules-sqlite3
    35. libcairo-devel
    36. fontconfig-devel
    37. libshell
    38. libcurl-devel
    39. libstartup-notification-devel
    40. gst-plugins1.0-devel
    41. libstdc++-devel
    42. gstreamer1.0-devel
    43. libdav1d-devel
    44. libdbus-devel
    45. libdbus-glib-devel
    46. rpm-build-mozilla.org
    47. libdrm-devel
    48. rpm-macros-alternatives
    49. libevent-devel
    50. libffi-devel
    51. libfreetype-devel
    52. libX11-devel
    53. libXScrnSaver-devel
    54. libXcomposite-devel
    55. libXcursor-devel
    56. libXdamage-devel
    57. libXext-devel
    58. unzip
    59. libXft-devel
    60. libXi-devel
    61. rust >= 1.60.0
    62. rust-cargo >= 1.60.0
    63. xorg-cf-files
    64. libXt-devel
    65. yasm
    66. zip
    67. libgio-devel
    68. zlib-devel
    69. pkgconfig(alsa)
    70. pkgconfig(aom)
    71. pkgconfig(bzip2)
    72. pkgconfig(cairo)
    73. pkgconfig(dav1d)
    74. pkgconfig(dbus-1)
    75. pkgconfig(dbus-glib-1)
    76. libalsa-devel
    77. pkgconfig(dri)
    78. pkgconfig(fontconfig)
    79. pkgconfig(freetype2)
    80. libaom-devel
    81. pkgconfig(gio-2.0)
    82. pkgconfig(graphite2)
    83. pkgconfig(gtk+-2.0)
    84. pkgconfig(gtk+-3.0)
    85. pkgconfig(libnotify)
    86. pkgconfig(harfbuzz)
    87. pkgconfig(hunspell)
    88. libhunspell-devel
    89. pkgconfig(icu-i18n)
    90. libjpeg-devel
    91. pkgconfig(libproxy-1.0)
    92. pkgconfig(libpulse)
    93. pkgconfig(libcurl)
    94. pkgconfig(libdrm)
    95. pkgconfig(libstartup-notification-1.0)
    96. pkgconfig(libevent)
    97. pkgconfig(libffi)
    98. pkgconfig(nspr) >= 4.33
    99. pkgconfig(nss) >= 3.72
    100. pkgconfig(libjpeg)
    101. pkgconfig(opus)
    102. libgtk+2-devel
    103. pkgconfig(pixman-1)
    104. libgtk+3-devel
    105. pkgconfig(vpx)
    106. pkgconfig(x11)
    107. pkgconfig(xcomposite)
    108. pkgconfig(xcursor)
    109. pkgconfig(xdamage)
    110. pkgconfig(xext)
    111. pkgconfig(xft)
    112. pkgconfig(xi)
    113. pkgconfig(xkbcommon)
    114. pkgconfig(xrandr)
    115. pkgconfig(xscrnsaver)
    116. pkgconfig(xt)
    117. pkgconfig(xtst)
    118. pkgconfig(zlib)

Last changed

April 19, 2023 Pavel Vasenkov 102.10.0-alt1
- New ESR version.
- Security fixes
  + CVE-2023-29531 Out-of-bound memory access in WebGL on macOS
  + CVE-2023-29532 Mozilla Maintenance Service Write-lock bypass
  + CVE-2023-29533 Fullscreen notification obscured
  + CVE-2023-1999 Double-free in libwebp
  + CVE-2023-29535 Potential Memory Corruption following Garbage Collector compaction
  + CVE-2023-29536 Invalid free from JavaScript code
  + CVE-2023-29539 Content-Disposition filename truncation leads to Reflected File Download
  + CVE-2023-29541 Files with malicious extensions could have been downloaded unsafely on Linux
  + CVE-2023-29542 Bypass of file download extension restrictions
  + CVE-2023-29545 Windows Save As dialog resolved environment variables
  + CVE-2023-1945 Memory Corruption in Safe Browsing Code
  + CVE-2023-29548 Incorrect optimization result on ARM64
  + CVE-2023-29550 Memory safety bugs fixed in Firefox 112 and Firefox ESR 102.10
March 22, 2023 Pavel Vasenkov 102.9.0-alt1
- New ESR version.
- Security fixes
  + CVE-2023-25751 Incorrect code generation during JIT compilation
  + CVE-2023-28164 URL being dragged from a removed cross-origin iframe into the same tab triggered navigation
  + CVE-2023-28162 Invalid downcast in Worklets
  + CVE-2023-25752 Potential out-of-bounds when accessing throttled streams
  + CVE-2023-28163 Windows Save As dialog resolved environment variables
  + CVE-2023-28176 Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9
March 3, 2023 Pavel Vasenkov 102.8.0-alt1
- New ESR version.
- Security fixes
  + CVE-2023-25728 Content security policy leak in violation reports using iframes
  + CVE-2023-25730 Screen hijack via browser fullscreen mode
  + CVE-2023-0767 Arbitrary memory write via PKCS 12 in NSS
  + CVE-2023-25735 Potential use-after-free from compartment mismatch in SpiderMonkey
  + CVE-2023-25737 Invalid downcast in SVGUtils::SetupStrokeGeometry
  + CVE-2023-25738 Printing on Windows could potentially crash Firefox with some device drivers
  + CVE-2023-25739 Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext
  + CVE-2023-25729 Extensions could have opened external schemes without user knowledge
  + CVE-2023-25732 Out of bounds memory write from EncodeInputStream
  + CVE-2023-25734 Opening local .url files could cause unexpected network loads
  + CVE-2023-25742 Web Crypto ImportKey crashes tab
  + CVE-2023-25744 Memory safety bugs fixed in Firefox 110 and Firefox ESR 102.8
  + CVE-2023-25746 Memory safety bugs fixed in Firefox ESR 102.8
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top