Packages from AltLinux

    Package firefox: Information

    Source package:
    firefox
    Version:
    111.0-alt1
    Build time:
    Mar 16, 2023, 12:21 AM in the task #316754
    Category:
    Networking/WWW
    Report package bug
    Gear:
    https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=afadf6105…
    Home page:
    https://www.mozilla.org/firefox/
    License:
    MPL-2.0
    Summary:
    The Mozilla Firefox project is a redesign of Mozilla's browser
    Description:
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
    List of rpms provided by this srpm:
    firefox (x86_64, armh, aarch64)
    firefox-config-privacy (noarch)
    firefox-debuginfo (x86_64, armh, aarch64)
    Maintainer:
    Alexey Gladkov
    List of contributors:
    Alexey Gladkov
    Sergey Bolshakov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev
    Konstantin Lepikhov
    ACL:
    Alexey Gladkov
    Sergey Bolshakov
    Gleb Fotengauer-Malinovskiy
      1. /dev/shm
      2. /proc
      3. alternatives
      4. browser-plugins-npapi-devel
      5. chrpath
      6. clang15.0
      7. clang15.0-devel
      8. glibc-kernheaders-generic
      9. gst-plugins1.0-devel
      10. gstreamer1.0-devel
      11. libnss-devel-static
      12. libshell
      13. libstdc++-devel
      14. libwireless-devel
      15. lld15.0-devel
      16. llvm15.0-devel
      17. mozilla-common-devel
      18. nasm
      19. node
      20. pkgconfig(alsa)
      21. pkgconfig(aom)
      22. pkgconfig(bzip2)
      23. pkgconfig(cairo)
      24. pkgconfig(dav1d)
      25. pkgconfig(dbus-1)
      26. pkgconfig(dbus-glib-1)
      27. pkgconfig(dri)
      28. pkgconfig(fontconfig)
      29. pkgconfig(freetype2)
      30. pkgconfig(gio-2.0)
      31. pkgconfig(graphite2)
      32. pkgconfig(gtk+-3.0)
      33. pkgconfig(harfbuzz)
      34. pkgconfig(hunspell)
      35. pkgconfig(icu-i18n)
      36. pkgconfig(libcurl)
      37. pkgconfig(libdrm)
      38. pkgconfig(libevent)
      39. pkgconfig(libffi)
      40. pkgconfig(libjpeg)
      41. pkgconfig(libnotify)
      42. pkgconfig(libproxy-1.0)
      43. pkgconfig(libpulse)
      44. pkgconfig(libstartup-notification-1.0)
      45. pkgconfig(nspr) >= 4.35
      46. pkgconfig(nss) >= 3.86
      47. pkgconfig(opus)
      48. pkgconfig(pixman-1)
      49. pkgconfig(vpx)
      50. pkgconfig(x11)
      51. pkgconfig(xcomposite)
      52. pkgconfig(xcursor)
      53. pkgconfig(xdamage)
      54. pkgconfig(xext)
      55. pkgconfig(xft)
      56. pkgconfig(xi)
      57. pkgconfig(xkbcommon)
      58. pkgconfig(xrandr)
      59. pkgconfig(xscrnsaver)
      60. pkgconfig(xt)
      61. pkgconfig(xtst)
      62. pkgconfig(zlib)
      63. python3(curses)
      64. python3(hamcrest)
      65. python3(pip)
      66. python3(setuptools)
      67. python3(sqlite3)
      68. rpm-build-firefox
      69. python3-base
      70. rpm-macros-alternatives
      71. rust >= 1.65.0
      72. rust-cargo >= 1.65.0
      73. unzip
      74. xorg-cf-files
      75. yasm
      76. zip

    Last changed

    March 14, 2023 Alexey Gladkov 111.0-alt1
    - New release (111.0).
- Exclude arch i586.
- Security fixes:
  + CVE-2023-28159: Fullscreen Notification could have been hidden by download popups on Android
  + CVE-2023-25748: Fullscreen Notification could have been hidden by window prompts on Android
  + CVE-2023-25749: Firefox for Android may have opened third-party apps without a prompt
  + CVE-2023-25750: Potential ServiceWorker cache leak during private browsing mode
  + CVE-2023-25751: Incorrect code generation during JIT compilation
  + CVE-2023-28160: Redirect to Web Extension files may have leaked local path
  + CVE-2023-28164: URL being dragged from a removed cross-origin iframe into the same tab triggered navigation
  + CVE-2023-28161: One-time permissions granted to a local file were extended to other local files loaded in the same tab
  + CVE-2023-28162: Invalid downcast in Worklets
  + CVE-2023-25752: Potential out-of-bounds when accessing throttled streams
  + CVE-2023-28163: Windows Save As dialog resolved environment variables
  + CVE-2023-28176: Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9
  + CVE-2023-28177: Memory safety bugs fixed in Firefox 111
    March 3, 2023 Alexey Gladkov 110.0.1-alt1
    - New release (110.0.1).
    Feb. 17, 2023 Alexey Gladkov 110.0-alt1
    - New release (110.0).
- Security fixes:
  + CVE-2023-25728: Content security policy leak in violation reports using iframes
  + CVE-2023-25730: Screen hijack via browser fullscreen mode
  + CVE-2023-25743: Fullscreen notification not shown in Firefox Focus
  + CVE-2023-0767: Arbitrary memory write via PKCS 12 in NSS
  + CVE-2023-25735: Potential use-after-free from compartment mismatch in SpiderMonkey
  + CVE-2023-25737: Invalid downcast in SVGUtils::SetupStrokeGeometry
  + CVE-2023-25738: Printing on Windows could potentially crash Firefox with some device drivers
  + CVE-2023-25739: Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext
  + CVE-2023-25729: Extensions could have opened external schemes without user knowledge
  + CVE-2023-25732: Out of bounds memory write from EncodeInputStream
  + CVE-2023-25734: Opening local .url files could cause unexpected network loads
  + CVE-2023-25740: Opening local .scf files could cause unexpected network loads
  + CVE-2023-25731: Prototype pollution when rendering URLPreview
  + CVE-2023-25733: Possible null pointer dereference in TaskbarPreviewCallback
  + CVE-2023-25736: Invalid downcast in GetTableSelectionMode
  + CVE-2023-25741: Same-origin policy leak via image drag and drop
  + CVE-2023-25742: Web Crypto ImportKey crashes tab
  + CVE-2023-25744: Memory safety bugs fixed in Firefox 110 and Firefox ESR 102.8
  + CVE-2023-25745: Memory safety bugs fixed in Firefox 110
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v23.03.16
    Back to top