Package firefox: Information

  • Default inline alert: Version in the repository: 125.0.2-alt1

Source package: firefox
Version: 101.0-alt1
Latest version according to Repology
Build time:  Jun 2, 2022, 01:29 PM in the task #301047
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=3ed4146fc…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, i586, armh, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, i586, armh, aarch64)
firefox-wayland (x86_64, i586, armh, aarch64)
Maintainer: Alexey Gladkov
List of contributors:
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
ACL:
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ajrat Makhmutov
Egor Ignatov
    1. python3(hamcrest)
    2. libwireless-devel
    3. python3-base
    4. /dev/shm
    5. alternatives
    6. libshell
    7. lld13.0-devel
    8. llvm13.0-devel
    9. python3(pip)
    10. libstdc++-devel
    11. /proc
    12. rust >= 1.60.0
    13. rust-cargo >= 1.60.0
    14. browser-plugins-npapi-devel
    15. mozilla-common-devel
    16. gst-plugins1.0-devel
    17. gstreamer1.0-devel
    18. pkgconfig(alsa)
    19. pkgconfig(aom)
    20. pkgconfig(bzip2)
    21. pkgconfig(cairo)
    22. pkgconfig(dav1d)
    23. pkgconfig(dbus-1)
    24. pkgconfig(dbus-glib-1)
    25. pkgconfig(dri)
    26. chrpath
    27. rpm-build-firefox
    28. pkgconfig(fontconfig)
    29. pkgconfig(freetype2)
    30. pkgconfig(gio-2.0)
    31. libnss-devel-static
    32. nasm
    33. clang13.0
    34. clang13.0-devel
    35. pkgconfig(graphite2)
    36. rpm-macros-alternatives
    37. node
    38. pkgconfig(gtk+-2.0)
    39. pkgconfig(gtk+-3.0)
    40. pkgconfig(harfbuzz)
    41. pkgconfig(hunspell)
    42. pkgconfig(icu-i18n)
    43. pkgconfig(libcurl)
    44. pkgconfig(libdrm)
    45. pkgconfig(libevent)
    46. pkgconfig(libffi)
    47. pkgconfig(libjpeg)
    48. unzip
    49. pkgconfig(libnotify)
    50. pkgconfig(libproxy-1.0)
    51. pkgconfig(libpulse)
    52. pkgconfig(libstartup-notification-1.0)
    53. python3(setuptools)
    54. pkgconfig(nspr) >= 4.33
    55. pkgconfig(nss) >= 3.77
    56. pkgconfig(opus)
    57. pkgconfig(pixman-1)
    58. pkgconfig(vpx)
    59. pkgconfig(x11)
    60. pkgconfig(xcomposite)
    61. pkgconfig(xcursor)
    62. pkgconfig(xdamage)
    63. pkgconfig(xext)
    64. pkgconfig(xft)
    65. pkgconfig(xi)
    66. pkgconfig(xkbcommon)
    67. pkgconfig(xrandr)
    68. pkgconfig(xscrnsaver)
    69. pkgconfig(xt)
    70. pkgconfig(xtst)
    71. pkgconfig(zlib)
    72. python3(sqlite3)
    73. xorg-cf-files
    74. yasm
    75. zip

Last changed

June 1, 2022 Alexey Gladkov 101.0-alt1
- New release (101.0).
- Use internal cbindgen again.
- Security fixes:
  + CVE-2022-31736: Cross-Origin resource's length leaked
  + CVE-2022-31737: Heap buffer overflow in WebGL
  + CVE-2022-31738: Browser window spoof using fullscreen mode
  + CVE-2022-31739: Attacker-influenced path traversal when saving downloaded files
  + CVE-2022-31740: Register allocation problem in WASM on arm64
  + CVE-2022-31741: Uninitialized variable leads to invalid memory read
  + CVE-2022-31742: Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information
  + CVE-2022-31743: HTML Parsing incorrectly ended HTML comments prematurely
  + CVE-2022-31744: CSP bypass enabling stylesheet injection
  + CVE-2022-31745: Incorrect Assertion caused by unoptimized array shift operations
  + CVE-2022-1919: Memory Corruption when manipulating webp images
  + CVE-2022-31747: Memory safety bugs fixed in Firefox 101 and Firefox ESR 91.10
  + CVE-2022-31748: Memory safety bugs fixed in Firefox 101
May 21, 2022 Alexey Gladkov 100.0.2-alt1
- New release (100.0.2).
- Security fixes:
  + CVE-2022-1802: Prototype pollution in Top-Level Await implementation
  + CVE-2022-1529: Untrusted input used in JavaScript object indexing, leading to prototype pollution
May 3, 2022 Alexey Gladkov 100.0-alt1
- New release (100.0).
- Security fixes:
  + CVE-2022-29914: Fullscreen notification bypass using popups
  + CVE-2022-29909: Bypassing permission prompt in nested browsing contexts
  + CVE-2022-29916: Leaking browser history with CSS variables
  + CVE-2022-29911: iframe Sandbox bypass
  + CVE-2022-29912: Reader mode bypassed SameSite cookies
  + CVE-2022-29910: Firefox for Android forgot HTTP Strict Transport Security settings
  + CVE-2022-29915: Leaking cross-origin redirect through the Performance API
  + CVE-2022-29917: Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9
  + CVE-2022-29918: Memory safety bugs fixed in Firefox 100
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top