Package firefox: Information

  • Default inline alert: Version in the repository: 134.0.1-alt1

Source package: firefox
Version: 134.0-alt1
Latest version according to Repology
Build time:  Jan 10, 2025, 09:45 PM in the task #368493
Category: Networking/WWW
Report package bug
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
Mozilla Firefox is an open-source web browser, designed
for standards compliance, performance and portability.

List of RPM packages built from this SRPM:
firefox (x86_64, i586, aarch64)
firefox-config-privacy (x86_64, i586, aarch64)
firefox-debuginfo (x86_64, i586, aarch64)

Maintainer: Ajrat Makhmutov



    1. /dev/shm
    2. /proc
    3. alternatives
    4. browser-plugins-npapi-devel
    5. cbindgen
    6. chrpath
    7. clang17.0
    8. clang17.0-devel
    9. glibc-kernheaders-generic
    10. gst-plugins1.0-devel
    11. gstreamer1.0-devel
    12. libnss-devel-static
    13. libshell
    14. libstdc++-devel
    15. libwireless-devel
    16. lld17.0-devel
    17. llvm17.0-devel
    18. mozilla-common-devel
    19. nasm
    20. node
    21. pkgconfig(alsa)
    22. pkgconfig(aom)
    23. pkgconfig(bzip2)
    24. pkgconfig(cairo)
    25. pkgconfig(dav1d)
    26. pkgconfig(dbus-1)
    27. pkgconfig(dbus-glib-1)
    28. pkgconfig(dri)
    29. pkgconfig(fontconfig)
    30. pkgconfig(freetype2)
    31. pkgconfig(gio-2.0)
    32. pkgconfig(graphite2)
    33. pkgconfig(gtk+-3.0)
    34. pkgconfig(harfbuzz)
    35. pkgconfig(hunspell)
    36. pkgconfig(icu-i18n)
    37. pkgconfig(libcurl)
    38. pkgconfig(libdrm)
    39. pkgconfig(libevent)
    40. pkgconfig(libffi)
    41. pkgconfig(libjpeg)
    42. pkgconfig(libnotify)
    43. pkgconfig(libproxy-1.0)
    44. pkgconfig(libpulse)
    45. pkgconfig(libstartup-notification-1.0)
    46. pkgconfig(nspr) >= 4.35
    47. pkgconfig(nss) >= 3.98
    48. pkgconfig(opus)
    49. pkgconfig(pixman-1)
    50. pkgconfig(vpx)
    51. pkgconfig(x11)
    52. pkgconfig(xcomposite)
    53. pkgconfig(xcursor)
    54. pkgconfig(xdamage)
    55. pkgconfig(xext)
    56. pkgconfig(xft)
    57. pkgconfig(xi)
    58. pkgconfig(xkbcommon)
    59. pkgconfig(xrandr)
    60. pkgconfig(xscrnsaver)
    61. pkgconfig(xt)
    62. pkgconfig(xtst)
    63. pkgconfig(zlib)
    64. python3(click)
    65. python3(curses)
    66. python3(hamcrest)
    67. python3(pip)
    68. python3(setuptools)
    69. python3(sqlite3)
    70. python3-base
    71. rpm-build-firefox
    72. rpm-macros-alternatives
    73. rust >= 1.65.0
    74. rust-cargo >= 1.65.0
    75. unzip
    76. xorg-cf-files
    77. yasm
    78. zip

Last changed


Jan. 9, 2025 Ajrat Makhmutov 134.0-alt1
- New version (134.0).
- Security fixes:
  + CVE-2025-0244: Address bar spoofing using an invalid protocol scheme on Firefox for Android
  + CVE-2025-0245: Lock screen setting bypass in Firefox Focus for Android
  + CVE-2025-0246: Address bar spoofing using an invalid protocol scheme on Firefox for Android
  + CVE-2025-0237: WebChannel APIs susceptible to confused deputy attack
  + CVE-2025-0238: Use-after-free when breaking lines in text
  + CVE-2025-0239: Alt-Svc ALPN validation failure when redirected
  + CVE-2025-0240: Compartment mismatch when parsing JavaScript JSON module
  + CVE-2025-0241: Memory corruption when using JavaScript Text Segmentation
  + CVE-2025-0242: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6
  + CVE-2025-0243: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6
  + CVE-2025-0247: Memory safety bugs fixed in Firefox 134 and Thunderbird 134
Dec. 20, 2024 Ajrat Makhmutov 133.0.3-alt1
- New version (133.0.3).
- Fix FTBFS with python 3.12.8.
Nov. 28, 2024 Ajrat Makhmutov 133.0.0-alt1
- New version (133.0.0).
- Security fixes:
  + CVE-2024-11691: Out-of-bounds write in Apple GPU drivers via WebGL
  + CVE-2024-11700: Potential Tapjacking Exploit for Intent Confirmation on Android
  + CVE-2024-11692: Select list elements could be shown over another site
  + CVE-2024-11701: Misleading Address Bar State During Navigation Interruption
  + CVE-2024-11702: Inadequate Clipboard Protection in Private Browsing Mode on Android
  + CVE-2024-11693: Download Protections were bypassed by .library-ms files on Windows
  + CVE-2024-11694: CSP Bypass and XSS Exposure via Web Compatibility Shims
  + CVE-2024-11695: URL Bar Spoofing via Manipulated Punycode and Whitespace Characters
  + CVE-2024-11703: Password access without authentication via PIN bypass on Android
  + CVE-2024-11696: Unhandled Exception in Add-on Signature Verification
  + CVE-2024-11697: Improper Keypress Handling in Executable File Confirmation Dialog
  + CVE-2024-11704: Potential Double-Free Vulnerability in PKCS#7 Decryption Handling
  + CVE-2024-11698: Fullscreen Lock-Up When Modal Dialog Interrupts Transition on macOS
  + CVE-2024-11705: Null Pointer Dereference in NSC_DeriveKey
  + CVE-2024-11706: Null Pointer Dereference in PKCS#12 Utility
  + CVE-2024-11708: Data race with PlaybackParams
  + CVE-2024-11699: Memory safety bugs fixed in Firefox 133, Firefox ESR 128.5, and Thunderbird 128.5