Пакет firefox-esr-config-privacy: Информация

    Бинарный пакет: firefox-esr-config-privacy
    Версия: 91.3.0-alt1
    Архитектура: armh
    Собран:  9 ноября 2021 г. 17:43 в задании #288753
    Исходный пакет: firefox-esr
    Категория: Система/Настройка/Сеть
    Сообщить об ошибке в пакете
    Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=9c3dd…
    Лог сборки: https://git.altlinux.org/tasks/288753/build/100/armh/log
    Домашняя страница: http://www.mozilla.org/projects/firefox/
    Лицензия: MPL-2.0
    О пакете: Firefox configuration with the paranoid privacy settings
    Описание: 
    Settings disable:
* obsolete ssl protocols;
* safebrowsing, trackingprotection and other requests to third-party services;
* telemetry;
* webrtc;
* the social features;
* dns and network predictors/prefetch;
* and some more...

Most likely you don't need to use this package.
    Сопровождающий: Andrey Cherepanov
    Список участников:
    Andrey Cherepanov
    Alexey Gladkov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev

    Последнее изменение

    2 ноября 2021 г. Andrey Cherepanov 91.3.0-alt1
    - New ESR version.
- Security fixes:
  + CVE-2021-38503 iframe sandbox rules did not apply to XSLT stylesheets
  + CVE-2021-38504 Use-after-free in file picker dialog
  + CVE-2021-38505 Windows 10 Cloud Clipboard may have recorded sensitive user data
  + CVE-2021-38506 Firefox could be coaxed into going into fullscreen mode without notification or warning
  + CVE-2021-38507 Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports
  + CVE-2021-38508 Permission Prompt could be overlaid, resulting in user confusion and potential spoofing
  + CVE-2021-38509 Javascript alert box could have been spoofed onto an arbitrary domain
  + CVE-2021-38510 Download Protections were bypassed by .inetloc files on Mac OS
    5 октября 2021 г. Andrey Cherepanov 91.2.0-alt1
    - New ESR version.
- Security fixes:
  + CVE-2021-38496 Use-after-free in MessageTask
  + CVE-2021-38497 Validation message could have been overlaid on another origin
  + CVE-2021-38498 Use-after-free of nsLanguageAtomService object
  + CVE-2021-32810 Data race in crossbeam-deque
  + CVE-2021-38500 Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2
  + CVE-2021-38501 Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2
    7 сентября 2021 г. Andrey Cherepanov 91.1.0-alt1
    - New ESR version.
- Security fixes:
  + CVE-2021-38492 Navigating to `mk:` URL scheme could load Internet Explorer
  + CVE-2021-38495 Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Версия: v24.5.3
    Наверх