Пакет firefox-esr-config-privacy: Информация

Бинарный пакет: firefox-esr-config-privacy
Версия: 91.3.0-alt1
Архитектура: i586
Собран:  9 ноября 2021 г. 17:43 в задании #288753
Исходный пакет: firefox-esr
Категория: Система/Настройка/Сеть
Сообщить об ошибке в пакете
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=9c3dd…
Лог сборки: https://git.altlinux.org/tasks/288753/build/100/i586/log
Домашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL-2.0
О пакете: Firefox configuration with the paranoid privacy settings
Описание: 
Settings disable:
* obsolete ssl protocols;
* safebrowsing, trackingprotection and other requests to third-party services;
* telemetry;
* webrtc;
* the social features;
* dns and network predictors/prefetch;
* and some more...

Most likely you don't need to use this package.
Сопровождающий: Andrey Cherepanov
Список участников:
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev

Последнее изменение

2 ноября 2021 г. Andrey Cherepanov 91.3.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2021-38503 iframe sandbox rules did not apply to XSLT stylesheets
  + CVE-2021-38504 Use-after-free in file picker dialog
  + CVE-2021-38505 Windows 10 Cloud Clipboard may have recorded sensitive user data
  + CVE-2021-38506 Firefox could be coaxed into going into fullscreen mode without notification or warning
  + CVE-2021-38507 Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports
  + CVE-2021-38508 Permission Prompt could be overlaid, resulting in user confusion and potential spoofing
  + CVE-2021-38509 Javascript alert box could have been spoofed onto an arbitrary domain
  + CVE-2021-38510 Download Protections were bypassed by .inetloc files on Mac OS
5 октября 2021 г. Andrey Cherepanov 91.2.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2021-38496 Use-after-free in MessageTask
  + CVE-2021-38497 Validation message could have been overlaid on another origin
  + CVE-2021-38498 Use-after-free of nsLanguageAtomService object
  + CVE-2021-32810 Data race in crossbeam-deque
  + CVE-2021-38500 Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2
  + CVE-2021-38501 Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2
7 сентября 2021 г. Andrey Cherepanov 91.1.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2021-38492 Navigating to `mk:` URL scheme could load Internet Explorer
  + CVE-2021-38495 Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Версия: v24.5.3
Наверх