Пакет firefox-esr: Информация
Default inline alert: Версия в репозитории: 115.9.1-alt0.c10.1
Исходный пакет: firefox-esr
Версия: 68.7.0-alt1
Собран: 9 апреля 2020 г. 1:05 в задании #249622
Категория: Сети/WWW
Сообщить об ошибке в пакетеДомашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL-2.0
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Описание:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox-esr (x86_64, ppc64le, i586, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, aarch64)
firefox-esr-wayland (noarch)
firefox-esr (x86_64, ppc64le, i586, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, aarch64)
firefox-esr-wayland (noarch)
Сопровождающий: Andrey Cherepanov
Последнее изменение
6 апреля 2020 г. Andrey Cherepanov 68.7.0-alt1
- New ESR version (68.7.0). - Fixes: + CVE-2020-6828 Preference overwrite via crafted Intent from malicious Android application + CVE-2020-6827 Custom Tabs in Firefox for Android could have the URI spoofed + CVE-2020-6821 Uninitialized memory could be read when using the WebGL copyTexSubImage method + CVE-2020-6822 Out of bounds write in GMPDecodeData when processing large images + CVE-2020-6825 Memory safety bugs fixed in Firefox 75 and Firefox ESR 68.7
4 апреля 2020 г. Andrey Cherepanov 68.6.1-alt1
- New ESR version (68.6.1). - Fixed: + CVE-2020-6819 Use-after-free while running the nsDocShell destructor + CVE-2020-6820 Use-after-free when handling a ReadableStream
10 марта 2020 г. Andrey Cherepanov 68.6.0-alt1
- New ESR version (68.6.0). - Fix license tag according to SPDX. - Fixed: + CVE-2020-6805 Use-after-free when removing data about origins + CVE-2020-6806 BodyStream::OnInputStreamReady was missing protections against state confusion + CVE-2020-6807 Use-after-free in cubeb during stream destruction + CVE-2020-6811 Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection + CVE-2019-20503 Out of bounds reads in sctp_load_addresses_from_init + CVE-2020-6812 The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission + CVE-2020-6814 Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6