Пакет firefox-esr: Информация

  • Default inline alert: Версия в репозитории: 115.10.0-alt1

Исходный пакет: firefox-esr
Версия: 68.2.0-alt1
Собран:  29 октября 2019 г. 15:13 в задании #239816
Категория: Сети/WWW
Сообщить об ошибке в пакете
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=03809…
Домашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL/GPL/LGPL
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Описание: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox-esr (x86_64, ppc64le, i586, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, aarch64)
firefox-esr-wayland (noarch)
Сопровождающий: Andrey Cherepanov
Список участников:
Andrey Cherepanov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
    1. libalsa-devel
    2. libvpx5-devel
    3. libcurl-devel
    4. python3-base
    5. /dev/shm
    6. libwireless-devel
    7. libshell
    8. libdbus-devel
    9. libdbus-glib-devel
    10. alternatives
    11. libevent-devel
    12. libxkbcommon-devel
    13. autoconf_2.13
    14. /proc
    15. libffi-devel
    16. autoconf_2.13
    17. libstartup-notification-devel
    18. libstdc++-devel
    19. libfreetype-devel
    20. rust >= 1.35.0
    21. rust-cargo >= 1.35.0
    22. browser-plugins-npapi-devel
    23. bzlib-devel
    24. chrpath
    25. clang7.0
    26. clang7.0-devel
    27. libnotify-devel
    28. rpm-build-mozilla.org
    29. libnss-devel-static
    30. lld-devel
    31. libgio-devel
    32. rpm-macros-alternatives
    33. llvm7.0-devel
    34. pkgconfig(nspr) >= 4.21
    35. pkgconfig(nss) >= 3.45.0
    36. libopus-devel
    37. gst-plugins1.0-devel
    38. libX11-devel
    39. gstreamer1.0-devel
    40. unzip
    41. mozilla-common-devel
    42. libXScrnSaver-devel
    43. libXcomposite-devel
    44. libXcursor-devel
    45. libXdamage-devel
    46. libXext-devel
    47. nasm
    48. libXft-devel
    49. libXi-devel
    50. libpixman-devel
    51. libGL-devel
    52. libXt-devel
    53. xorg-cf-files
    54. fontconfig-devel
    55. yasm
    56. python-module-distribute
    57. libcairo-devel
    58. node
    59. zip
    60. zlib-devel
    61. libgtk+2-devel
    62. libgtk+3-devel
    63. libhunspell-devel
    64. python-module-pip
    65. libjpeg-devel
    66. libpulseaudio-devel
    67. python-modules-compiler
    68. python-modules-json
    69. python-modules-logging
    70. python-modules-sqlite3
    71. libproxy-devel

Последнее изменение

27 октября 2019 г. Andrey Cherepanov 68.2.0-alt1
- New ESR version (68.2.0).
- Fixed:
  + CVE-2019-15903 Heap overflow in expat library in XML_GetCurrentLineNumber
  + CVE-2019-11757 Use-after-free when creating index updates in IndexedDB
  + CVE-2019-11758 Potentially exploitable crash due to 360 Total Security
  + CVE-2019-11759 Stack buffer overflow in HKDF output
  + CVE-2019-11760 Stack buffer overflow in WebRTC networking
  + CVE-2019-11761 Unintended access to a privileged JSONView object
  + CVE-2019-11762 document.domain-based origin isolation has same-origin-property violation
  + CVE-2019-11763 Incorrect HTML parsing results in XSS bypass technique
  + CVE-2019-11764 Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2
19 сентября 2019 г. Andrey Cherepanov 68.1.0-alt2
- Fix open context menu (thanks george@).
4 сентября 2019 г. Andrey Cherepanov 68.1.0-alt1
- New ESR version (68.1.0).
- Fixed:
  + CVE-2019-11751 Malicious code execution through command line parameters
  + CVE-2019-11746 Use-after-free while manipulating video
  + CVE-2019-11744 XSS by breaking out of title and textarea elements using innerHTML
  + CVE-2019-11742 Same-origin policy violation with SVG filters and canvas to steal cross-origin images
  + CVE-2019-11736 File manipulation and privilege escalation in Mozilla Maintenance Service
  + CVE-2019-11753 Privilege escalation with Mozilla Maintenance Service in custom Firefox installation location
  + CVE-2019-11752 Use-after-free while extracting a key value in IndexedDB
  + CVE-2019-9812 Sandbox escape through Firefox Sync
  + CVE-2019-11743 Cross-origin access to unload event attributes
  + CVE-2019-11748 Persistence of WebRTC permissions in a third party context
  + CVE-2019-11749 Camera information available without prompting using getUserMedia
  + CVE-2019-11750 Type confusion in Spidermonkey
  + CVE-2019-11738 Content security policy bypass through hash-based sources in directives
  + CVE-2019-11747 'Forget about this site' removes sites from pre-loaded HSTS list
  + CVE-2019-11735 Memory safety bugs fixed in Firefox 69 and Firefox ESR 68.1
  + CVE-2019-11740 Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9
- Build in 8 jobs.
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Версия: v24.5.1
Наверх