Пакет firefox-esr: Информация

  • Default inline alert: Версия в репозитории: 115.11.0-alt1

Исходный пакет: firefox-esr
Версия: 91.4.0-alt1
Собран:  14 декабря 2021 г. 17:03 в задании #291601
Категория: Сети/WWW
Сообщить об ошибке в пакете
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=e9439…
Домашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL-2.0
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Описание: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox-esr (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-wayland (x86_64, ppc64le, i586, armh, aarch64)
Сопровождающий: Andrey Cherepanov
Список участников:
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
    1. libX11-devel
    2. libpulseaudio-devel
    3. libXScrnSaver-devel
    4. libXcomposite-devel
    5. libjpeg-devel
    6. libXcursor-devel
    7. libXdamage-devel
    8. libXext-devel
    9. libcairo-devel
    10. libXft-devel
    11. libXi-devel
    12. python3-base
    13. libXt-devel
    14. libvpx-devel
    15. /dev/shm
    16. python3-module-pip
    17. libalsa-devel
    18. libaom-devel
    19. python3-module-setuptools
    20. libwireless-devel
    21. libcurl-devel
    22. libdav1d-devel
    23. python3-modules-sqlite3
    24. libdbus-devel
    25. libshell
    26. libdbus-glib-devel
    27. libxkbcommon-devel
    28. rust >= 1.54.0
    29. rust-cargo >= 1.54.0
    30. libdrm-devel
    31. /proc
    32. libevent-devel
    33. lld11.0-devel
    34. alternatives
    35. llvm11.0-devel
    36. libstartup-notification-devel
    37. pkgconfig(nspr) >= 4.32
    38. libstdc++-devel
    39. libffi-devel
    40. pkgconfig(nss) >= 3.69.0
    41. autoconf_2.13
    42. autoconf_2.13
    43. libfreetype-devel
    44. mozilla-common-devel
    45. libnotify-devel
    46. libnss-devel-static
    47. browser-plugins-npapi-devel
    48. rpm-build-mozilla.org
    49. rpm-macros-alternatives
    50. bzlib-devel
    51. nasm
    52. node
    53. unzip
    54. chrpath
    55. clang11.0
    56. clang11.0-devel
    57. gst-plugins1.0-devel
    58. gstreamer1.0-devel
    59. libgio-devel
    60. python-module-setuptools
    61. python-modules-compiler
    62. libopus-devel
    63. python-modules-json
    64. python-modules-logging
    65. python-modules-sqlite3
    66. xorg-cf-files
    67. libGL-devel
    68. yasm
    69. zip
    70. zlib-devel
    71. fontconfig-devel
    72. libgtk+2-devel
    73. libgtk+3-devel
    74. libhunspell-devel
    75. libpixman-devel
    76. libproxy-devel

Последнее изменение

6 декабря 2021 г. Andrey Cherepanov 91.4.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2021-43536 URL leakage when navigating while executing asynchronous function
  + CVE-2021-43537 Heap buffer overflow when using structured clone
  + CVE-2021-43538 Missing fullscreen and pointer lock notification when requesting both
  + CVE-2021-43539 GC rooting failure when calling wasm instance methods
  + CVE-2021-43541 External protocol handler parameters were unescaped
  + CVE-2021-43542 XMLHttpRequest error codes could have leaked the existence of an external protocol handler
  + CVE-2021-43543 Bypass of CSP sandbox directive when embedding
  + CVE-2021-43545 Denial of Service when using the Location API in a loop
  + CVE-2021-43546 Cursor spoofing could overlay user interface when native cursor is zoomed
18 ноября 2021 г. Andrey Cherepanov 91.3.0-alt2
- Show Home button on toolbar by default (ALT #41360).
2 ноября 2021 г. Andrey Cherepanov 91.3.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2021-38503 iframe sandbox rules did not apply to XSLT stylesheets
  + CVE-2021-38504 Use-after-free in file picker dialog
  + CVE-2021-38505 Windows 10 Cloud Clipboard may have recorded sensitive user data
  + CVE-2021-38506 Firefox could be coaxed into going into fullscreen mode without notification or warning
  + CVE-2021-38507 Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports
  + CVE-2021-38508 Permission Prompt could be overlaid, resulting in user confusion and potential spoofing
  + CVE-2021-38509 Javascript alert box could have been spoofed onto an arbitrary domain
  + CVE-2021-38510 Download Protections were bypassed by .inetloc files on Mac OS
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Версия: v24.5.3
Наверх