Пакет firefox-esr: Информация
Default inline alert: Версия в репозитории: 115.11.0-alt1
Исходный пакет: firefox-esr
Версия: 91.4.0-alt1
Собран: 14 декабря 2021 г. 17:03 в задании #291601
Категория: Сети/WWW
Сообщить об ошибке в пакетеДомашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL-2.0
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Описание:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox-esr (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-wayland (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
firefox-esr-wayland (x86_64, ppc64le, i586, armh, aarch64)
Сопровождающий: Andrey Cherepanov
Последнее изменение
6 декабря 2021 г. Andrey Cherepanov 91.4.0-alt1
- New ESR version. - Security fixes: + CVE-2021-43536 URL leakage when navigating while executing asynchronous function + CVE-2021-43537 Heap buffer overflow when using structured clone + CVE-2021-43538 Missing fullscreen and pointer lock notification when requesting both + CVE-2021-43539 GC rooting failure when calling wasm instance methods + CVE-2021-43541 External protocol handler parameters were unescaped + CVE-2021-43542 XMLHttpRequest error codes could have leaked the existence of an external protocol handler + CVE-2021-43543 Bypass of CSP sandbox directive when embedding + CVE-2021-43545 Denial of Service when using the Location API in a loop + CVE-2021-43546 Cursor spoofing could overlay user interface when native cursor is zoomed
18 ноября 2021 г. Andrey Cherepanov 91.3.0-alt2
- Show Home button on toolbar by default (ALT #41360).
2 ноября 2021 г. Andrey Cherepanov 91.3.0-alt1
- New ESR version. - Security fixes: + CVE-2021-38503 iframe sandbox rules did not apply to XSLT stylesheets + CVE-2021-38504 Use-after-free in file picker dialog + CVE-2021-38505 Windows 10 Cloud Clipboard may have recorded sensitive user data + CVE-2021-38506 Firefox could be coaxed into going into fullscreen mode without notification or warning + CVE-2021-38507 Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports + CVE-2021-38508 Permission Prompt could be overlaid, resulting in user confusion and potential spoofing + CVE-2021-38509 Javascript alert box could have been spoofed onto an arbitrary domain + CVE-2021-38510 Download Protections were bypassed by .inetloc files on Mac OS