Пакет firefox: Информация
Исходный пакет: firefox
Версия: 68.0.1-alt0.M80P.1
Собран: 15 октября 2019 г. 21:24 в задании #236175
Категория: Сети/WWW
Сообщить об ошибке в пакетеДомашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL/GPL/LGPL
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Описание:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox (x86_64, i586)
firefox-debuginfo (x86_64, i586)
firefox-wayland (noarch)
rpm-build-firefox (noarch)
firefox (x86_64, i586)
firefox-debuginfo (x86_64, i586)
firefox-wayland (noarch)
rpm-build-firefox (noarch)
Сопровождающий: Alexey Gladkov
Список участников:
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Последнее изменение
9 сентября 2019 г. Andrey Cherepanov 68.0.1-alt0.M80P.1
- Backport new version with security fixes to p8 branch.
1 августа 2019 г. Alexey Gladkov 68.0.1-alt1
- New release (68.0.1).
11 июля 2019 г. Alexey Gladkov 68.0-alt1
- New release (68.0). - Fixed: + CVE-2019-9811: Sandbox escape via installation of malicious language pack + CVE-2019-11711: Script injection within domain through inner window reuse + CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects + CVE-2019-11713: Use-after-free with HTTP/2 cached stream + CVE-2019-11714: NeckoChild can trigger crash when accessed off of main thread + CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a segmentation fault + CVE-2019-11715: HTML parsing error can contribute to content XSS + CVE-2019-11716: globalThis not enumerable until accessed + CVE-2019-11717: Caret character improperly escaped in origins + CVE-2019-11718: Activity Stream writes unsanitized content to innerHTML + CVE-2019-11719: Out-of-bounds read when importing curve25519 private key + CVE-2019-11720: Character encoding XSS vulnerability + CVE-2019-11721: Domain spoofing through unicode latin 'kra' character + CVE-2019-11730: Same-origin policy treats all files in a directory as having the same-origin + CVE-2019-11723: Cookie leakage during add-on fetching across private browsing boundaries + CVE-2019-11724: Retired site input.mozilla.org has remote troubleshooting permissions + CVE-2019-11725: Websocket resources bypass safebrowsing protections + CVE-2019-11727: PKCS#1 v1.5 signatures can be used for TLS 1.3 + CVE-2019-11728: Port scanning through Alt-Svc header + CVE-2019-11710: Memory safety bugs fixed in Firefox 68 + CVE-2019-11709: Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8