Пакет firefox: Информация

    Исходный пакет: firefox
    Версия: 68.0.1-alt0.M80P.1
    Собран:  15 октября 2019 г. 21:24 в задании #236175
    Категория: Сети/WWW
    Сообщить об ошибке в пакете
    Gear: https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=375ab64ab…
    Домашняя страница: http://www.mozilla.org/projects/firefox/
    Лицензия: MPL/GPL/LGPL
    О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
    Описание: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
    Список rpm-пакетов, предоставляемых данным srpm-пакетом:
    firefox (x86_64, i586)
    firefox-debuginfo (x86_64, i586)
    firefox-wayland (noarch)
    rpm-build-firefox (noarch)
    Сопровождающий: Alexey Gladkov
    Список участников:
    Andrey Cherepanov
    Alexey Gladkov
    Gleb Fotengauer-Malinovskiy
    Ivan Zakharyaschev
    Konstantin Lepikhov
      1. alternatives
      2. libwireless-devel
      3. autoconf_2.13
      4. autoconf_2.13
      5. libxkbcommon-devel
      6. libshell
      7. python3-base
      8. libevent-devel
      9. browser-plugins-npapi-devel
      10. bzlib-devel
      11. libffi-devel
      12. chrpath
      13. lld-devel
      14. libfreetype-devel
      15. clang6.0
      16. clang6.0-devel
      17. llvm6.0-devel
      18. libstartup-notification-devel
      19. libstdc++-devel
      20. /proc
      21. gst-plugins1.0-devel
      22. gstreamer1.0-devel
      23. rust >= 1.35.0
      24. rust-cargo >= 1.35.0
      25. rustfmt
      26. libGL-devel
      27. mozilla-common-devel
      28. libnotify-devel
      29. pkgconfig(nspr) >= 4.21
      30. libnss-devel-static
      31. pkgconfig(nss) >= 3.45.0
      32. nasm
      33. node
      34. libgio-devel
      35. libopus-devel
      36. libX11-devel
      37. unzip
      38. libXScrnSaver-devel
      39. libXcomposite-devel
      40. libXcursor-devel
      41. fontconfig-devel
      42. libXdamage-devel
      43. libXext-devel
      44. rpm-build-mozilla.org
      45. libXft-devel
      46. libXi-devel
      47. rpm-macros-alternatives
      48. python-module-distribute
      49. libXt-devel
      50. libcairo-devel
      51. libalsa-devel
      52. python-module-pip
      53. xorg-cf-files
      54. yasm
      55. gcc
      56. gcc-c++
      57. zip
      58. zlib-devel
      59. python-modules-compiler
      60. python-modules-json
      61. python-modules-logging
      62. libpixman-devel
      63. python-modules-sqlite3
      64. libcurl-devel
      65. libgtk+2-devel
      66. libgtk+3-devel
      67. libdbus-devel
      68. libdbus-glib-devel
      69. libjpeg-devel
      70. libhunspell-devel
      71. libvpx5-devel
      72. libpulseaudio-devel
      73. libproxy-devel

    Последнее изменение

    9 сентября 2019 г. Andrey Cherepanov 68.0.1-alt0.M80P.1
    - Backport new version with security fixes to p8 branch.
    1 августа 2019 г. Alexey Gladkov 68.0.1-alt1
    - New release (68.0.1).
    11 июля 2019 г. Alexey Gladkov 68.0-alt1
    - New release (68.0).
- Fixed:
  + CVE-2019-9811: Sandbox escape via installation of malicious language pack
  + CVE-2019-11711: Script injection within domain through inner window reuse
  + CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
  + CVE-2019-11713: Use-after-free with HTTP/2 cached stream
  + CVE-2019-11714: NeckoChild can trigger crash when accessed off of main thread
  + CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a segmentation fault
  + CVE-2019-11715: HTML parsing error can contribute to content XSS
  + CVE-2019-11716: globalThis not enumerable until accessed
  + CVE-2019-11717: Caret character improperly escaped in origins
  + CVE-2019-11718: Activity Stream writes unsanitized content to innerHTML
  + CVE-2019-11719: Out-of-bounds read when importing curve25519 private key
  + CVE-2019-11720: Character encoding XSS vulnerability
  + CVE-2019-11721: Domain spoofing through unicode latin 'kra' character
  + CVE-2019-11730: Same-origin policy treats all files in a directory as having the same-origin
  + CVE-2019-11723: Cookie leakage during add-on fetching across private browsing boundaries
  + CVE-2019-11724: Retired site input.mozilla.org has remote troubleshooting permissions
  + CVE-2019-11725: Websocket resources bypass safebrowsing protections
  + CVE-2019-11727: PKCS#1 v1.5 signatures can be used for TLS 1.3
  + CVE-2019-11728: Port scanning through Alt-Svc header
  + CVE-2019-11710: Memory safety bugs fixed in Firefox 68
  + CVE-2019-11709: Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Версия: v24.4.2
    Наверх