Пакет firefox: Информация
Default inline alert: Версия в репозитории: 68.0.1-alt0.M80P.1
Исходный пакет: firefox
Версия: 60.0.1-alt0.M80P.1
Собран: 14 июня 2018 г. 5:36 в задании #206884
Категория: Сети/WWW
Сообщить об ошибке в пакетеДомашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL/GPL/LGPL
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Описание:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox (x86_64, i586)
firefox-debuginfo (x86_64, i586)
rpm-build-firefox (noarch)
firefox (x86_64, i586)
firefox-debuginfo (x86_64, i586)
rpm-build-firefox (noarch)
Сопровождающий: Alexey Gladkov
Последнее изменение
5 июня 2018 г. Andrey Cherepanov 60.0.1-alt0.M80P.1
- Backport new version to p8 branch.
17 мая 2018 г. Alexey Gladkov 60.0.1-alt1
- New release (60.0.1). - Fixed: + CVE-2018-5154: Use-after-free with SVG animations and clip paths + CVE-2018-5155: Use-after-free with SVG animations and text paths + CVE-2018-5157: Same-origin bypass of PDF Viewer to view protected PDF files + CVE-2018-5158: Malicious PDF can inject JavaScript into PDF Viewer + CVE-2018-5159: Integer overflow and out-of-bounds write in Skia + CVE-2018-5160: Uninitialized memory use by WebRTC encoder + CVE-2018-5152: WebExtensions information leak through webRequest API + CVE-2018-5153: Out-of-bounds read in mixed content websocket messages + CVE-2018-5163: Replacing cached data in JavaScript Start-up Bytecode Cache + CVE-2018-5164: CSP not applied to all multipart content sent with multipart/x-mixed-replace + CVE-2018-5166: WebExtension host permission bypass through filterReponseData + CVE-2018-5167: Improper linkification of chrome: and javascript: content in web console and JavaScript debugger + CVE-2018-5168: Lightweight themes can be installed without user interaction + CVE-2018-5169: Dragging and dropping link text onto home button can set home page to include chrome pages + CVE-2018-5172: Pasted script from clipboard can run in the Live Bookmarks page or PDF viewer + CVE-2018-5173: File name spoofing of Downloads panel with Unicode characters + CVE-2018-5174: Windows Defender SmartScreen UI runs with less secure behavior for downloaded files in Windows 10 April 2018 Update + CVE-2018-5175: Universal CSP bypass on sites using strict-dynamic in their policies + CVE-2018-5176: JSON Viewer script injection + CVE-2018-5177: Buffer overflow in XSLT during number formatting + CVE-2018-5165: Checkbox for enabling Flash protected mode is inverted in 32-bit Firefox + CVE-2018-5180: heap-use-after-free in mozilla::WebGLContext::DrawElementsInstanced + CVE-2018-5181: Local file can be displayed in noopener tab through drag and drop of hyperlink + CVE-2018-5182: Local file can be displayed from hyperlink dragged and dropped on addressbar + CVE-2018-5151: Memory safety bugs fixed in Firefox 60 + CVE-2018-5150: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8
3 апреля 2018 г. Andrey Cherepanov 59.0.2-alt1.M80P.1
- Backport new version to p8 branch.