Пакет firefox-esr: Информация

    Бинарный пакет: firefox-esr
    Версия: 91.9.1-alt1
    Архитектура: armh
    Собран:  24 мая 2022 г. 15:12 в задании #300522
    Исходный пакет: firefox-esr
    Категория: Сети/WWW
    Сообщить об ошибке в пакете
    Домашняя страница: http://www.mozilla.org/projects/firefox/

    Лицензия: MPL-2.0
    О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
    Описание: 
    The Mozilla Firefox project is a redesign of Mozilla's browser component,
    written using the XUL user interface language and designed to be
    cross-platform.

    Сопровождающий: Andrey Cherepanov


    Права:
    Pavel Vasenkov
    Andrey Cherepanov
    @everybody

    Последнее изменение


    22 мая 2022 г. Pavel Vasenkov 91.9.1-alt1
    - New ESR version.
    - Security fixes:
      + CVE-2022-1802 Prototype pollution in Top-Level Await implementation
      + CVE-2022-1529 Untrusted input used in JavaScript object indexing, leading to prototype pollution
    4 мая 2022 г. Pavel Vasenkov 91.9.0-alt1
    - New ESR version.
    - Security fixes:
      + CVE-2022-29914 Fullscreen notification bypass using popups
      + CVE-2022-29909 Bypassing permission prompt in nested browsing contexts
      + CVE-2022-29916 Leaking browser history with CSS variables
      + CVE-2022-29911 iframe Sandbox bypass
      + CVE-2022-29912 Reader mode bypassed SameSite cookies
      + CVE-2022-29917 Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9
    6 апреля 2022 г. Pavel Vasenkov 91.8.0-alt1
    - New ESR version.
    - Security fixes:
      + CVE-2022-1097 Use-after-free in NSSToken objects
      + CVE-2022-28281 Out of bounds write due to unexpected WebAuthN Extensions
      + CVE-2022-1196 Use-after-free after VR Process destruction
      + CVE-2022-28282 Use-after-free in DocumentL10n::TranslateDocument
      + CVE-2022-28285 Incorrect AliasSet used in JIT Codegen
      + CVE-2022-28286 iframe contents could be rendered outside the border
      + CVE-2022-24713 Denial of Service via complex regular expressions
      + CVE-2022-28289 Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8