Пакет firefox-esr: Информация
Default inline alert: Версия в репозитории: 115.10.0-alt1
Бинарный пакет: firefox-esr
Версия: 91.7.0-alt1
Архитектура: i586
Собран: 14 марта 2022 г. 0:59 в задании #296595
Исходный пакет: firefox-esr
Категория: Сети/WWW
Сообщить об ошибке в пакетеЗагрузка: firefox-esr-91.7.0-alt1.i586.rpm
Домашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL-2.0
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Описание:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
Сопровождающий: Andrey Cherepanov
Список участников:
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Pavel Vasenkov
Andrey Cherepanov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Последнее изменение
13 марта 2022 г. Pavel Vasenkov 91.7.0-alt1
- New ESR version. - Security fixes: + CVE-2022-26383 Browser window spoof using fullscreen mode + CVE-2022-26384 iframe allow-scripts sandbox bypass + CVE-2022-26387 Time-of-check time-of-use bug when verifying add-on signatures + CVE-2022-26381 Use-after-free in text reflows + CVE-2022-26386 Temporary files downloaded to /tmp and accessible by other local users
7 марта 2022 г. Pavel Vasenkov 91.6.1-alt1
- New ESR version. - Security fixes: + CVE-2022-26485 Use-after-free in XSLT parameter processing + CVE-2022-26486 Use-after-free in WebGPU IPC Framework
9 февраля 2022 г. Pavel Vasenkov 91.6.0-alt1
- New ESR version. - Security fixes: + CVE-2022-22753 Privilege Escalation to SYSTEM on Windows via Maintenance Service + CVE-2022-22754 Extensions could have bypassed permission confirmation during update + CVE-2022-22756 Drag and dropping an image could have resulted in the dropped object being an executable + CVE-2022-22759 Sandboxed iframes could have executed script if the parent appended elements + CVE-2022-22760 Cross-Origin responses could be distinguished between script and non-script content-types + CVE-2022-22761 frame-ancestors Content Security Policy directive was not enforced for framed extension pages + CVE-2022-22763 Script Execution during invalid object state + CVE-2022-22764 Memory safety bugs fixed in Firefox 97 and Firefox ESR 91.6