Пакет firefox-esr: Информация
Default inline alert: Версия в репозитории: 115.11.0-alt1
Исходный пакет: firefox-esr
Версия: 68.8.0-alt1
Собран: 5 мая 2020 г. 19:29 в задании #251192
Категория: Сети/WWW
Сообщить об ошибке в пакетеДомашняя страница: http://www.mozilla.org/projects/firefox/
Лицензия: MPL-2.0
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Описание:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox-esr (x86_64, ppc64le, i586, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, aarch64)
firefox-esr-wayland (noarch)
firefox-esr (x86_64, ppc64le, i586, aarch64)
firefox-esr-debuginfo (x86_64, ppc64le, i586, aarch64)
firefox-esr-wayland (noarch)
Сопровождающий: Andrey Cherepanov
Последнее изменение
5 мая 2020 г. Andrey Cherepanov 68.8.0-alt1
- New ESR version (68.8.0). - Fixes: + CVE-2020-12387 Use-after-free during worker shutdown + CVE-2020-12388 Sandbox escape with improperly guarded Access Tokens + CVE-2020-12389 Sandbox escape with improperly separated process types + CVE-2020-6831 Buffer overflow in SCTP chunk input validation + CVE-2020-12392 Arbitrary local file access with 'Copy as cURL' + CVE-2020-12393 Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection + CVE-2020-12395 Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8
6 апреля 2020 г. Andrey Cherepanov 68.7.0-alt1
- New ESR version (68.7.0). - Fixes: + CVE-2020-6828 Preference overwrite via crafted Intent from malicious Android application + CVE-2020-6827 Custom Tabs in Firefox for Android could have the URI spoofed + CVE-2020-6821 Uninitialized memory could be read when using the WebGL copyTexSubImage method + CVE-2020-6822 Out of bounds write in GMPDecodeData when processing large images + CVE-2020-6825 Memory safety bugs fixed in Firefox 75 and Firefox ESR 68.7
4 апреля 2020 г. Andrey Cherepanov 68.6.1-alt1
- New ESR version (68.6.1). - Fixed: + CVE-2020-6819 Use-after-free while running the nsDocShell destructor + CVE-2020-6820 Use-after-free when handling a ReadableStream