Пакет firefox: Информация
Исходный пакет: firefox
Версия: 124.0-alt1
Собран: 20 марта 2024 г. 19:13 в задании #343190
Категория: Сети/WWW
Сообщить об ошибке в пакетеДомашняя страница: https://www.mozilla.org/firefox/
Лицензия: MPL-2.0
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Описание:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
firefox (x86_64, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, aarch64)
firefox (x86_64, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, aarch64)
Сопровождающий: Alexey Gladkov
Список участников:
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Последнее изменение
20 марта 2024 г. Alexey Gladkov 124.0-alt1
- New release (124.0). - Security fixes: + CVE-2024-2605: Windows Error Reporter could be used as a Sandbox escape vector + CVE-2024-2606: Mishandling of WASM register values + CVE-2024-2607: JIT code failed to save return registers on Armv7-A + CVE-2024-2608: Integer overflow could have led to out of bounds write + CVE-2023-5388: NSS susceptible to timing attack against RSA decryption + CVE-2024-2609: Permission prompt input delay could expire when not in focus + CVE-2024-2610: Improper handling of html and body tags enabled CSP nonce leakage + CVE-2024-2611: Clickjacking vulnerability could have led to a user accidentally granting permissions + CVE-2024-2612: Self referencing object could have potentially led to a use-after-free + CVE-2024-2613: Improper handling of QUIC ACK frame data could have led to OOM + CVE-2024-2614: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9 + CVE-2024-2615: Memory safety bugs fixed in Firefox 124
6 марта 2024 г. Alexey Gladkov 123.0.1-alt1
- New release (123.0.1).
24 февраля 2024 г. Alexey Gladkov 123.0-alt1
- New release (123.0). - Security fixes: + CVE-2024-1546: Out-of-bounds memory read in networking channels + CVE-2024-1547: Alert dialog could have been spoofed on another site + CVE-2024-1554: fetch could be used to effect cache poisoning + CVE-2024-1548: Fullscreen Notification could have been hidden by select element + CVE-2024-1549: Custom cursor could obscure the permission dialog + CVE-2024-1550: Mouse cursor re-positioned unexpectedly could have led to unintended permission grants + CVE-2024-1551: Multipart HTTP Responses would accept the Set-Cookie header in response parts + CVE-2024-1555: SameSite cookies were not properly respected when opening a website from an external browser + CVE-2024-1556: Invalid memory access in the built-in profiler + CVE-2024-1552: Incorrect code generation on 32-bit ARM devices + CVE-2024-1553: Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8 + CVE-2024-1557: Memory safety bugs fixed in Firefox 123