|
1 ------------------------------------------------------------------- |
|
2 Tue Jun 7 19:47:25 UTC 2016 - wr@rosenauer.org |
|
3 |
|
4 - update to Firefox 47.0 (boo#983549) |
|
5 * Enable VP9 video codec for users with fast machines |
|
6 * Embedded YouTube videos now play with HTML5 video if Flash is |
|
7 not installed |
|
8 * View and search open tabs from your smartphone or another |
|
9 computer in a sidebar |
|
10 * Allow no-cache on back/forward navigations for https resources |
|
11 security fixes: |
|
12 * MFSA 2016-49/CVE-2016-2815/CVE-2016-2818 |
|
13 (boo#983638) |
|
14 (bmo#1241896, bmo#1242798, bmo#1243466, bmo#1245743, |
|
15 bmo#1264300, bmo#1271037, bmo#1234147, bmo#1256493, |
|
16 bmo#1256739, bmo#1256968, bmo#1261230, bmo#1261752, |
|
17 bmo#1263384, bmo#1264575, bmo#1265577, bmo#1267130, |
|
18 bmo#1269729, bmo#1273202, bmo#1273701) |
|
19 Miscellaneous memory safety hazards (rv:47.0 / rv:45.2) |
|
20 * MFSA 2016-50/CVE-2016-2819 (boo#983655) (bmo#1270381) |
|
21 Buffer overflow parsing HTML5 fragments |
|
22 * MFSA 2016-51/CVE-2016-2821 (bsc#983653) (bmo#1271460) |
|
23 Use-after-free deleting tables from a contenteditable document |
|
24 * MFSA 2016-52/CVE-2016-2822 (boo#983652) (bmo#1273129) |
|
25 Addressbar spoofing though the SELECT element |
|
26 * MFSA 2016-53/CVE-2016-2824 (boo#983651) (bmo#1248580) |
|
27 Out-of-bounds write with WebGL shader |
|
28 * MFSA 2016-54/CVE-2016-2825 (boo#983649) (bmo#1193093) |
|
29 Partial same-origin-policy through setting location.host |
|
30 through data URI |
|
31 * MFSA 2016-56/CVE-2016-2828 (boo#983646) (bmo#1223810) |
|
32 Use-after-free when textures are used in WebGL operations |
|
33 after recycle pool destruction |
|
34 * MFSA 2016-57/CVE-2016-2829 (boo#983644) (bmo#1248329) |
|
35 Incorrect icon displayed on permissions notifications |
|
36 * MFSA 2016-58/CVE-2016-2831 (boo#983643) (bmo#1261933) |
|
37 Entering fullscreen and persistent pointerlock without user |
|
38 permission |
|
39 * MFSA 2016-59/CVE-2016-2832 (boo#983632) (bmo#1025267) |
|
40 Information disclosure of disabled plugins through CSS |
|
41 pseudo-classes |
|
42 * MFSA 2016-60/CVE-2016-2833 (boo#983640) (bmo#908933) |
|
43 Java applets bypass CSP protections |
|
44 * MFSA 2016-62/CVE-2016-2834 (boo#983639) (bmo#1206283, |
|
45 bmo#1221620, bmo#1241034, bmo#1241037) |
|
46 Network Security Services (NSS) vulnerabilities |
|
47 fixed by requiring NSS 3.23 |
|
48 packaging changes: |
|
49 * cleanup configure options (boo#981695): |
|
50 - notably remove GStreamer support which is gone from FF |
|
51 * remove obsolete patches |
|
52 - mozilla-libproxy.patch |
|
53 - mozilla-repo.patch |
|
54 |
|
55 ------------------------------------------------------------------- |
|
56 Wed May 25 16:36:23 UTC 2016 - badshah400@gmail.com |
|
57 |
|
58 - The conditional testing for gcc was failing for different |
|
59 openSUSE versions, drop it and apply patches unconditionally. |
|
60 |
|
61 ------------------------------------------------------------------- |
|
62 Mon May 23 15:30:27 UTC 2016 - badshah400@gmail.com |
|
63 |
|
64 - Add patches to fix building with gcc6: |
|
65 + mozilla-gcc6.patch: fix building with gcc >= 6.1; patch |
|
66 taken from upstream: |
|
67 https://hg.mozilla.org/mozilla-central/rev/55212130f19d. |
|
68 + mozilla-exclude-nametablecpp.patch: Exclude NameTable.cpp |
|
69 from unified compilation because #include <cmath> in other |
|
70 source files causes gcc6 compilation failure; patch taken from |
|
71 upstream: |
|
72 https://hg.mozilla.org/mozilla-central/rev/9c57b7cacffc. |
|
73 |
|
74 ------------------------------------------------------------------- |
|
75 Fri May 13 00:00:00 CEST 2016 - dsterba@suse.cz |
|
76 |
|
77 - enable build with PIE and full relro on x86_64 (boo#980384) |
|
78 |
1 ------------------------------------------------------------------- |
79 ------------------------------------------------------------------- |
2 Wed May 4 10:27:43 UTC 2016 - wr@rosenauer.org |
80 Wed May 4 10:27:43 UTC 2016 - wr@rosenauer.org |
3 |
81 |
4 - update to Firefox 46.0.1 |
82 - update to Firefox 46.0.1 |
5 Fixed: |
83 Fixed: |