1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Wed Jun 17 07:51:25 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
2 Tue Jul 21 21:31:20 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
3 |
3 |
4 - Mozilla Firefox 78.0b8 |
4 - fixed syntax issue in desktop file (boo#1174360) |
|
5 |
|
6 ------------------------------------------------------------------- |
|
7 Fri Jul 17 15:07:45 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
8 |
|
9 - Add mozilla-libavcodec58_91.patch to link against updated |
|
10 soversion of libavcodec (58.91) with ffmpeg >= 4.3. |
|
11 (patch provided by Atri Bhattacharya <badshah400@gmail.com> |
|
12 - enable MOZ_USE_XINPUT2 for TW (again) (boo#1173320) |
|
13 (Plasma 5.19.3 is now in TW) |
|
14 |
|
15 ------------------------------------------------------------------- |
|
16 Sat Jul 11 11:08:06 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
17 |
|
18 - Mozilla Firefox 78.0.2 |
|
19 * Fixed an accessibility regression in reader mode (bmo#1650922) |
|
20 * Made the address bar more resilient to data corruption in the |
|
21 user profile (bmo#1649981) |
|
22 * Fixed a regression opening certain external applications (bmo#1650162) |
|
23 MFSA 2020-28 |
|
24 * CVE pending (bmo#1644076) |
|
25 X-Frame-Options bypass using object or embed tags |
|
26 - added desktop file actions |
|
27 - do not use XINPUT2 for the moment until Plasma 5.19.3 has landed |
|
28 (boo#1173993) |
|
29 - rework langpack integration (boo#1173991) |
|
30 * ship XPIs instead of directories |
|
31 * allow addon sideloading |
|
32 * mark signatures for langpacks non-mandatory |
|
33 * do not autodisable user profile scopes |
|
34 - Google API key is not usable for geolocation service |
|
35 - fix pipewire support for TW (boo#1172903) |
|
36 |
|
37 ------------------------------------------------------------------- |
|
38 Wed Jul 1 07:15:02 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
39 |
|
40 - Mozilla Firefox 78.0.1 |
|
41 * Fixed an issue which could cause installed search engines to not |
|
42 be visible when upgrading from a previous release. |
|
43 - enable MOZ_USE_XINPUT2 for TW (boo#1173320) |
|
44 |
|
45 ------------------------------------------------------------------- |
|
46 Sun Jun 28 07:17:13 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
47 |
|
48 - Mozilla Firefox 78.0 |
5 * startup notifications now using Gtk instead of libnotify |
49 * startup notifications now using Gtk instead of libnotify |
|
50 * PDF downloads now show an option to open the PDF directly in Firefox |
|
51 * Protections Dashboard (about:protections) |
|
52 * WebRTC not interrupted by screensaver anymore |
|
53 * disabled TLS 1.0 and 1.1 by default |
|
54 MFSA 2020-24 (bsc#1173576) |
|
55 * CVE-2020-12415 (bmo#1586630) |
|
56 AppCache manifest poisoning due to url encoded character processing |
|
57 * CVE-2020-12416 (bmo#1639734) |
|
58 Use-after-free in WebRTC VideoBroadcaster |
|
59 * CVE-2020-12417 (bmo#1640737) |
|
60 Memory corruption due to missing sign-extension for ValueTags |
|
61 on ARM64 |
|
62 * CVE-2020-12418 (bmo#1641303) |
|
63 Information disclosure due to manipulated URL object |
|
64 * CVE-2020-12419 (bmo#1643874) |
|
65 Use-after-free in nsGlobalWindowInner |
|
66 * CVE-2020-12420 (bmo#1643437) |
|
67 Use-After-Free when trying to connect to a STUN server |
|
68 * CVE-2020-12402 (bmo#1631597) |
|
69 RSA Key Generation vulnerable to side-channel attack |
|
70 * CVE-2020-12421 (bmo#1308251) |
|
71 Add-On updates did not respect the same certificate trust |
|
72 rules as software updates |
|
73 * CVE-2020-12422 (bmo#1450353) |
|
74 Integer overflow in nsJPEGEncoder::emptyOutputBuffer |
|
75 * CVE-2020-12423 (bmo#1642400) |
|
76 DLL Hijacking due to searching %PATH% for a library |
|
77 * CVE-2020-12424 (bmo#1562600) |
|
78 WebRTC permission prompt could have been bypassed by a |
|
79 compromised content process |
|
80 * CVE-2020-12425 (bmo#1634738) |
|
81 Out of bound read in Date.parse() |
|
82 * CVE-2020-12426 (bmo#1608068, bmo#1609951, bmo#1631187, bmo#1637682) |
|
83 Memory safety bugs fixed in Firefox 78 |
6 - requires |
84 - requires |
7 * NSS >= 3.53 |
85 * NSS >= 3.53.1 |
8 * nodejs >= 10.21 |
86 * nodejs >= 10.21 |
9 * Gtk+3 >= 3.14 |
87 * Gtk+3 >= 3.14 |
10 - removed obsolete patch |
88 - removed obsolete patches |
11 * mozilla-s390-bigendian.patch |
89 * mozilla-s390-bigendian.patch |
|
90 * mozilla-bmo1634646.patch |
12 - Add mozilla-pipewire-0-3.patch for openSUSE >= 15.2 to build |
91 - Add mozilla-pipewire-0-3.patch for openSUSE >= 15.2 to build |
13 WebRTC with pipewire support to enable screen sharing under |
92 WebRTC with pipewire support to enable screen sharing under |
14 Wayland; also add BuildRequires: pkgconfig(libpipewire-0.3) |
93 Wayland; also add BuildRequires: pkgconfig(libpipewire-0.3) |
15 appropriately (boo#1172903). |
94 appropriately (boo#1172903). |
|
95 - adding SLE12 compatibility in spec file |
|
96 - add patches for s390x |
|
97 * mozilla-bmo1602730.patch (bmo#1602730) |
|
98 * mozilla-bmo1626236.patch (bmo#1626236) |
|
99 * mozilla-bmo998749.patch (bmo#998749) |
|
100 * mozilla-s390x-skia-gradient.patch |
|
101 - update create-tar.sh |
|
102 - Use same _constraints for ppc64 (BE) as ppc64le to avoid oom build failure |
16 |
103 |
17 ------------------------------------------------------------------- |
104 ------------------------------------------------------------------- |
18 Wed Jun 10 07:17:15 UTC 2020 - Guillaume GARDET <guillaume.gardet@opensuse.org> |
105 Wed Jun 10 07:17:15 UTC 2020 - Guillaume GARDET <guillaume.gardet@opensuse.org> |
19 |
106 |
20 - Exclude armv6, since it is unbuildable since about 3 years |
107 - Exclude armv6, since it is unbuildable since about 3 years |