|
1 ------------------------------------------------------------------- |
|
2 Tue May 11 14:17:33 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
3 |
|
4 - do not rely on nodejs10 anymore |
|
5 |
|
6 ------------------------------------------------------------------- |
|
7 Thu May 6 13:40:10 UTC 2021 - Guillaume GARDET <guillaume.gardet@opensuse.org> |
|
8 |
|
9 - Relax RAM and disk constraints for aarch64 |
|
10 |
|
11 ------------------------------------------------------------------- |
|
12 Wed May 5 15:13:20 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de> |
|
13 |
|
14 - Mozilla Firefox 88.0.1 |
|
15 * Fixed: Resolved an issue caused by a recent Widevine plugin |
|
16 update which prevented some purchased video content from |
|
17 playing correctly (bmo#1705138) |
|
18 * Fixed: Fixed corruption of videos playing on Twitter or |
|
19 WebRTC calls on some Gen6 Intel graphics chipsets |
|
20 (bmo#1708937) |
|
21 * Fixed: Fixed menulists in Preferences being unreadable for |
|
22 users with High Contrast Mode enabled (bmo#1706496) |
|
23 MFSA 2021-20 (bsc#1185633) |
|
24 * CVE-2021-29952 (bmo#1704227) |
|
25 Race condition in Web Render Components |
|
26 - devel package: move macros to /usr/lib/rpm/macros.d (boo#1185658) |
|
27 |
|
28 ------------------------------------------------------------------- |
|
29 Sun May 2 12:03:26 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
30 |
|
31 - add compatibility for libavcodec58_134 |
|
32 |
|
33 ------------------------------------------------------------------- |
|
34 Sun Apr 18 09:01:32 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
35 |
|
36 - Mozilla Firefox 88.0 |
|
37 * New: PDF forms now support JavaScript embedded in PDF files. |
|
38 Some PDF forms use JavaScript for validation and other |
|
39 interactive features |
|
40 * New: Print updates: Margin units are now localized |
|
41 * New: Smooth pinch-zooming using a touchpad is now supported |
|
42 on Linux |
|
43 * New: To protect against cross-site privacy leaks, Firefox now |
|
44 isolates window.name data to the website that created it. |
|
45 Learn more |
|
46 * Changed: Firefox will not prompt for access to your |
|
47 microphone or camera if you’ve already granted access to the |
|
48 same device on the same site in the same tab within the past |
|
49 50 seconds. This new grace period reduces the number of times |
|
50 you’re prompted to grant device access |
|
51 * Changed: The ‘Take a Screenshot’ feature was removed from the |
|
52 Page Actions menu in the url bar. To take a screenshot, |
|
53 right-click to open the context menu. You can also add a |
|
54 screenshots shortcut directly to your toolbar via the |
|
55 Customize menu. Open the Firefox menu and select Customize… |
|
56 * Changed: FTP support has been disabled, and its full removal |
|
57 is planned for an upcoming release. Addressing this security |
|
58 risk reduces the likelihood of an attack while also removing |
|
59 support for a non-encrypted protocol |
|
60 * Developer: Introduced a new toggle button in the Network |
|
61 panel for switching between JSON formatted HTTP response and |
|
62 raw data (as received over the wire). |
|
63 !enter image description here |
|
64 * Enterprise: Various bug fixes and new policies have been |
|
65 implemented in the latest version of Firefox. You can see |
|
66 more details in the Firefox for Enterprise 88 Release Notes. |
|
67 * Fixed: Screen readers no longer incorrectly read content that |
|
68 websites have visually hidden, as in the case of articles in |
|
69 the Google Help panel |
|
70 MFSA 2021-16 (bsc#1184960) |
|
71 * CVE-2021-23994 (bmo#1699077) |
|
72 Out of bound write due to lazy initialization |
|
73 * CVE-2021-23995 (bmo#1699835) |
|
74 Use-after-free in Responsive Design Mode |
|
75 * CVE-2021-23996 (bmo#1701834) |
|
76 Content rendered outside of webpage viewport |
|
77 * CVE-2021-23997 (bmo#1701942) |
|
78 Use-after-free when freeing fonts from cache |
|
79 * CVE-2021-23998 (bmo#1667456) |
|
80 Secure Lock icon could have been spoofed |
|
81 * CVE-2021-23999 (bmo#1691153) |
|
82 Blob URLs may have been granted additional privileges |
|
83 * CVE-2021-24000 (bmo#1694698) |
|
84 requestPointerLock() could be applied to a tab different from |
|
85 the visible tab |
|
86 * CVE-2021-24001 (bmo#1694727) |
|
87 Testing code could have enabled session history manipulations |
|
88 by a compromised content process |
|
89 * CVE-2021-24002 (bmo#1702374) |
|
90 Arbitrary FTP command execution on FTP servers using an |
|
91 encoded URL |
|
92 * CVE-2021-29945 (bmo#1700690) |
|
93 Incorrect size computation in WebAssembly JIT could lead to |
|
94 null-reads |
|
95 * CVE-2021-29944 (bmo#1697604) |
|
96 HTML injection vulnerability in Firefox for Android's Reader View |
|
97 * CVE-2021-29946 (bmo#1698503) |
|
98 Port blocking could be bypassed |
|
99 * CVE-2021-29947 (bmo#1651449, bmo#1674142, bmo#1693476, |
|
100 bmo#1696886, bmo#1700091) |
|
101 Memory safety bugs fixed in Firefox 88 |
|
102 - requires |
|
103 * NSPR 4.30 |
|
104 * NSS 3.63.1 |
|
105 - align wayland support logic |
|
106 |
1 ------------------------------------------------------------------- |
107 ------------------------------------------------------------------- |
2 Sat Mar 27 10:40:46 UTC 2021 - Manfred Hollstein <manfred.h@gmx.net> |
108 Sat Mar 27 10:40:46 UTC 2021 - Manfred Hollstein <manfred.h@gmx.net> |
3 |
109 |
4 - Switch to clang_build globally; just on TW/x86_64 it does not work |
110 - Switch to clang_build globally; just on TW/x86_64 it does not work |
5 due to unreolved externals `__rust_probestack' - disable clang_build |
111 due to unreolved externals `__rust_probestack' - disable clang_build |