|
1 ------------------------------------------------------------------- |
|
2 Fri May 10 10:30:05 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net> |
|
3 |
|
4 - Mozilla Firefox 66.0.5 |
|
5 * Fixed: Further improvements to re-enable web extensions which |
|
6 had been disabled for users with a master password set (bmo#1549249) |
|
7 |
|
8 ------------------------------------------------------------------- |
|
9 Sun May 5 20:21:02 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
10 |
|
11 - Mozilla Firefox 66.0.4 (boo#1134126) |
|
12 * fix extension certificate chain |
|
13 https://blog.mozilla.org/addons/2019/05/04/update-regarding-add-ons-in-firefox/ |
|
14 |
|
15 ------------------------------------------------------------------- |
|
16 Thu Apr 11 09:16:17 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net> |
|
17 |
|
18 - Mozilla Firefox 66.0.3 |
|
19 * Fixed: Address bar on tablets running Windows 10 now behaves |
|
20 correctly (bmo#1498973) |
|
21 * Fixed: Performance issues with some HTML5 games (bmo#1537609) |
|
22 * Fixed a bug with keypress events in IBM cloud applications |
|
23 (bmo#1538970) |
|
24 * Fix for keypress events in some Microsoft cloud applications |
|
25 (bmo#1539618) |
|
26 * Changed: Updated Baidu search plugin |
|
27 |
|
28 ------------------------------------------------------------------- |
|
29 Thu Mar 28 19:01:41 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net> |
|
30 |
|
31 - Mozilla Firefox 66.0.2 |
|
32 * Fixed Web compatibility issues with Office 365, iCloud and |
|
33 IBM WebMail caused by recent changes to the handling of |
|
34 keyboard events (bmo#1538966) |
|
35 * Crash fixes (bmo#1521370, bmo#1539118) |
|
36 |
|
37 ------------------------------------------------------------------- |
|
38 Thu Mar 28 09:58:36 UTC 2019 - Guillaume GARDET <guillaume.gardet@opensuse.org> |
|
39 |
|
40 - Add patch to fix aarch64 build: |
|
41 * mozilla-fix-aarch64-libopus.patch (bmo#1539737) |
|
42 |
|
43 ------------------------------------------------------------------- |
|
44 Fri Mar 22 22:22:08 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
45 |
|
46 - Mozilla Firefox 66.0.1 |
|
47 MFSA 2019-09 (bsc#1130262) |
|
48 * CVE-2019-9810 (bmo#1537924) |
|
49 IonMonkey MArraySlice has incorrect alias information |
|
50 * CVE-2019-9813 (bmo#1538006) |
|
51 Ionmonkey type confusion with __proto__ mutations |
|
52 |
1 ------------------------------------------------------------------- |
53 ------------------------------------------------------------------- |
2 Sun Mar 17 10:08:51 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
54 Sun Mar 17 10:08:51 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
3 |
55 |
4 - Mozilla Firefox 66.0 |
56 - Mozilla Firefox 66.0 |
5 * Increased content processes to 8 |
57 * Increased content processes to 8 |
21 Downloads panel (bmo#1517101) |
73 Downloads panel (bmo#1517101) |
22 * Firefox now blocks all autoplay media with sound by default. Users |
74 * Firefox now blocks all autoplay media with sound by default. Users |
23 can add individual sites to an exceptions list or turn the blocking |
75 can add individual sites to an exceptions list or turn the blocking |
24 off. |
76 off. |
25 * System title bar is hidden by default to match Gnome guideline |
77 * System title bar is hidden by default to match Gnome guideline |
|
78 MFSA 2019-07 (bsc#1129821) |
|
79 * CVE-2019-9790 (bmo#1525145) |
|
80 Use-after-free when removing in-use DOM elements |
|
81 * CVE-2019-9791 (bmo#1530958) |
|
82 Type inference is incorrect for constructors entered through on-stack |
|
83 replacement with IonMonkey |
|
84 * CVE-2019-9792 (bmo#1532599) |
|
85 IonMonkey leaks JS_OPTIMIZED_OUT magic value to script |
|
86 * CVE-2019-9793 (bmo#1528829) |
|
87 Improper bounds checks when Spectre mitigations are disabled |
|
88 * CVE-2019-9794 (bmo#1530103) (Windows only) |
|
89 Command line arguments not discarded during execution |
|
90 * CVE-2019-9795 (bmo#1514682) |
|
91 Type-confusion in IonMonkey JIT compiler |
|
92 * CVE-2019-9796 (bmo#1531277) |
|
93 Use-after-free with SMIL animation controller |
|
94 * CVE-2019-9797 (bmo#1528909) |
|
95 Cross-origin theft of images with createImageBitmap |
|
96 * CVE-2019-9798 (bmo#1527534) (Android only) |
|
97 Library is loaded from world writable APITRACE_LIB location |
|
98 * CVE-2019-9799 (bmo#1505678) |
|
99 Information disclosure via IPC channel messages |
|
100 * CVE-2019-9801 (bmo#1527717) (Windows only) |
|
101 Windows programs that are not 'URL Handlers' are exposed to web content |
|
102 * CVE-2019-9802 (bmo#1415508) |
|
103 Chrome process information leak |
|
104 * CVE-2019-9803 (bmo#1515863, bmo#1437009) |
|
105 Upgrade-Insecure-Requests incorrectly enforced for same-origin navigation |
|
106 * CVE-2019-9804 (bmo#1518026) (MacOS only) |
|
107 Code execution through 'Copy as cURL' in Firefox Developer Tools on macOS |
|
108 * CVE-2019-9805 (bmo#1521360) |
|
109 Potential use of uninitialized memory in Prio |
|
110 * CVE-2019-9806 (bmo#1525267) |
|
111 Denial of service through successive FTP authorization prompts |
|
112 * CVE-2019-9807 (bmo#1362050) |
|
113 Text sent through FTP connection can be incorporated into alert messages |
|
114 * CVE-2019-9809 (bmo#1282430, bmo#1523249) |
|
115 Denial of service through FTP modal alert error messages |
|
116 * CVE-2019-9808 (bmo#1434634) |
|
117 WebRTC permissions can display incorrect origin with data: and blob: URLs |
|
118 * CVE-2019-9789 bmo#1520483, bmo#1522987, bmo#1528199, bmo#1519337, |
|
119 bmo#1525549, bmo#1516179, bmo#1518524, bmo#1518331, bmo#1526579, |
|
120 bmo#1512567, bmo#1524335, bmo#1448505, bmo#1518821 |
|
121 Memory safety bugs fixed in Firefox 66 |
|
122 * CVE-2019-9788 bmo#1518001, bmo#1521304, bmo#1521214, bmo#1506665, |
|
123 bmo#1516834, bmo#1518774, bmo#1524755, bmo#1523362, bmo#1524214, bmo#1529203 |
|
124 Memory safety bugs fixed in Firefox 66 and Firefox ESR 60.6 |
26 - updated build/runtime requirements |
125 - updated build/runtime requirements |
27 * mozilla-nss >= 3.42.1 |
126 * mozilla-nss >= 3.42.1 |
28 * cargo/rust >= 1.31 |
127 * cargo/rust >= 1.31 |
29 * rust-cbindgen >= 0.6.8 |
128 * rust-cbindgen >= 0.6.8 |
|
129 * nasm >= 2.13 (new) |
30 - removed obsolete patch |
130 - removed obsolete patch |
31 * mozilla-bmo256180.patch |
131 * mozilla-bmo256180.patch |
32 |
132 |
33 ------------------------------------------------------------------- |
133 ------------------------------------------------------------------- |
34 Tue Mar 5 10:17:01 UTC 2019 - Stephan Kulow <coolo@suse.com> |
134 Tue Mar 5 10:17:01 UTC 2019 - Stephan Kulow <coolo@suse.com> |