|
1 ------------------------------------------------------------------- |
|
2 Wed May 13 12:21:13 UTC 2020 - Michel Normand <normand@linux.vnet.ibm.com> |
|
3 |
|
4 - change again _constraints for ppc64le use <physicalmemory> |
|
5 and increase limit_build in spec file to reduce max_jobs. |
|
6 |
|
7 ------------------------------------------------------------------- |
|
8 Sat May 9 11:45:39 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
9 |
|
10 - Mozilla Firefox 76.0.1 |
|
11 * Fixed a bug causing some add-ons such as Amazon Assistant to see |
|
12 multiple onConnect events, impairing functionality (bmo#1635637) |
|
13 |
1 ------------------------------------------------------------------- |
14 ------------------------------------------------------------------- |
2 Fri May 1 11:59:58 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
15 Fri May 1 11:59:58 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
3 |
16 |
4 - Mozilla Firefox 76.0 |
17 - Mozilla Firefox 76.0 |
|
18 * Lockwise improvements |
|
19 * Improvements in Picture-in-Picture feature |
|
20 * Support Audio Worklets |
|
21 MFSA-2020-16 (bsc#1171186) |
|
22 * CVE-2020-12387 (bmo#1545345) |
|
23 Use-after-free during worker shutdown |
|
24 * CVE-2020-12388 (bmo#1618911) |
|
25 Sandbox escape with improperly guarded Access Tokens |
|
26 * CVE-2020-12389 (bmo#1554110) |
|
27 Sandbox escape with improperly separated process types |
|
28 * CVE-2020-6831 (bmo#1632241) |
|
29 Buffer overflow in SCTP chunk input validation |
|
30 * CVE-2020-12390 (bmo#1141959) |
|
31 Incorrect serialization of nsIPrincipal.origin for IPv6 addresses |
|
32 * CVE-2020-12391 (bmo#1457100) |
|
33 Content-Security-Policy bypass using object elements |
|
34 * CVE-2020-12392 (bmo#1614468) |
|
35 Arbitrary local file access with 'Copy as cURL' |
|
36 * CVE-2020-12393 (bmo#1615471) |
|
37 Devtools' 'Copy as cURL' feature did not fully escape |
|
38 website-controlled data, potentially leading to command injection |
|
39 * CVE-2020-12394 (bmo#1628288) |
|
40 URL spoofing in location bar when unfocussed |
|
41 * CVE-2020-12395 (bmo#1595886, bmo#1611482, bmo#1614704, bmo#1624098, |
|
42 bmo#1625749, bmo#1626382, bmo#1628076, bmo#1631508) |
|
43 Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8 |
|
44 * CVE-2020-12396 (bmo#1339601, bmo#1611938, bmo#1620488, |
|
45 bmo#1622291, bmo#1627644) |
|
46 Memory safety bugs fixed in Firefox 76 |
5 - requires |
47 - requires |
6 * NSS >= 3.51.1 |
48 * NSS >= 3.51.1 |
7 * nasm >= 2.14 |
49 * nasm >= 2.14 |
8 - removed obsolete patch mozilla-bmo1622013.patch |
50 - removed obsolete patch mozilla-bmo1622013.patch |
9 - fix URI creation for KDE file selector integration (boo#1160331) |
51 - fix URI creation for KDE file selector integration (boo#1160331) |