Mercurial Mercurial > hg > mozilla / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
MozillaFirefox/MozillaFirefox.changes
branchfirefox85
changeset 1154 71a92b4d0527
parent 1153 fdd746757dda
child 1155 b8c834aafde2
equal deleted inserted replaced
1153:fdd746757dda 1154:71a92b4d0527 
       
     1 -------------------------------------------------------------------
 
       
     2 Sun Jan 24 11:53:58 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org>
 
       
     3 
       
     4 - Mozilla Firefox 85.0
 
       
     5   * Adobe Flash is completely history
 
       
     6   * supercookie protection
 
       
     7   * new bookmark handling and features
 
       
     8   MFSA 2021-03 (bsc#1181414)
 
       
     9   * CVE-2021-23953 (bmo#1683940)
 
       
    10     Cross-origin information leakage via redirected PDF requests
 
       
    11   * CVE-2021-23954 (bmo#1684020)
 
       
    12     Type confusion when using logical assignment operators in
 
       
    13     JavaScript switch statements
 
       
    14   * CVE-2021-23955 (bmo#1684837)
 
       
    15     Clickjacking across tabs through misusing requestPointerLock
 
       
    16   * CVE-2021-23956 (bmo#1338637)
 
       
    17     File picker dialog could have been used to disclose a
 
       
    18     complete directory
 
       
    19   * CVE-2021-23957 (bmo#1584582)
 
       
    20     Iframe sandbox could have been bypassed on Android via the
 
       
    21     intent URL scheme
 
       
    22   * CVE-2021-23958 (bmo#1642747)
 
       
    23     Screen sharing permission leaked across tabs
 
       
    24   * CVE-2021-23959 (bmo#1659035)
 
       
    25     Cross-Site Scripting in error pages on Firefox for Android
 
       
    26   * CVE-2021-23960 (bmo#1675755)
 
       
    27     Use-after-poison for incorrectly redeclared JavaScript
 
       
    28     variables during GC
 
       
    29   * CVE-2021-23961 (bmo#1677940)
 
       
    30     More internal network hosts could have been probed by a
 
       
    31     malicious webpage
 
       
    32   * CVE-2021-23962 (bmo#1677194)
 
       
    33     Use-after-poison in
 
       
    34     <code>nsTreeBodyFrame::RowCountChanged</code>
 
       
    35   * CVE-2021-23963 (bmo#1680793)
 
       
    36     Permission prompt inaccessible after asking for additional
 
       
    37     permissions
 
       
    38   * CVE-2021-23964 (bmo#1662507, bmo#1666285, bmo#1673526, bmo#1674278,
 
       
    39     bmo#1674835, bmo#1675097, bmo#1675844, bmo#1675868, bmo#1677590,
 
       
    40     bmo#1677888, bmo#1680410, bmo#1681268, bmo#1682068, bmo#1682938,
 
       
    41     bmo#1683736, bmo#1685260, bmo#1685925)
 
       
    42     Memory safety bugs fixed in Firefox 85 and Firefox ESR 78.7
 
       
    43   * CVE-2021-23965 (bmo#1670378, bmo#1673555, bmo#1676812, bmo#1678582,
 
       
    44     bmo#1684497)
 
       
    45     Memory safety bugs fixed in Firefox 85
 
       
    46 - requires NSS 3.60.1
 
       
    47 - requires rust 1.47
 
       
    48 - remove obsolete mozilla-pipewire-0-3.patch
 
       
    49 
     1 -------------------------------------------------------------------
 
    50 -------------------------------------------------------------------
 
     2 Mon Jan 11 18:02:01 UTC 2021 - Matthias Mailänder <mailaender@opensuse.org>
 
    51 Mon Jan 11 18:02:01 UTC 2021 - Matthias Mailänder <mailaender@opensuse.org>
 
     3 
    52 
     4 - Fix AppStream screenshot links
 
    53 - Fix AppStream screenshot links
 
     5 
    54
mozilla