1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Thu Sep 30 10:23:09 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
2 Fri Oct 1 18:33:33 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
3 |
3 |
|
4 - Mozilla Firefox 93.0 |
|
5 * supports the new AVIF image format |
|
6 * PDF viewer now supports filling more forms (XFA-based forms) |
|
7 * now blocks downloads that rely on insecure connections, |
|
8 protecting against potentially malicious or unsafe downloads |
|
9 * Improved web compatibility for privacy protections with SmartBlock 3.0 |
|
10 * Introducing a new referrer tracking protection in Strict Tracking |
|
11 Protection and Private Browsing |
|
12 * TLS ciphersuites that use 3DES have been disabled. Such |
|
13 ciphersuites can only be enabled when deprecated versions of |
|
14 TLS are also enabled |
|
15 * The download panel now follows the Firefox visual styles |
|
16 MFSA 2021-43 (bsc#1191332) |
|
17 * CVE-2021-38496 (bmo#1725335) |
|
18 Use-after-free in MessageTask |
|
19 * CVE-2021-38497 (bmo#1726621) |
|
20 Validation message could have been overlaid on another origin |
|
21 * CVE-2021-38498 (bmo#1729642) |
|
22 Use-after-free of nsLanguageAtomService object |
|
23 * CVE-2021-32810 (bmo#1729813) |
|
24 https://github.com/crossbeam-rs/crossbeam/security/advisories/GHSA-pqqp-xmhj-wgcw) |
|
25 Data race in crossbeam-deque |
|
26 * CVE-2021-38500 (bmo#1725854, bmo#1728321) |
|
27 Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, |
|
28 and Firefox ESR 91.2 |
|
29 * CVE-2021-38501 (bmo#1685354, bmo#1715755, bmo#1723176) |
|
30 Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 |
|
31 * CVE-2021-38499 (bmo#1667102, bmo#1723170, bmo#1725356, bmo#1727364) |
|
32 Memory safety bugs fixed in Firefox 93 |
|
33 - removed obsolete mozilla-bmo1708709.patch |
|
34 - require NSS >= 3.70 |
4 - allow to override wayland detection by defining MOZ_ENABLE_WAYLAND |
35 - allow to override wayland detection by defining MOZ_ENABLE_WAYLAND |
5 explicitely as 0 or 1 |
36 explicitely as 0 or 1 |
6 - fix aarch64 build by updating constraints |
37 - fix aarch64 build by updating constraints |
7 - add mozilla-bmo1725828.patch to fix widevine (bsc#1190842) |
38 - add mozilla-bmo1725828.patch to fix widevine (bsc#1190842) |
|
39 - add mozilla-bmo531915.patch to fix build for i586 |
8 |
40 |
9 ------------------------------------------------------------------- |
41 ------------------------------------------------------------------- |
10 Sat Sep 25 10:10:56 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de> |
42 Sat Sep 25 10:10:56 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de> |
11 |
43 |
12 - Mozilla Firefox 92.0.1 |
44 - Mozilla Firefox 92.0.1 |