# HG changeset patch # User Wolfgang Rosenauer # Date 1502217225 -7200 # Node ID 322da3cf60a2d28fa23b6c7631713aa49cb072a0 # Parent c0c95a18e37c1257dd920150fafac30a1f5c6be1 Firefox 52.3esr diff -r c0c95a18e37c -r 322da3cf60a2 MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Wed Jun 14 13:47:28 2017 +0200 +++ b/MozillaFirefox/MozillaFirefox.changes Tue Aug 08 20:33:45 2017 +0200 @@ -1,4 +1,49 @@ ------------------------------------------------------------------- +Tue Aug 8 18:13:34 UTC 2017 - wr@rosenauer.org + +- update to Firefox 52.3esr (boo#1052829) + MFSA 2017-19 + * CVE-2017-7798 (bmo#1371586, bmo#1372112) + XUL injection in the style editor in devtools + * CVE-2017-7800 (bmo#1374047) + Use-after-free in WebSockets during disconnection + * CVE-2017-7801 (bmo#1371259) + Use-after-free with marquee during window resizing + * CVE-2017-7784 (bmo#1376087) + Use-after-free with image observers + * CVE-2017-7802 (bmo#1378147) + Use-after-free resizing image elements + * CVE-2017-7785 (bmo#1356985) + Buffer overflow manipulating ARIA attributes in DOM + * CVE-2017-7786 (bmo#1365189) + Buffer overflow while painting non-displayable SVG + * CVE-2017-7753 (bmo#1353312) + Out-of-bounds read with cached style data and pseudo-elements# + * CVE-2017-7787 (bmo#1322896) + Same-origin policy bypass with iframes through page reloads + * CVE-2017-7807 (bmo#1376459) + Domain hijacking through AppCache fallback + * CVE-2017-7792 (bmo#1368652) + Buffer overflow viewing certificates with an extremely long OID + * CVE-2017-7804 (bmo#1372849) + Memory protection bypass through WindowsDllDetourPatcher + * CVE-2017-7791 (bmo#1365875) + Spoofing following page navigation with data: protocol and modal alerts + * CVE-2017-7782 (bmo#1344034) + WindowsDllDetourPatcher allocates memory without DEP protections + * CVE-2017-7803 (bmo#1377426) + CSP containing 'sandbox' improperly applied + * CVE-2017-7779 + Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 + +------------------------------------------------------------------- +Wed Jul 5 07:26:32 UTC 2017 - astieger@suse.com + +- Mozilla Firefox 52.2.1esr: + * Printing text does not work on Windows when Direct2D is + disabled (bmo#1318845) + +------------------------------------------------------------------- Wed Jun 14 07:08:29 UTC 2017 - wr@rosenauer.org - update to Firefox 52.2esr (boo#1043960) diff -r c0c95a18e37c -r 322da3cf60a2 MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Wed Jun 14 13:47:28 2017 +0200 +++ b/MozillaFirefox/MozillaFirefox.spec Tue Aug 08 20:33:45 2017 +0200 @@ -19,9 +19,9 @@ # changed with every update %define major 52 -%define mainver %major.2 +%define mainver %major.3.0 %define update_channel esr52 -%define releasedate 20170612000000 +%define releasedate 20170807000000 # PIE, full relro (x86_64 for now) %define build_hardened 1 diff -r c0c95a18e37c -r 322da3cf60a2 MozillaFirefox/create-tar.sh --- a/MozillaFirefox/create-tar.sh Wed Jun 14 13:47:28 2017 +0200 +++ b/MozillaFirefox/create-tar.sh Tue Aug 08 20:33:45 2017 +0200 @@ -7,8 +7,8 @@ CHANNEL="esr52" BRANCH="releases/mozilla-$CHANNEL" -RELEASE_TAG="FIREFOX_52_2_0esr_RELEASE" -VERSION="52.2" +RELEASE_TAG="FIREFOX_52_3_0esr_RELEASE" +VERSION="52.3.0" # mozilla if [ -d mozilla ]; then @@ -40,8 +40,16 @@ echo -n "REPO=" >> ../source-stamp.txt hg showconfig paths.default 2>/dev/null | head -n1 | sed -e "s/^ssh:/http:/" >> ../source-stamp.txt popd + +# use parallel compression, if available +compression='-J' +pixz -h > /dev/null 2>&1 +if (($? != 127)); then + compression='-Ipixz' +fi + echo "creating archive..." -tar cJf firefox-$VERSION-source.tar.xz --exclude=.hgtags --exclude=.hgignore --exclude=.hg --exclude=CVS mozilla +tar $compression -cf firefox-$VERSION-source.tar.xz --exclude=.hgtags --exclude=.hgignore --exclude=.hg --exclude=CVS mozilla # l10n echo "fetching locales..." @@ -60,10 +68,10 @@ esac done echo "creating l10n archive..." -tar cJf l10n-$VERSION.tar.xz --exclude=.hgtags --exclude=.hgignore --exclude=.hg l10n +tar $compression -cf l10n-$VERSION.tar.xz --exclude=.hgtags --exclude=.hgignore --exclude=.hg l10n # compare-locales echo "creating compare-locales" hg clone http://hg.mozilla.org/build/compare-locales -tar cJf compare-locales.tar.xz --exclude=.hgtags --exclude=.hgignore --exclude=.hg compare-locales +tar $compression -cf compare-locales.tar.xz --exclude=.hgtags --exclude=.hgignore --exclude=.hg compare-locales