mozilla: MozillaFirefox/MozillaFirefox.changes@27c3f029180a (annotated)

1108 33b03cfb3747 bugfixes, improvements Wolfgang Rosenauer <wr@rosenauer.org> parents: 1107 diff changeset	1	-------------------------------------------------------------------
1117 d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	2	Mon Dec 2 08:24:05 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	3
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	4	- Mozilla Firefox 71.0
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	5	* Improvements to Lockwise, our integrated password manager
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	6	* More information about Enhanced Tracking Protection in action
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	7	* Native MP3 decoding on Windows, Linux, and macOS
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	8	* Configuration page (about:config) reimplemented in HTML
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	9	* New kiosk mode functionality, which allows maximum screen space
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	10	for customer-facing displays
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	11	MFSA 2019-36
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	12	* CVE-2019-11756 (bmo#1508776)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	13	Use-after-free of SFTKSession object
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	14	* CVE-2019-17008 (bmo#1546331)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	15	Use-after-free in worker destruction
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	16	* CVE-2019-13722 (bmo#1580156) (Windows only)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	17	Stack corruption due to incorrect number of arguments in WebRTC code
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	18	* CVE-2019-17014 (bmo#1322864)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	19	Dragging and dropping a cross-origin resource, incorrectly loaded
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	20	as an image, could result in information disclosure
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	21	* CVE-2019-17010 (bmo#1581084)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	22	Use-after-free when performing device orientation checks
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	23	* CVE-2019-17005 (bmo#1584170)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	24	Buffer overflow in plain text serializer
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	25	* CVE-2019-17011 (bmo#1591334)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	26	Use-after-free when retrieving a document in antitracking
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	27	* CVE-2019-17012 (bmo#1449736, bmo#1533957, bmo#1560667, bmo#1567209
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	28	bmo#1580288, bmo#1585760, bmo#1592502)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	29	Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	30	* CVE-2019-17013 (bmo#1298509, bmo#1472328, bmo#1577439, bmo#1577937
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	31	bmo#1580320, bmo#1584195, bmo#1585106, bmo#1586293, bmo#1593865
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	32	bmo#1594181)
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	33	Memory safety bugs fixed in Firefox 71
1114 572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	34	- requires
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	35	NSPR >= 4.23
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	36	NSS >= 3.47.1
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	37	rust/cargo >= 1.37
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	38	- reactivate webrtc for platforms where it was disabled
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	39	- updated create-tar.sh to cover buildid and origin repo information
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	40	-> removed obsolete source-stamp.txt
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	41	- removed obsolete patches
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	42	mozilla-bmo1511604.patch
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	43	mozilla-openaes-decl.patch
1117 d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	44	- changed locale building procedure
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	45	* removed obsolete compare-locales.tar.xz
1118 27c3f029180a latest 71.0 revision Wolfgang Rosenauer <wr@rosenauer.org> parents: 1117 diff changeset	46	- added mozilla-bmo1601707.patch to fix gcc/LTO builds
27c3f029180a latest 71.0 revision Wolfgang Rosenauer <wr@rosenauer.org> parents: 1117 diff changeset	47	(bmo#1601707, boo#1158466)
1117 d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	48	- added mozilla-bmo849632.patch to fix big endian issues in skia
d6a688186de0 beta -> release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1114 diff changeset	49	used for WebGL
1114 572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	50
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	51	-------------------------------------------------------------------
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	52	Fri Nov 1 14:16:39 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	53
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	54	- Mozilla Firefox 70.0.1
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	55	* Fix for an issue that caused some websites or page elements using
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	56	dynamic JavaScript to fail to load. (bmo#1592136)
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	57	* Title bar no longer shows in full screen view (bmo#1588747)
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	58	- added mozilla-bmo1504834-part4.patch to fix some visual issues on
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	59	big endian platforms
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	60
572ec48f3fe8 Firefox 71.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1112 diff changeset	61	-------------------------------------------------------------------
1112 8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	62	Sun Oct 20 20:19:31 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	63
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	64	- Mozilla Firefox 70.0
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	65	* more privacy protections from Enhanced Tracking Protection
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	66	* Firefox Lockwise passwordmanager
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	67	* Improvements to core engine components, for better browsing on more sites
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	68	* Improved privacy and security indicators
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	69	MFSA 2019-34
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	70	* CVE-2018-6156 (bmo#1480088)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	71	Heap buffer overflow in FEC processing in WebRTC
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	72	* CVE-2019-15903 (bmo#1584907)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	73	Heap overflow in expat library in XML_GetCurrentLineNumber
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	74	* CVE-2019-11757 (bmo#1577107)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	75	Use-after-free when creating index updates in IndexedDB
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	76	* CVE-2019-11759 (bmo#1577953)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	77	Stack buffer overflow in HKDF output
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	78	* CVE-2019-11760 (bmo#1577719)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	79	Stack buffer overflow in WebRTC networking
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	80	* CVE-2019-11761 (bmo#1561502)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	81	Unintended access to a privileged JSONView object
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	82	* CVE-2019-11762 (bmo#1582857)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	83	document.domain-based origin isolation has same-origin-property violation
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	84	* CVE-2019-11763 (bmo#1584216)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	85	Incorrect HTML parsing results in XSS bypass technique
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	86	* CVE-2019-11765 (bmo#1562582)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	87	Incorrect permissions could be granted to a website
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	88	* CVE-2019-17000 (bmo#1441468)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	89	CSP bypass using object tag with data: URI
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	90	* CVE-2019-17001 (bmo#1587976)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	91	CSP bypass using object tag when script-src 'none' is specified
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	92	* CVE-2019-17002 (bmo#1561056)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	93	upgrade-insecure-requests was not being honored for links dragged and dropped
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	94	* CVE-2019-11764 (bmo#1558522, bmo#1577061, bmo#1548044, bmo#1571223,
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	95	bmo#1573048, bmo#1578933, bmo#1575217, bmo#1583684, bmo#1586845, bmo#1581950,
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	96	bmo#1583463, bmo#1586599)
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	97	Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	98	- requires
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	99	rust/cargo >= 1.36
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	100	NSPR >= 4.22
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	101	NSS >= 3.46.1
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	102	rust-cbindgen >= 0.9.1
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	103	- removed obsolete patches
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	104	mozilla-bmo1573381.patch
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	105	mozilla-nestegg-big-endian.patch
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	106
8a4f5aea2475 Firefox 70.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1111 diff changeset	107	-------------------------------------------------------------------
1111 97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	108	Sun Oct 13 08:58:12 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	109
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	110	- Mozilla Firefox 69.0.3
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	111	* Fixed Yahoo mail users being prompted to download files when
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	112	clicking on emails (bmo#1582848)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	113	- devel package build can easily be disabled now
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	114
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	115	-------------------------------------------------------------------
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	116	Thu Oct 3 08:40:05 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	117
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	118	- Mozilla Firefox 69.0.2
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	119	* Fixed a crash when editing files on Office 365 websites (bmo#1579858)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	120	* Fixed a Linux-only crash when changing the playback speed while
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	121	watching YouTube videos (bmo#1582222)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	122	- updated supported locale list
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	123	- Allow to build without profile guided optimizations (boo#1040589)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	124	(contributed by Bernhard Wiedemann)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	125	- Make build verbose (contributed by Martin Liška)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	126	- remove obsolete kde.js setting (boo#1151186) and related patch
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	127	firefox-add-kde.js-in-order-to-survive-PGO-build.patch
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	128	- update create-tar.sh to latest revision and adjusted tar_stamps
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	129	- add mozilla-fix-top-level-asm.patch to fix LTO build (w/o PGO)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	130	- extension preferences moved from branding package to core package
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	131	(packaging but not branding specific)
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	132
97a6da6d7e29 Firefox 69.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1110 diff changeset	133	-------------------------------------------------------------------
1110 9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	134	Thu Sep 19 13:31:16 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	135
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	136	- Mozilla Firefox 69.0.1
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	137	* Fixed external programs launching in the background when clicking
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	138	a link from inside Firefox to launch them (bmo#1570845)
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	139	* Usability improvements to the Add-ons Manager for users with
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	140	screen readers (bmo#1567600)
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	141	* Fixed the Captive Portal notification bar not being dismissable
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	142	in some situations after login is complete (bmo#1578633)
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	143	* Fixed the maximum size of fonts in Reader Mode when zoomed (bmo#1578454)
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	144	* Fixed missing stacks in the Developer Tools Performance section
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	145	(bmo#1578354)
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	146	MFSA 2019-31
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	147	* CVE-2019-11754 (bmo#1580506)
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	148	Pointer Lock is enabled with no user notification
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	149	- disable DOH by default
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	150
9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	151	-------------------------------------------------------------------
1106 6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	152	Thu Sep 5 13:02:39 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	153
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	154	- Mozilla Firefox 69.0
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	155	* Enhanced Tracking Protection (ETP) for stronger privacy protections
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	156	* Block Autoplay feature is enhanced to give users the option to block
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	157	any video
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	158	* Users in the US or using the en-US browser, can get a new “New Tab”
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	159	page experience connecting to the best of Pocket's content.
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	160	* Support for the Web Authentication HmacSecret extension via
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	161	Windows Hello introduced.
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	162	* Support for receiving multiple video codecs with this release makes
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	163	it easier for WebRTC conferencing services to mix video from
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	164	different clients.
1107 a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	165	MFSA 2019-25 (boo#1149324)
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	166	* CVE-2019-11741 (bmo#1539595)
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	167	Isolate addons.mozilla.org and accounts.firefox.com
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	168	* CVE-2019-5849 (bmo#1555838)
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	169	Out-of-bounds read in Skia
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	170	* CVE-2019-11737 (bmo#1388015)
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	171	Content security policy directives ignore port and path if host is a wildcard
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	172	* CVE-2019-11734 (bmo#1352875,bmo#1536227,bmo#1557208,bmo#1560641)
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	173	Memory safety bugs fixed in Firefox 69
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	174	* CVE-2019-11735 (bmo#1561404,bmo#1561484,bmo#1568047,bmo#1561912,
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	175	bmo#1565744,bmo#1568858,bmo#1570358)
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	176	Memory safety bugs fixed in Firefox 69 and Firefox ESR 68.1
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	177	* CVE-2019-11740 (bmo#1563133,bmo#1573160)
a2aa55e10564 Firefox 69 as submitted to TW Wolfgang Rosenauer <wr@rosenauer.org> parents: 1106 diff changeset	178	Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9
1106 6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	179	- requires
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	180	* rust/cargo >= 1.35
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	181	* rust-cbindgen >= 0.9.0
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	182	* mozilla-nss >= 3.45
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	183	- rebased patches
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	184
6c6375987b6c rebased Wolfgang Rosenauer <wr@rosenauer.org> parents: 1101 diff changeset	185	-------------------------------------------------------------------
1101 a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	186	Wed Sep 4 15:38:40 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	187
a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	188	- added a bunch of patches mainly for big endian platforms
1109 972f68ac6b1a Firefox 69.0 as released to Factory/Tumbleweed Wolfgang Rosenauer <wr@rosenauer.org> parents: 1108 diff changeset	189	* mozilla-bmo1504834-part1.patch
972f68ac6b1a Firefox 69.0 as released to Factory/Tumbleweed Wolfgang Rosenauer <wr@rosenauer.org> parents: 1108 diff changeset	190	* mozilla-bmo1504834-part2.patch
972f68ac6b1a Firefox 69.0 as released to Factory/Tumbleweed Wolfgang Rosenauer <wr@rosenauer.org> parents: 1108 diff changeset	191	* mozilla-bmo1504834-part3.patch
1101 a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	192	* mozilla-bmo1511604.patch
a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	193	* mozilla-bmo1554971.patch
a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	194	* mozilla-bmo1573381.patch
a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	195	* mozilla-nestegg-big-endian.patch
1110 9e4b30f05706 Firefox 69.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1109 diff changeset	196	* mozilla-bmo1512162.patch
1101 a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	197
a4709640638e added several arch specific (mainly BE) patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1100 diff changeset	198	-------------------------------------------------------------------
1099 8a3c73e74e65 68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate Wolfgang Rosenauer <wr@rosenauer.org> parents: 1098 diff changeset	199	Fri Aug 30 20:49:11 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
8a3c73e74e65 68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate Wolfgang Rosenauer <wr@rosenauer.org> parents: 1098 diff changeset	200
8a3c73e74e65 68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate Wolfgang Rosenauer <wr@rosenauer.org> parents: 1098 diff changeset	201	- Mozilla Firefox 68.1.0
1100 e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	202	MFSA 2019-26
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	203	* CVE-2019-11751 (bmo#1572838; Windows only)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	204	Malicious code execution through command line parameters
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	205	* CVE-2019-11746 (bmo#1564449)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	206	Use-after-free while manipulating video
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	207	* CVE-2019-11744 (bmo#1562033)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	208	XSS by breaking out of title and textarea elements using innerHTML
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	209	* CVE-2019-11742 (bmo#1559715)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	210	Same-origin policy violation with SVG filters and canvas to steal
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	211	cross-origin images
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	212	* CVE-2019-11736 (bmo#1551913, bmo#1552206; Windows only))
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	213	File manipulation and privilege escalation in Mozilla Maintenance Service
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	214	* CVE-2019-11753 (bmo#1574980; Windows only)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	215	Privilege escalation with Mozilla Maintenance Service in custom
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	216	Firefox installation location
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	217	* CVE-2019-11752 (bmo#1501152)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	218	Use-after-free while extracting a key value in IndexedDB
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	219	* CVE-2019-9812 (bmo#1538008, bmo#1538015)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	220	Sandbox escape through Firefox Sync
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	221	* CVE-2019-11743 (bmo#1560495)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	222	Cross-origin access to unload event attributes
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	223	* CVE-2019-11748 (bmo#1564588)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	224	Persistence of WebRTC permissions in a third party context
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	225	* CVE-2019-11749 (bmo#1565374)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	226	Camera information available without prompting using getUserMedia
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	227	* CVE-2019-11750 (bmo#1568397)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	228	Type confusion in Spidermonkey
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	229	* CVE-2019-11738 (bmo#1452037)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	230	Content security policy bypass through hash-based sources in directives
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	231	* CVE-2019-11747 (bmo#1564481)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	232	'Forget about this site' removes sites from pre-loaded HSTS list
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	233	* CVE-2019-11735i (bmo#1561404,bmo#1561484,bmo#1568047,bmo#1561912,
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	234	bmo#1565744,bmo#1568858,bmo#1570358)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	235	Memory safety bugs fixed in Firefox 69 and Firefox ESR 68.1
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	236	* CVE-2019-11740 (bmo#1563133,bmo#1573160)
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	237	Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9
e1c5065a014f changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 1099 diff changeset	238	- switched package to ESR branch
1099 8a3c73e74e65 68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate Wolfgang Rosenauer <wr@rosenauer.org> parents: 1098 diff changeset	239	- added mozilla-bmo1568145.patch to make builds reproducible
8a3c73e74e65 68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate Wolfgang Rosenauer <wr@rosenauer.org> parents: 1098 diff changeset	240	- removed upstreamed patch mozilla-gcc-internal-compiler-error.patch
8a3c73e74e65 68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate Wolfgang Rosenauer <wr@rosenauer.org> parents: 1098 diff changeset	241
8a3c73e74e65 68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate68.1.0 candidate Wolfgang Rosenauer <wr@rosenauer.org> parents: 1098 diff changeset	242	-------------------------------------------------------------------
1098 538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	243	Sun Aug 18 17:29:25 UTC 2019 - Andreas Stieger <andreas.stieger@gmx.de>
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	244
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	245	- Mozilla Firefox 68.0.2:
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	246	* Fixed a bug causing some special characters to be cut off from
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	247	the end of the search terms when searching from the URL bar
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	248	(bmo#1560228)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	249	* Allow fonts to be loaded via file:// URLs when opening a page
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	250	locally (bmo#1565942)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	251	* Printing emails from the Outlook web app no longer prints only
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	252	the header and footer (bmo#1567105)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	253	* Fixed a bug causing some images not to be displayed on reload,
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	254	including on Google Maps (bmo# 1565542)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	255	* Fixed an error when starting external applications configured
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	256	as URI handlers (bmo#1567614)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	257	MFSA 2019-24 (boo#1145665)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	258	* CVE-2019-11733: Stored passwords in 'Saved Logins' can be
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	259	copied without master password entry (bmo#1565780)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	260	- drop fix-build-after-y2038-changes-in-glibc.patch, upstream
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	261
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	262	-------------------------------------------------------------------
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	263	Fri Aug 16 16:49:24 UTC 2019 - Jonathan Brielmaier <jbrielmaier@suse.de>
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	264
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	265	- Fix crash when typing in the URL bar on ppc64le (bmo#1512162).
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	266	The upstream patch doesn't resolve the issue on TW, but compiling
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	267	with -O1 does. Do this until we have a proper fix.
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	268
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	269	-------------------------------------------------------------------
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	270	Thu Aug 1 14:25:02 UTC 2019 - Guillaume GARDET <guillaume.gardet@opensuse.org>
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	271
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	272	- Update build constraints to fix arm builds
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	273
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	274	-------------------------------------------------------------------
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	275	Fri Jul 19 08:11:27 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	276
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	277	- Mozilla Firefox 68.0.1
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	278	* Fixed missing Full Screen button when watching videos in full
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	279	screen mode on HBO GO (bmo#1562837)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	280	* Fixed a bug causing incorrect messages to appear for some
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	281	locales when sites try to request the use of the Storage
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	282	Access API (bmo#1558503)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	283	* Users in Russian regions may have their default search engine
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	284	changed (bmo#1565315)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	285	* Built-in search engines in some locales do not function
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	286	correctly (bmo#1565779)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	287	* SupportMenu policy doesn't always work (bmo#1553290)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	288	* Allow the privacy.file_unique_origin pref to be controlled by
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	289	policy (bmo#1563759)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	290
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	291	-------------------------------------------------------------------
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	292	Thu Jul 11 10:51:39 UTC 2019 - Jiri Slaby <jslaby@suse.com>
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	293
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	294	- add fix-build-after-y2038-changes-in-glibc.patch
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	295
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	296	-------------------------------------------------------------------
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	297	Wed Jul 10 13:47:41 UTC 2019 - Bernhard Wiedemann <bwiedemann@suse.com>
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	298
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	299	- Generate langpacks sequentially to avoid file corruption
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	300	from racy file writes (boo#1137970)
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	301
538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	302	-------------------------------------------------------------------
1097 840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	303	Mon Jul 8 13:30:35 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	304
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	305	- Mozilla Firefox 68.0
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	306	* Dark mode in reader view
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	307	* Improved extension security and discovery
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	308	* Cryptomining and fingerprinting protections are added to strict
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	309	content blocking settings in Privacy & Security preferences
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	310	* Camera and microphone access now require an HTTPS connection
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	311	MFSA 2019-21 (bsc#1140868)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	312	* CVE-2019-9811 (bmo#1538007, bmo#1539598, bmo#1563327)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	313	Sandbox escape via installation of malicious languagepack
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	314	* CVE-2019-11711 (bmo#1552541)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	315	Script injection within domain through inner window reuse
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	316	* CVE-2019-11712 (bmo#1543804)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	317	Cross-origin POST requests can be made with NPAPI plugins by
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	318	following 308 redirects
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	319	* CVE-2019-11713 (bmo#1528481)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	320	Use-after-free with HTTP/2 cached stream
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	321	* CVE-2019-11714 (bmo#1542593)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	322	NeckoChild can trigger crash when accessed off of main thread
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	323	* CVE-2019-11729 (bmo#1515342)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	324	Empty or malformed p256-ECDH public keys may trigger a segmentation fault
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	325	* CVE-2019-11715 (bmo#1555523)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	326	HTML parsing error can contribute to content XSS
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	327	* CVE-2019-11716 (bmo#1552632)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	328	globalThis not enumerable until accessed
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	329	* CVE-2019-11717 (bmo#1548306)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	330	Caret character improperly escaped in origins
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	331	* CVE-2019-11718 (bmo#1408349)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	332	Activity Stream writes unsanitized content to innerHTML
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	333	* CVE-2019-11719 (bmo#1540541)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	334	Out-of-bounds read when importing curve25519 private key
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	335	* CVE-2019-11720 (bmo#1556230)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	336	Character encoding XSS vulnerability
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	337	* CVE-2019-11721 (bmo#1256009)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	338	Domain spoofing through unicode latin 'kra' character
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	339	* CVE-2019-11730 (bmo#1558299)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	340	Same-origin policy treats all files in a directory as having the
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	341	same-origin
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	342	* CVE-2019-11723 (bmo#1528335)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	343	Cookie leakage during add-on fetching across private browsing boundaries
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	344	* CVE-2019-11724 (bmo#1512511)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	345	Retired site input.mozilla.org has remote troubleshooting permissions
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	346	* CVE-2019-11725 (bmo#1483510)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	347	Websocket resources bypass safebrowsing protections
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	348	* CVE-2019-11727 (bmo#1552208)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	349	PKCS#1 v1.5 signatures can be used for TLS 1.3
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	350	* CVE-2019-11728 (bmo#1552993)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	351	Port scanning through Alt-Svc header
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	352	* CVE-2019-11710 (bmo#1549768, bmo#1548611, bmo#1533842, bmo#1537692,
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	353	bmo#1540590, bmo#1551907, bmo#1510345, bmo#1535482, bmo#1535848,
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	354	bmo#1547472, bmo#1547760, bmo#1507696, bmo#1544180)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	355	Memory safety bugs fixed in Firefox 68
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	356	* CVE-2019-11709 (bmo#1547266, bmo#1540759, bmo#1548822, bmo#1550498
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	357	bmo#1515052, bmo#1539219, bmo#1547757, bmo#1550498, bmo#1533522)
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	358	Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	359	- requires
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	360	* NSS 3.44.1
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	361	* rust/cargo 1.34
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	362	* rust-cbindgen 0.8.7
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	363	- rebased patches
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	364	* mozilla-aarch64-startup-crash.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	365	* mozilla-kde.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	366	* mozilla-nongnome-proxies.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	367	* firefox-kde.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	368	- use new create-tar.sh and add tar_stamps for package definitions
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	369	- added patches imported from SLE flavour
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	370	* mozilla-gcc-internal-compiler-error.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	371	* mozilla-bmo1005535.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	372	* mozilla-ppc-altivec_static_inline.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	373	* mozilla-reduce-rust-debuginfo.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	374	* mozilla-s390-bigendian.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	375	* mozilla-s390-context.patch
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	376
840132a4a9b3 Firefox 68.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1096 diff changeset	377	-------------------------------------------------------------------
1096 4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	378	Mon Jul 2 14:15:17 UTC 2019 - Martin Liška <mliska@suse.cz>
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	379
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	380	- Enable PGO for x86_64.
1098 538cbf0bbdca 68.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1097 diff changeset	381	* added firefox-add-kde.js-in-order-to-survive-PGO-build.patch
1096 4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	382
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	383	-------------------------------------------------------------------
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	384	Thu Jun 20 06:20:59 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	385
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	386	- Mozilla Firefox 67.0.4
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	387	MFSA 2019-19 (boo#1138872)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	388	* CVE-2019-11708 (bmo#1559858)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	389	sandbox escape using Prompt:Open
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	390
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	391	-------------------------------------------------------------------
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	392	Tue Jun 18 18:36:15 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	393
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	394	- Mozilla Firefox 67.0.3
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	395	MFSA 2019-18 (boo#1138614)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	396	* CVE-2019-11707 (bmo#1544386)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	397	Type confusion in Array.pop
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	398
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	399	-------------------------------------------------------------------
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	400	Thu Jun 12 14:56:32 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net>
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	401
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	402	- Mozilla Firefox 67.0.2
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	403	* Fixed: Fix JavaScript error ("TypeError: data is null in
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	404	PrivacyFilter.jsm") in console which may significantly degrade
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	405	sessionstore reliability and performance (bmo#1553413)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	406	* Fixed: Proxy authentication dialog box repeatedly pops up
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	407	asking to authenticate after upgrading to Firefox 67 (bmo#1548804)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	408	* Fixed: Pearson MyCloud breaks if FIDO U2F is not Chrome's
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	409	implementation (bmo#1551282)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	410	* Fixed: Starting in safe mode on Linux or macOS causes Firefox
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	411	to think on the subsequent launch that the profile is too
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	412	recent to be used with this version of Firefox (bmo#1556612)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	413	* Fixed: Linux distribution users can't easily install/use
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	414	additional/different languages using the built-in preferences
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	415	UI (bmo#1554744)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	416	* Fixed: Developer tools users can't copy the href/src content
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	417	from various HTML tags via the context menu in the Inspector
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	418	markup view (bmo#1552275)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	419	* Fixed: Custom home page is broken with clearing data on shutdown
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	420	settings applied (bmo#1554167)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	421	* Fixed: Performance-regression for eclipse RAP based applications
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	422	(bmo#1555962)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	423	* Fixed: macOS 10.15 crash fix (bmo#1556076)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	424	* Fixed: Can't start two downloads in parallel via <a download>
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	425	anymore (bmo#1542912)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	426
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	427	-------------------------------------------------------------------
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	428	Thu Jun 6 06:49:51 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net>
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	429
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	430	- Mozilla Firefox 67.0.1
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	431	* enable enhanced tracking protection by default for new users
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	432	* upgrade of Facebook container to version 2.0
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	433	* new version of Firefox Lockwise (password management)
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	434	* new version of Firefox Monitor
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	435	* Firefox Send improvements
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	436
4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	437	-------------------------------------------------------------------
1094 a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	438	Sun May 19 20:40:30 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
1093 3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	439
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	440	- Mozilla Firefox 67.0
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	441	* Firefox 67 will be able to run different Firefox installs side by side
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	442	https://blog.nightly.mozilla.org/2019/01/14/moving-to-a-profile-per-install-architecture/
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	443	* Tabs can now be pinned from the Page Actions menu in the address bar
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	444	* Users can block known cryptominers and fingerprinters in the
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	445	Custom settings or their Content Blocking preferences
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	446	* The Import Data from Another Browser feature is now also available
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	447	from the File menu
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	448	* Firefox will now protect you against running older versions which
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	449	can lead to data corruption and stability issues
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	450	* Easier access to your list of saved logins from the main menu and
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	451	login autocomplete
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	452	* We’ve added a toolbar menu for your Firefox Account to provide more
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	453	transparency for when you are synced, sharing data across devices
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	454	and with Firefox. Personalize the appearance of the menu with your
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	455	own avatar
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	456	* Enable FIDO U2F API, and permit registrations for Google Accounts
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	457	* Enabled AV1 support on Linux
1096 4c248180e576 67.0.4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1094 diff changeset	458	MFSA 2019-13 (boo#1135824)
1094 a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	459	* CVE-2019-9815 (bmo#1546544)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	460	Disable hyperthreading on content JavaScript threads on macOS
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	461	* CVE-2019-9816 (bmo#1536768)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	462	Type confusion with object groups and UnboxedObjects
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	463	* CVE-2019-9817 (bmo#1540221)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	464	Stealing of cross-domain images using canvas
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	465	* CVE-2019-9818 (bmo#1542581) (Windows only)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	466	Use-after-free in crash generation server
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	467	* CVE-2019-9819 (bmo#1532553)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	468	Compartment mismatch with fetch API
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	469	* CVE-2019-9820 (bmo#1536405)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	470	Use-after-free of ChromeEventHandler by DocShell
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	471	* CVE-2019-9821 (bmo#1539125)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	472	Use-after-free in AssertWorkerThread
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	473	* CVE-2019-11691 (bmo#1542465)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	474	Use-after-free in XMLHttpRequest
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	475	* CVE-2019-11692 (bmo#1544670)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	476	Use-after-free removing listeners in the event listener manager
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	477	* CVE-2019-11693 (bmo#1532525)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	478	Buffer overflow in WebGL bufferdata on Linux
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	479	* CVE-2019-7317 (bmo#1542829)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	480	Use-after-free in png_image_free of libpng library
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	481	* CVE-2019-11694 (bmo#1534196) (Windows only)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	482	Uninitialized memory memory leakage in Windows sandbox
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	483	* CVE-2019-11695 (bmo#1445844)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	484	Custom cursor can render over user interface outside of web content
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	485	* CVE-2019-11696 (bmo#1392955)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	486	Java web start .JNLP files are not recognized as executable files
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	487	for download prompts
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	488	* CVE-2019-11697 (bmo#1440079)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	489	Pressing key combinations can bypass installation prompt delays and
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	490	install extensions
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	491	* CVE-2019-11698 (bmo#1543191)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	492	Theft of user history data through drag and drop of hyperlinks
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	493	to and from bookmarks
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	494	* CVE-2019-11700 (bmo#1549833) (Windows only)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	495	res: protocol can be used to open known local files
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	496	* CVE-2019-11699 (bmo#1528939)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	497	Incorrect domain name highlighting during page navigation
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	498	* CVE-2019-11701 (bmo#1518627)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	499	webcal: protocol default handler loads vulnerable web page
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	500	* CVE-2019-9814 (bmo#1527592, bmo#1534536, bmo#1520132, bmo#1543159,
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	501	bmo#1539393, bmo#1459932, bmo#1459182, bmo#1516425)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	502	Memory safety bugs fixed in Firefox 67
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	503	* CVE-2019-9800 (bmo#1540166, bmo#1534593, bmo#1546327, bmo#1540136,
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	504	bmo#1538736, bmo#1538042, bmo#1535612, bmo#1499719, bmo#1499108,
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	505	bmo#1538619, bmo#1535194, bmo#1516325, bmo#1542324, bmo#1542097,
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	506	bmo#1532465, bmo#1533554, bmo#1541580)
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	507	Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
1093 3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	508	- requires
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	509	* rust/cargo >= 1.32
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	510	* mozilla-nspr >= 4.21
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	511	* mozilla-nss >= 3.43
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	512	* rust-cbindgen >= 0.8.2
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	513	- rebased patches
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	514	- KDE integration for default browser detection is broken in this revision
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	515
3942c205588b 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1092 diff changeset	516	-------------------------------------------------------------------
1094 a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	517	Fri May 17 12:04:49 UTC 2019 - Guillaume GARDET <guillaume.gardet@opensuse.org>
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	518
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	519	- Fix armv7 build with:
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	520	* mozilla-disable-wasm-emulate-arm-unaligned-fp-access.patch
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	521
a25638dad81d final 67.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1093 diff changeset	522	-------------------------------------------------------------------
1092 5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	523	Fri May 10 10:30:05 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net>
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	524
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	525	- Mozilla Firefox 66.0.5
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	526	* Fixed: Further improvements to re-enable web extensions which
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	527	had been disabled for users with a master password set (bmo#1549249)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	528
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	529	-------------------------------------------------------------------
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	530	Sun May 5 20:21:02 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	531
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	532	- Mozilla Firefox 66.0.4 (boo#1134126)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	533	* fix extension certificate chain
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	534	https://blog.mozilla.org/addons/2019/05/04/update-regarding-add-ons-in-firefox/
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	535
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	536	-------------------------------------------------------------------
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	537	Thu Apr 11 09:16:17 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net>
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	538
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	539	- Mozilla Firefox 66.0.3
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	540	* Fixed: Address bar on tablets running Windows 10 now behaves
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	541	correctly (bmo#1498973)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	542	* Fixed: Performance issues with some HTML5 games (bmo#1537609)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	543	* Fixed a bug with keypress events in IBM cloud applications
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	544	(bmo#1538970)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	545	* Fix for keypress events in some Microsoft cloud applications
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	546	(bmo#1539618)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	547	* Changed: Updated Baidu search plugin
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	548
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	549	-------------------------------------------------------------------
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	550	Thu Mar 28 19:01:41 UTC 2019 - Manfred Hollstein <manfred.h@gmx.net>
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	551
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	552	- Mozilla Firefox 66.0.2
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	553	* Fixed Web compatibility issues with Office 365, iCloud and
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	554	IBM WebMail caused by recent changes to the handling of
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	555	keyboard events (bmo#1538966)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	556	* Crash fixes (bmo#1521370, bmo#1539118)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	557
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	558	-------------------------------------------------------------------
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	559	Thu Mar 28 09:58:36 UTC 2019 - Guillaume GARDET <guillaume.gardet@opensuse.org>
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	560
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	561	- Add patch to fix aarch64 build:
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	562	* mozilla-fix-aarch64-libopus.patch (bmo#1539737)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	563
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	564	-------------------------------------------------------------------
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	565	Fri Mar 22 22:22:08 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	566
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	567	- Mozilla Firefox 66.0.1
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	568	MFSA 2019-09 (bsc#1130262)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	569	* CVE-2019-9810 (bmo#1537924)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	570	IonMonkey MArraySlice has incorrect alias information
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	571	* CVE-2019-9813 (bmo#1538006)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	572	Ionmonkey type confusion with __proto__ mutations
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	573
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	574	-------------------------------------------------------------------
1089 eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	575	Sun Mar 17 10:08:51 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	576
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	577	- Mozilla Firefox 66.0
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	578	* Increased content processes to 8
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	579	* Added capability to search through open tabs from the tab overflow menu
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	580	* New backend for the storage.local WebExtensions API, providing
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	581	I/O performance improvements when the extension updates a small
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	582	subset of the stored data
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	583	* WebExtension keyboard shortcuts can now be managed or overridden
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	584	from about:addons
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	585	* Improved scrolling behavior: Firefox will now attempt to keep content
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	586	from jumping around while a page is loading by supporting scroll
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	587	anchoring
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	588	* New about:privatebrowsing with search
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	589	* A certificate error page now notifies the user of the name of the
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	590	certificate issuer that breaks HTTPs connections on intercepted
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	591	connections to help troubleshooting possible anti-virus software
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	592	issues.
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	593	* Fixed an performance issue some Linux users experienced with the
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	594	Downloads panel (bmo#1517101)
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	595	* Firefox now blocks all autoplay media with sound by default. Users
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	596	can add individual sites to an exceptions list or turn the blocking
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	597	off.
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	598	* System title bar is hidden by default to match Gnome guideline
1092 5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	599	MFSA 2019-07 (bsc#1129821)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	600	* CVE-2019-9790 (bmo#1525145)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	601	Use-after-free when removing in-use DOM elements
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	602	* CVE-2019-9791 (bmo#1530958)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	603	Type inference is incorrect for constructors entered through on-stack
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	604	replacement with IonMonkey
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	605	* CVE-2019-9792 (bmo#1532599)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	606	IonMonkey leaks JS_OPTIMIZED_OUT magic value to script
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	607	* CVE-2019-9793 (bmo#1528829)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	608	Improper bounds checks when Spectre mitigations are disabled
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	609	* CVE-2019-9794 (bmo#1530103) (Windows only)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	610	Command line arguments not discarded during execution
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	611	* CVE-2019-9795 (bmo#1514682)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	612	Type-confusion in IonMonkey JIT compiler
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	613	* CVE-2019-9796 (bmo#1531277)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	614	Use-after-free with SMIL animation controller
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	615	* CVE-2019-9797 (bmo#1528909)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	616	Cross-origin theft of images with createImageBitmap
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	617	* CVE-2019-9798 (bmo#1527534) (Android only)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	618	Library is loaded from world writable APITRACE_LIB location
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	619	* CVE-2019-9799 (bmo#1505678)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	620	Information disclosure via IPC channel messages
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	621	* CVE-2019-9801 (bmo#1527717) (Windows only)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	622	Windows programs that are not 'URL Handlers' are exposed to web content
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	623	* CVE-2019-9802 (bmo#1415508)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	624	Chrome process information leak
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	625	* CVE-2019-9803 (bmo#1515863, bmo#1437009)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	626	Upgrade-Insecure-Requests incorrectly enforced for same-origin navigation
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	627	* CVE-2019-9804 (bmo#1518026) (MacOS only)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	628	Code execution through 'Copy as cURL' in Firefox Developer Tools on macOS
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	629	* CVE-2019-9805 (bmo#1521360)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	630	Potential use of uninitialized memory in Prio
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	631	* CVE-2019-9806 (bmo#1525267)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	632	Denial of service through successive FTP authorization prompts
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	633	* CVE-2019-9807 (bmo#1362050)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	634	Text sent through FTP connection can be incorporated into alert messages
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	635	* CVE-2019-9809 (bmo#1282430, bmo#1523249)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	636	Denial of service through FTP modal alert error messages
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	637	* CVE-2019-9808 (bmo#1434634)
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	638	WebRTC permissions can display incorrect origin with data: and blob: URLs
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	639	* CVE-2019-9789 bmo#1520483, bmo#1522987, bmo#1528199, bmo#1519337,
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	640	bmo#1525549, bmo#1516179, bmo#1518524, bmo#1518331, bmo#1526579,
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	641	bmo#1512567, bmo#1524335, bmo#1448505, bmo#1518821
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	642	Memory safety bugs fixed in Firefox 66
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	643	* CVE-2019-9788 bmo#1518001, bmo#1521304, bmo#1521214, bmo#1506665,
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	644	bmo#1516834, bmo#1518774, bmo#1524755, bmo#1523362, bmo#1524214, bmo#1529203
5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	645	Memory safety bugs fixed in Firefox 66 and Firefox ESR 60.6
1089 eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	646	- updated build/runtime requirements
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	647	* mozilla-nss >= 3.42.1
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	648	* cargo/rust >= 1.31
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	649	* rust-cbindgen >= 0.6.8
1092 5d7b22f6b177 66.0.5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1089 diff changeset	650	* nasm >= 2.13 (new)
1089 eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	651	- removed obsolete patch
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	652	* mozilla-bmo256180.patch
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	653
eca1c1f2fe50 Firefox 66.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1087 diff changeset	654	-------------------------------------------------------------------
1087 5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	655	Tue Mar 5 10:17:01 UTC 2019 - Stephan Kulow <coolo@suse.com>
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	656
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	657	- Do not hardcode nodejs8 but leave the prefer to the distribution
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	658	(Tumbleweed staging wants to switch to nodejs10)
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	659
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	660	-------------------------------------------------------------------
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	661	Fri Feb 15 13:45:57 UTC 2019 - Guillaume GARDET <guillaume.gardet@opensuse.org>
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	662
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	663	- Update _constraints to avoid 'no space left' error seen on aarch64
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	664
5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	665	-------------------------------------------------------------------
1086 ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	666	Wed Feb 13 07:17:28 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	667
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	668	- Mozilla Firefox 65.0.1
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	669	* Fixed accidental requests to addons.mozilla.org when an addon
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	670	recommendation doorhanger is shown (bmo#1526387)
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	671	* Improved playback of interactive Netflix videos (bmo#1524500)
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	672	* Fixed incorrect sizing of the "Clear Recent History" window in
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	673	some situations (bmo#1523696)
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	674	* Fixed audio & video delays while making WebRTC calls
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	675	(bmo#1521577, bmo#1523817)
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	676	* Fixed video sizing problems during some WebRTC calls (bmo#1520200)
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	677	* Fixed looping CONNECT requests when using WebSockets over HTTP/2
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	678	from behind a proxy server (bmo#1523427)
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	679	* Fixed the "Enter" key not working on password entry fields for
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	680	certain Linux distributions (bmo#1523635)
1087 5fab52cd743d latest version Wolfgang Rosenauer <wr@rosenauer.org> parents: 1086 diff changeset	681	MFSA 2019-04 (bsc#1125330)
1086 ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	682	* CVE-2018-18356 bmo#1525817
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	683	Use-after-free in Skia
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	684	* CVE-2019-5785 bmo#1525433
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	685	Integer overflow in Skia
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	686	* CVE-2018-18511 bmo#1526218
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	687	Cross-origin theft of images with ImageBitmapRenderingContext
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	688
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	689	-------------------------------------------------------------------
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	690	Wed Feb 13 06:12:43 UTC 2019 - Martin Liška <mliska@suse.cz>
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	691
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	692	- Enable LTO only for latest new toolchain (boo#1125038) for x86_64
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	693	(with increased memory constraints)
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	694
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	695	-------------------------------------------------------------------
1085 87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	696	Sat Jan 26 22:37:01 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	697
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	698	- Mozilla Firefox 65.0
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	699	* Enhanced tracking protection
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	700	* allow switching of UI locales within preferences
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	701	* support for the WebP image format
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	702	* "top"-like about:performance
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	703	MFSA 2019-01 (bsc#1122983)
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	704	* CVE-2018-18500 bmo#1510114
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	705	Use-after-free parsing HTML5 stream
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	706	* CVE-2018-18503 bmo#1509442
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	707	Memory corruption with Audio Buffer
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	708	* CVE-2018-18504 bmo#1496413
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	709	Memory corruption and out-of-bounds read of texture client
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	710	* CVE-2018-18505 bmo#1497749
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	711	Privilege escalation through IPC channel messages
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	712	* CVE-2018-18506 bmo#1503393
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	713	Proxy Auto-Configuration file can define localhost access to be proxied
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	714	* CVE-2018-18502 bmo#1499426 bmo#1480090 bmo#1472990 bmo#1514762
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	715	bmo#1501482 bmo#1505887 bmo#1508102 bmo#1508618 bmo#1511580
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	716	bmo#1493497 bmo#1510145 bmo#1516289 bmo#1506798 bmo#1512758
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	717	Memory safety bugs fixed in Firefox 65
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	718	* CVE-2018-18501 bmo#1512450 bmo#1517542 bmo#1513201 bmo#1460619
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	719	bmo#1502871 bmo#1516738 bmo#1516514
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	720	Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	721	- requires
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	722	NSS 3.41
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	723	rust/carge 1.30
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	724	rust-cbindgen 0.6.7
1086 ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	725	- rebased patches
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	726	- remove workaround for build memory consumption on i586; other
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	727	mitigations meanwhile introduced (mainly parallelity) will be
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	728	sufficient
ed1c30c5f456 Firefox 65.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1085 diff changeset	729	mozilla-reduce-files-per-UnifiedBindings.patch
1085 87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	730
87f893cf45b9 Firefox 65.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1084 diff changeset	731	-------------------------------------------------------------------
1084 b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	732	Tue Jan 15 14:32:03 UTC 2019 - Martin Liška <mliska@suse.cz>
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	733
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	734	- Increase disk constraint.
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	735
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	736	-------------------------------------------------------------------
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	737	Mon Jan 14 12:12:12 UTC 2019 - Martin Liška <mliska@suse.cz>
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	738
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	739	- Remove -v from mach build in order to work-around bmo#1500436.
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	740
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	741	-------------------------------------------------------------------
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	742	Fri Jan 11 15:07:14 UTC 2019 - Martin Liška <mliska@suse.cz>
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	743
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	744	- Set %clang_build to false on all architectures
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	745	- Do not use -fno-delete-null-pointer-checks and -fno-strict-aliasing:
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	746	it should not be needed anymore
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	747	- Do not overwrite enable-optimize and when possible
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	748	enable --enable-debug-symbols.
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	749	- Add -v to mach in order to make build verbose.
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	750
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	751	-------------------------------------------------------------------
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	752	Wed Jan 9 22:40:14 UTC 2019 - astieger@suse.com
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	753
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	754	- Mozilla Firefox 64.0.2:
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	755	* Update the Japanese translation for missing strings (bmo#1513259)
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	756	* Properly restore column sizes in developer tools inspector (bmo#1503175)
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	757	* Fixed video stuttering on Youtube (bmo#1513511)
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	758	* Fix updates for some lightweight themes (bmo#1508777)
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	759
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	760	-------------------------------------------------------------------
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	761	Tue Dec 18 14:46:41 UTC 2018 - Guillaume GARDET <guillaume.gardet@opensuse.org>
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	762
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	763	- Enable build_hardened for all architectures
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	764	- Switch back aarch64 to clang as '-fPIC' fixes bmo#1513605
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	765	- Remove obolete '--enable-pie' as -pie is always enabled for
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	766	gcc and clang
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	767
b0b3c507e253 latest Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1083 diff changeset	768	-------------------------------------------------------------------
1083 2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	769	Wed Dec 12 17:33:29 UTC 2018 - Guillaume GARDET <guillaume.gardet@opensuse.org>
2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	770
2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	771	- Switch aarch64 builds back to gcc, not clang (bmo#1513605)
2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	772	- Switch %arm builds back to gcc, not clang to avoid OOM
2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	773	- Fix build flags when clang is not used
2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	774	- Fix flags for clang ppc64 builds
2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	775
2f7023025374 reduced memory requirements and rely on memory limitations in parallelization Wolfgang Rosenauer <wr@rosenauer.org> parents: 1082 diff changeset	776	-------------------------------------------------------------------
1082 821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	777	Tue Dec 11 08:45:56 UTC 2018 - Wolfgang Rosenauer <wr@rosenauer.org>
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	778
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	779	- update to Firefox 64.0
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	780	* Better recommendations: You may see suggestions in regular browsing
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	781	mode for new and relevant Firefox features, services, and extensions
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	782	based on how you use the web (for US users only)
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	783	* Enhanced tab management: You can now select multiple tabs from the
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	784	tab bar and close, move, bookmark, or pin them quickly and easily
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	785	* Easier performance management: The new Task Manager page found at
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	786	about:performance lets you see how much energy each open tab consumes
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	787	and provides access to close tabs to conserve power
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	788	* Improved performance for Mac and Linux users, by enabling link time
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	789	optimization (Clang LTO).
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	790	* Added option to remove add-ons using the context menu on their
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	791	toolbar buttons
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	792	* RSS feed preview and live bookmarks are available only via add-ons
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	793	* TLS certificates issued by Symantec are no longer trusted by Firefox.
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	794	Website operators are strongly encouraged to replace any remaining
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	795	Symantec TLS certificates as soon as possible
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	796	MFSA 2018-29 (bsc#1119105)
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	797	* CVE-2018-12407 bmo#1505973
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	798	Buffer overflow with ANGLE library when using VertexBuffer11 module
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	799	* CVE-2018-17466 bmo#1488295
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	800	Buffer overflow and out-of-bounds read in ANGLE library with
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	801	TextureStorage11
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	802	* CVE-2018-18492 bmo#1499861
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	803	Use-after-free with select element
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	804	* CVE-2018-18493 bmo#1504452
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	805	Buffer overflow in accelerated 2D canvas with Skia
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	806	* CVE-2018-18494 bmo#1487964
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	807	Same-origin policy violation using location attribute and
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	808	performance.getEntries to steal cross-origin URLs
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	809	* CVE-2018-18495 bmo#1427585
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	810	WebExtension content scripts can be loaded in about: pages
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	811	* CVE-2018-18496 bmo#1422231 (Windows only)
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	812	Embedded feed preview page can be abused for clickjacking
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	813	* CVE-2018-18497 bmo#1488180
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	814	WebExtensions can load arbitrary URLs through pipe separators
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	815	* CVE-2018-18498 bmo#1500011
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	816	Integer overflow when calculating buffer sizes for images
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	817	* CVE-2018-12406 bmo#1456947 bmo#1475669 bmo#1504816 bmo#1502886
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	818	bmo#1500064 bmo#1500310 bmo#1500696 bmo#1498765 bmo#1499198 bmo#1434490
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	819	bmo#1481745 bmo#1458129
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	820	Memory safety bugs fixed in Firefox 64
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	821	* CVE-2018-12405 bmo#1494752 bmo#1503326 bmo#1505181 bmo#1500759
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	822	bmo#1504365 bmo#1506640 bmo#1503082 bmo#1502013 bmo#1510471
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	823	Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	824	- requires
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	825	* rust/cargo >= 1.29
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	826	* mozilla-nss >= 3.40.1
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	827	* rust-cbindgen >= 0.6.4
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	828	- rebased patches
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	829	- removed obsolete patch
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	830	* mozilla-bmo1491289.patch
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	831	- now uses clang primarily for compilation
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	832
821cfbe8efcc Firefox 64.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1081 diff changeset	833	-------------------------------------------------------------------
1081 9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	834	Wed Nov 28 11:07:18 UTC 2018 - Guillaume GARDET <guillaume.gardet@opensuse.org>
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	835
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	836	- Remove --disable-elf-hack when not available: on aarch64 and ppc64*
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	837
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	838	-------------------------------------------------------------------
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	839	Mon Nov 26 09:46:02 UTC 2018 - Guillaume GARDET <guillaume.gardet@opensuse.org>
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	840
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	841	- Clean-up %arm build
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	842
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	843	-------------------------------------------------------------------
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	844	Sun Nov 18 11:01:21 UTC 2018 - manfred.h@gmx.net
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	845
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	846	- update to Firefox 63.0.3
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	847	* Games using WebGL (created in Unity) get stuck after very short
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	848	time of gameplay (bmo#1502748)
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	849	* Slow page loading for some users with specific proxy configurations
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	850	(bmo#1495024)
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	851	* Disable HTTP response throttling by default for causing bugs with
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	852	videos in background tabs (bmo#1503354)
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	853	* Opening magnet links no longer works (bmo#1498934)
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	854	* Crash fixes (bmo#1498510, bmo#1503424)
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	855	- removed mozilla-newer-cbindgen.patch; no longer needed
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	856
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	857	-------------------------------------------------------------------
1077 d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	858	Thu Nov 8 14:59:13 UTC 2018 - wr@rosenauer.org
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	859
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	860	- update to Firefox 63.0.1
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	861	* Snippets are not loaded due to missing element (bmo#1503047)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	862	* Print preview always shows 30& scale when it is actually
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	863	Shrink To Fit (bmo#1501952)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	864	* Dialog displayed when closing multiple windows shows unreplaced
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	865	%1$S placeholder in Japanese and potentially other locales
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	866	(bmo#1500823)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	867
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	868	-------------------------------------------------------------------
1075 0831123bc28a final 63.0 release preparations Wolfgang Rosenauer <wr@rosenauer.org> parents: 1074 diff changeset	869	Mon Oct 29 14:07:51 UTC 2018 - wr@rosenauer.org
0831123bc28a final 63.0 release preparations Wolfgang Rosenauer <wr@rosenauer.org> parents: 1074 diff changeset	870
0831123bc28a final 63.0 release preparations Wolfgang Rosenauer <wr@rosenauer.org> parents: 1074 diff changeset	871	- update to Firefox 63.0
1074 4b99400f6d17 rebased patches and updated spec for 63.0b14 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1073 diff changeset	872	* WebExtensions now run in their own process on Linux
4b99400f6d17 rebased patches and updated spec for 63.0b14 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1073 diff changeset	873	* The Ctrl+Tab shortcut now displays thumbnail previews of your
4b99400f6d17 rebased patches and updated spec for 63.0b14 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1073 diff changeset	874	tabs and cycles through tabs in recently used order. This new
4b99400f6d17 rebased patches and updated spec for 63.0b14 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1073 diff changeset	875	default behavior is activated only in new profiles and can be
4b99400f6d17 rebased patches and updated spec for 63.0b14 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1073 diff changeset	876	changed in preferences.
4b99400f6d17 rebased patches and updated spec for 63.0b14 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1073 diff changeset	877	* Added support for Web Components custom elements and shadow DOM
1077 d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	878	MFSA 2018-26 (bsc#1112852)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	879	* CVE-2018-12391 (bmo#1478843) (Android-only)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	880	HTTP Live Stream audio data is accessible cross-origin
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	881	* CVE-2018-12392 (bmo#1492823)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	882	Crash with nested event loops
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	883	* CVE-2018-12393 (bmo#1495011) (only affects non-64-bit archs)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	884	Integer overflow during Unicode conversion while loading JavaScript
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	885	* CVE-2018-12395 (bmo#1467523)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	886	WebExtension bypass of domain restrictions through header rewriting
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	887	* CVE-2018-12396 (bmo#1483602)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	888	WebExtension content scripts can execute in disallowed contexts
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	889	* CVE-2018-12397 (bmo#1487478)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	890	Missing warning prompt when WebExtension requests local file access
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	891	* CVE-2018-12398 (bmo#1460538, bmo#1488061)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	892	CSP bypass through stylesheet injection in resource URIs
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	893	* CVE-2018-12399 (bmo#1490276)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	894	Spoofing of protocol registration notification bar
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	895	* CVE-2018-12400 (bmo#1448305) (Android only)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	896	Favicons are cached in private browsing mode on Firefox for Android
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	897	* CVE-2018-12401 (bmo#1422456)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	898	DOS attack through special resource URI parsing
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	899	* CVE-2018-12402 (bmo#1469916)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	900	SameSite cookies leak when pages are explicitly saved
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	901	* CVE-2018-12403 (bmo#1484753)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	902	Mixed content warning is not displayed when HTTPS page loads a favicon over HTTP
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	903	* CVE-2018-12388 (bmo#1472639, bmo#1485698, bmo#1301547, bmo#1471427,
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	904	bmo#1379411, bmo#1482122, bmo#1486314, bmo#1487167)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	905	Memory safety bugs fixed in Firefox 63
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	906	* CVE-2018-12390 (bmo#1487098, bmo#1487660, bmo#1490234, bmo#1496159,
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	907	bmo#1443748, bmo#1496340, bmo#1483905, bmo#1493347, bmo#1488803,
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	908	bmo#1498701, bmo#1498482, bmo#1442010, bmo#1495245, bmo#1483699,
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	909	bmo#1469486, bmo#1484905, bmo#1490561, bmo#1492524, bmo#1481844)
d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	910	Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3
1074 4b99400f6d17 rebased patches and updated spec for 63.0b14 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1073 diff changeset	911	- requires NSPR 4.20, NSS 3.39 and Rust 1.28
1077 d8601c72c87b 63.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1076 diff changeset	912	- latest rust does not provide rust-std so stop requiring it
1079 1663e876731f latest toolchain updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 1078 diff changeset	913	- requires rust-cbindgen >= 0.6.2 to build
1663e876731f latest toolchain updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 1078 diff changeset	914	- requires nodejs >= 8.11 to build
1078 9f49c406dc11 63.0.1 release candidate with several build updates and required fixes Wolfgang Rosenauer <wr@rosenauer.org> parents: 1077 diff changeset	915	- added mozilla-bmo1491289.patch to fix system NSS build (bmo#1491289)
9f49c406dc11 63.0.1 release candidate with several build updates and required fixes Wolfgang Rosenauer <wr@rosenauer.org> parents: 1077 diff changeset	916	- added mozilla-cubeb-noreturn.patch to fix non-return function
1079 1663e876731f latest toolchain updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 1078 diff changeset	917	- added mozilla-newer-cbindgen.patch to fix build with cbindgen 0.6.7
1663e876731f latest toolchain updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 1078 diff changeset	918	- disable elfhack for TW and newer due to build errors
1081 9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	919	- removed obsolete patches
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	920	* mozilla-no-return.patch
9fec29d2ead2 latest updates from Factory Wolfgang Rosenauer <wr@rosenauer.org> parents: 1079 diff changeset	921	* mozilla-no-stdcxx-check.patch
1073 63a32fb3b602 merge from firefox62 and prepare for 63beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 1072 diff changeset	922
63a32fb3b602 merge from firefox62 and prepare for 63beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 1072 diff changeset	923	-------------------------------------------------------------------
1076 2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	924	Thu Oct 25 14:39:04 UTC 2018 - guillaume.gardet@opensuse.org
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	925
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	926	- Update _constraints for armv6/7
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	927
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	928	-------------------------------------------------------------------
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	929	Thu Oct 25 08:50:24 UTC 2018 - guillaume.gardet@opensuse.org
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	930
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	931	- Add patch to fix build on armv7:
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	932	* mozilla-bmo1463035.patch
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	933
2823eb50c9a9 ARM updates Guillaume GARDET <guillaume.gardet@opensuse.org> parents: 1075 diff changeset	934	-------------------------------------------------------------------
1072 84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	935	Tue Oct 2 21:28:31 UTC 2018 - astieger@suse.com
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	936
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	937	- Mozilla Firefox 62.0.3:
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	938	MFSA 2018-24
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	939	* CVE-2018-12386 (bsc#1110506, bmo#1493900)
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	940	Type confusion in JavaScript allowed remote code execution
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	941	* CVE-2018-12387 (bsc#1110507, bmo#1493903)
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	942	Array.prototype.push stack pointer vulnerability may enable
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	943	exploits in the sandboxed content process
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	944
84c1339de259 62.0.3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1071 diff changeset	945	-------------------------------------------------------------------
1071 8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	946	Sat Sep 22 09:03:53 UTC 2018 - astieger@suse.com
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	947
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	948	- Mozilla Firefox 62.0.2:
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	949	MFSA 2018-22
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	950	* CVE-2018-12385 (boo#1109363, bmo#1490585)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	951	Crash in TransportSecurityInfo due to cached data
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	952	* Unvisited bookmarks can once again be autofilled in the address
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	953	bar
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	954	* Fix WebGL rendering issues
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	955	* Fix fallback on startup when a language pack is missing
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	956	* Avoid crash when sharing a profile with newer (as yet
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	957	unreleased) versions of Firefox
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	958	* Do not undo removal of search engines when using a language
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	959	pack
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	960	* Fixed rendering of some web sites
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	961	* Restored compatibility with some sites using deprecated TLS
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	962	settings
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	963	- disable rust debug symbols to fix build on %ix86
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	964
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	965	-------------------------------------------------------------------
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	966	Mon Sep 3 10:47:43 UTC 2018 - wr@rosenauer.org
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	967
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	968	- update to Firefox 62.0
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	969	* Firefox Home (the default New Tab) now allows users to display
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	970	up to 4 rows of top sites, Pocket stories, and highlights
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	971	* "Reopen in Container" tab menu option appears for users with
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	972	Containers that lets them choose to reopen a tab in a different
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	973	container
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	974	* In advance of removing all trust for Symantec-issued certificates
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	975	in Firefox 63, a preference was added that allows users to distrust
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	976	certificates issued by Symantec. To use this preference, go to
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	977	about:config in the address bar and set the preference
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	978	"security.pki.distrust_ca_policy" to 2.
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	979	* Support for CSS Shapes, allowing for richer web page layouts.
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	980	This goes hand in hand with a brand new Shape Path Editor in the
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	981	CSS inspector.
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	982	* CSS Variable Fonts (OpenType Font Variations) support, which makes
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	983	it possible to create beautiful typography with a single font file
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	984	* Added Canadian English (en-CA) locale
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	985	MFSA 2018-20 (bsc#1107343)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	986	* CVE-2018-12377 (bmo#1470260)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	987	Use-after-free in refresh driver timers
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	988	* CVE-2018-12378 (bmo#1459383)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	989	Use-after-free in IndexedDB
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	990	* CVE-2018-12379 (bmo#1473113) (updater is disabled for us)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	991	Out-of-bounds write with malicious MAR file
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	992	* CVE-2017-16541 (bmo#1412081)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	993	Proxy bypass using automount and autofs
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	994	* CVE-2018-12381 (bmo#1435319)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	995	Dragging and dropping Outlook email message results in page navigation
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	996	* CVE-2018-12382 (bmo#1479311) (Android only)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	997	Addressbar spoofing with javascript URI on Firefox for Android
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	998	* CVE-2018-12383 (bmo#1475775)
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	999	Setting a master password post-Firefox 58 does not delete
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	1000	unencrypted previously stored passwords
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	1001	* CVE-2018-12375
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	1002	Memory safety bugs fixed in Firefox 62
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	1003	* CVE-2018-12376
8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	1004	Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2
1066 3f18b0f2a868 merge from firefox61 and specify next beta cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 1065 diff changeset	1005	- requires NSS >= 3.38
1071 8dc7d19e8298 firefox 62.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1070 diff changeset	1006	- removed obsolete patch
1067 735b140fb042 rebased patches Wolfgang Rosenauer <wr@rosenauer.org> parents: 1066 diff changeset	1007	mozilla-bmo1464766.patch
1066 3f18b0f2a868 merge from firefox61 and specify next beta cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 1065 diff changeset	1008
3f18b0f2a868 merge from firefox61 and specify next beta cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 1065 diff changeset	1009	-------------------------------------------------------------------
1065 33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1010	Thu Aug 9 14:22:00 UTC 2018 - wr@rosenauer.org
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1011
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1012	- update to Firefox 61.0.2
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1013	* Improved website rendering with the Retained Display List feature
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1014	enabled (bmo#1474402)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1015	* Fixed broken DevTools panels with certain extensions installed
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1016	(bmo#1474379)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1017	* Fixed a crash for users with some accessibility tools enabled
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1018	(bmo#1474007)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1019
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1020	-------------------------------------------------------------------
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1021	Mon Jul 9 07:22:09 UTC 2018 - astieger@suse.com
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1022
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1023	- Mozilla Firefox 61.0.1:
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1024	* Fix missing content on the New Tab Page and the Home section of
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1025	the Preferences page (bmo#1471375)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1026	* Fixed loss of bookmarks under rare circumstances when upgrading
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1027	from Firefox 60 (bmo#1472127)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1028	* Improved playback of Twitch 1080p video streams (bmo#1469257)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1029	* Web pages no longer lose focus when a browser popup window is
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1030	opened (bmo#1471415)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1031	* Re-allowed downloading files from FTP sites via the "Save Link
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1032	As" option when linked from HTTP pages (bmo#1470295)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1033	* Fixed extensions being unable to override the default homepage
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1034	in certain situations (bmo#1466846)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1035
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1036	-------------------------------------------------------------------
1061 42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1037	Sat Jun 23 07:25:51 UTC 2018 - wr@rosenauer.org
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1038
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1039	- update to Firefox 61.0
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1040	* Performance enhancements
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1041	* Various improvements for dark theme support will provide a more
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1042	consistent experience across the entire Firefox UI
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1043	* OpenSearch plugins offered by web pages can now be added from the
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1044	page action menu for easier installation
42510f8eee28 61.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 1060 diff changeset	1045	* Improved support for allowing WebExtensions to manage and hide tabs
1065 33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1046	MFSA 2018-15 (bsc#1098998)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1047	* CVE-2018-12359 (bmo#1459162)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1048	Buffer overflow using computed size of canvas element
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1049	* CVE-2018-12360 (bmo#1459693)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1050	Use-after-free when using focus()
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1051	* CVE-2018-12361 (bmo#1463244)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1052	Integer overflow in SwizzleData
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1053	* CVE-2018-12358 (bmo#1467852)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1054	Same-origin bypass using service worker and redirection
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1055	* CVE-2018-12362 (bmo#1452375)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1056	Integer overflow in SSSE3 scaler
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1057	* CVE-2018-5156 (bmo#1453127)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1058	Media recorder segmentation fault when track type is changed during capture
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1059	* CVE-2018-12363 (bmo#1464784)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1060	Use-after-free when appending DOM nodes
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1061	* CVE-2018-12364 (bmo#1436241)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1062	CSRF attacks through 307 redirects and NPAPI plugins
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1063	* CVE-2018-12365 (bmo#1459206)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1064	Compromised IPC child process can list local filenames
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1065	* CVE-2018-12371 (bmo#1465686)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1066	Integer overflow in Skia library during edge builder allocation
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1067	* CVE-2018-12366 (bmo#1464039)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1068	Invalid data handling during QCMS transformations
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1069	* CVE-2018-12367 (bmo#1462891)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1070	Timing attack mitigation of PerformanceNavigationTiming
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1071	* CVE-2018-12369 (bmo#1454909)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1072	WebExtension security permission checks bypassed by embedded experiments
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1073	* CVE-2018-12370 (bmo#1456652)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1074	SameSite cookie protections bypassed when exiting Reader View
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1075	* CVE-2018-5186 (bmo#1464872,bmo#1463329,bmo#1419373,bmo#1412882,
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1076	bmo#1413033,bmo#1444673,bmo#1454448,bmo#1453505,bmo#1438671)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1077	Memory safety bugs fixed in Firefox 61
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1078	* CVE-2018-5187 (bmo#1461324,bmo#1414829,bmo#1395246,bmo#1467938,
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1079	bmo#1461619,bmo#1425930,bmo#1438556,bmo#1454285,bmo#1459568,
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1080	bmo#1463884)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1081	Memory safety bugs fixed in Firefox 60 and Firefox ESR 60.1
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1082	* CVE-2018-5188 (bmo#1456189,bmo#1456975,bmo#1465898,bmo#1392739,
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1083	bmo#1451297,bmo#1464063,bmo#1437842,bmo#1442722,bmo#1452576,
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1084	bmo#1450688,bmo#1458264,bmo#1458270,bmo#1465108,bmo#1464829,
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1085	bmo#1464079,bmo#1463494,bmo#1458048)
33c6119b5cc5 61.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 1061 diff changeset	1086	Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and Firefox ESR 52.9
1054 fbfe323c62cd Add conditional for pkgconfig(gconf-2.0) BuildRequires, and pass <bjorn.lie@gmail.com> parents: 1052 diff changeset	1087	- requires NSS 3.37.3
1065 33c6119b5cc5 61.0.

author	Wolfgang Rosenauer <wr@rosenauer.org>
	Tue, 07 Jan 2020 09:47:03 +0100
branch	firefox71
changeset 1118	27c3f029180a
parent 1117	d6a688186de0
child 1119	4c5d44d40a03
permissions	-rw-r--r--