Mercurial Mercurial > hg > mozilla / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Firefox 119.0.1 firefox119
authorWolfgang Rosenauer <wr@rosenauer.org>
Wed, 22 Nov 2023 23:08:38 +0100
branchfirefox119
changeset 1197 19915e86b721
parent 1196 954851a35787
child 1198 de5582739a05
Firefox 119.0.1
MozillaFirefox/MozillaFirefox.changes file | annotate | diff | comparison | revisions
MozillaFirefox/MozillaFirefox.spec file | annotate | diff | comparison | revisions
MozillaFirefox/tar_stamps file | annotate | diff | comparison | revisions 
--- a/MozillaFirefox/MozillaFirefox.changes	Wed Oct 25 11:49:20 2023 +0200
+++ b/MozillaFirefox/MozillaFirefox.changes	Wed Nov 22 23:08:38 2023 +0100
@@ -1,4 +1,52 @@
 -------------------------------------------------------------------
+Wed Nov  8 20:27:15 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
+
+- Mozilla Firefox 119.0.1
+  * Fixed a bug causing colors in the <select> HTML element to not
+    be applied to dropdown menu arrows (bmo#1861253)
+  * Fixed a bug with the <input> HTML element state not changing
+    when dynamically updating the `disabled` attribute on an
+    ancestor <fieldset> (bmo#1861027)
+  * Fixed a bug causing elements with the indeterminate CSS
+    selector in a radio group to not update (bmo#1861346)
+
+-------------------------------------------------------------------
+Thu Oct 26 10:31:03 UTC 2023 - Wolfgang Rosenauer <wr@rosenauer.org>
+
+- Mozilla Firefox 119.0
+  https://www.mozilla.org/en-US/firefox/119.0/releasenotes
+  MFSA 2023-45 (bsc#1216338)
+  * CVE-2023-5721 (bmo#1830820)
+    Queued up rendering could have allowed websites to clickjack
+  * CVE-2023-5722 (bmo#1738426)
+    Cross-Origin size and header leakage
+  * CVE-2023-5723 (bmo#1802057)
+    Invalid cookie characters could have led to unexpected errors
+  * CVE-2023-5724 (bmo#1836705)
+    Large WebGL draw could have led to a crash
+  * CVE-2023-5725 (bmo#1845739)
+    WebExtensions could open arbitrary URLs
+  * CVE-2023-5726 (bmo#1846205)
+    Full screen notification obscured by file open dialog on macOS
+  * CVE-2023-5727 (bmo#1847180)
+    Download Protections were bypassed by .msix, .msixbundle,
+    .appx, and .appxbundle files on Windows
+  * CVE-2023-5728 (bmo#1852729)
+    Improper object tracking during GC in the JavaScript engine
+    could have led to a crash.
+  * CVE-2023-5729 (bmo#1823720)
+    Fullscreen notification dialog could have been obscured by
+    WebAuthn prompts
+  * CVE-2023-5730 (bmo#1836607, bmo#1840918, bmo#1848694, bmo#1848833,
+    bmo#1850191, bmo#1850259, bmo#1852596, bmo#1853201, bmo#1854002,
+    bmo#1855306, bmo#1855640, bmo#1856695)
+    Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4,
+    and Thunderbird 115.4.1
+  * CVE-2023-5731 (bmo#1690111, bmo#1721904, bmo#1851803, bmo#1854068)
+    Memory safety bugs fixed in Firefox 119
+- requires NSS 3.94
+
+-------------------------------------------------------------------
 Wed Oct 11 18:28:09 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
 
 - Mozilla Firefox 118.0.2
@@ -13,9 +61,10 @@
 -------------------------------------------------------------------
 Sat Sep 30 19:51:56 UTC 2023 - Björn Bidar <bjorn.bidar@thaodan.de>
 
-- Activate KDE integration again, included rebased and updated patches
-  (upstream removed special files handling for preferences but that
-  has no effect since we haven't shipped obsolete kde.js for a while)
+- Activate KDE integration again, included rebased and updated
+  patches, firefox-kde.patch and mozilla-kde.patch, (upstream
+  removed special files handling for preferences but that has no
+  effect since we haven't shipped obsolete kde.js for a while)
   (boo#1216027)
 
 -------------------------------------------------------------------
--- a/MozillaFirefox/MozillaFirefox.spec	Wed Oct 25 11:49:20 2023 +0200
+++ b/MozillaFirefox/MozillaFirefox.spec	Wed Nov 22 23:08:38 2023 +0100
@@ -28,9 +28,9 @@
 # orig_suffix b3
 # major 69
 # mainver %%major.99
-%define major          118
-%define mainver        %major.0.2
-%define orig_version   118.0.2
+%define major          119
+%define mainver        %major.0.1
+%define orig_version   119.0.1
 %define orig_suffix    %{nil}
 %define update_channel release
 %define branding       1
@@ -114,7 +114,7 @@
 BuildRequires:  libproxy-devel
 BuildRequires:  makeinfo
 BuildRequires:  mozilla-nspr-devel >= 4.35
-BuildRequires:  mozilla-nss-devel >= 3.93
+BuildRequires:  mozilla-nss-devel >= 3.94
 BuildRequires:  nasm >= 2.14
 BuildRequires:  nodejs >= 12.22.12
 %if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000
@@ -728,7 +728,6 @@
 %{progdir}/fonts/
 %{progdir}/pingsender
 %{progdir}/platform.ini
-%{progdir}/plugin-container
 %if %crashreporter
 %{progdir}/crashreporter
 %{progdir}/crashreporter.ini
--- a/MozillaFirefox/tar_stamps	Wed Oct 25 11:49:20 2023 +0200
+++ b/MozillaFirefox/tar_stamps	Wed Nov 22 23:08:38 2023 +0100
@@ -1,10 +1,10 @@
 PRODUCT="firefox"
 CHANNEL="release"
-VERSION="118.0.2"
+VERSION="119.0.1"
 VERSION_SUFFIX=""
-PREV_VERSION="118.0.1"
+PREV_VERSION="119.0"
 PREV_VERSION_SUFFIX=""
 #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
 RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"
-RELEASE_TAG="e26ce7fb8b2358ad45a84d34b1f5b6a1cc59d7fb"
-RELEASE_TIMESTAMP="20231009140911"
+RELEASE_TAG="b8f0d32ac6a5c34db8692ed382c3018e6309ea09"
+RELEASE_TIMESTAMP="20231106151204"
mozilla