1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Sun Sep 17 08:07:43 UTC 2017 - wr@rosenauer.org |
2 Mon Oct 2 19:57:40 UTC 2017 - wr@rosenauer.org |
3 |
3 |
4 - update to Firefox 56.0b12 |
4 - enable stylo for TW (requires LLVM >= 3.9) |
|
5 |
|
6 ------------------------------------------------------------------- |
|
7 Sun Oct 1 18:25:16 UTC 2017 - stefan.bruens@rwth-aachen.de |
|
8 |
|
9 - Correct plugin directory for aarch64 (boo#1061207). The wrapper |
|
10 script was not detecting aarch64 as a 64 bit architecture, thus |
|
11 used /usr/lib/browser-plugins/. |
|
12 |
|
13 ------------------------------------------------------------------- |
|
14 Sat Sep 30 20:10:50 UTC 2017 - zaitor@opensuse.org |
|
15 |
|
16 - Drop libgnomeui-devel, and replace it with pkgconfig(gconf-2.0), |
|
17 pkgconfig(gtk+-2.0), pkgconfig(gtk+-unix-print-2.0), |
|
18 pkgconfig(glib-2.0), pkgconfig(gobject-2.0) and |
|
19 pkgconfig(gdk-x11-2.0) BuildRequires, align with what configure |
|
20 looks for. |
|
21 |
|
22 ------------------------------------------------------------------- |
|
23 Thu Sep 28 08:28:29 UTC 2017 - wr@rosenauer.org |
|
24 |
|
25 - update to Firefox 56.0 (boo#1060445) |
|
26 * Firefox Screenshots |
5 * Find Options/Preferences more quickly with new search function |
27 * Find Options/Preferences more quickly with new search function |
6 * Media is no longer auto-played when opened in a background tab |
28 * Media is no longer auto-played when opened in a background tab |
7 * Enable CSS Grid Layout View |
29 * Enable CSS Grid Layout View |
|
30 MFSA 2017-21 |
|
31 * CVE-2017-7793 (bmo#1371889) |
|
32 Use-after-free with Fetch API |
|
33 * CVE-2017-7817 (bmo#1356596) (Android-only) |
|
34 Firefox for Android address bar spoofing through fullscreen mode |
|
35 * CVE-2017-7818 (bmo#1363723) |
|
36 Use-after-free during ARIA array manipulation |
|
37 * CVE-2017-7819 (bmo#1380292) |
|
38 Use-after-free while resizing images in design mode |
|
39 * CVE-2017-7824 (bmo#1398381) |
|
40 Buffer overflow when drawing and validating elements with ANGLE |
|
41 * CVE-2017-7805 (bmo#1377618) (fixed via NSS requirement) |
|
42 Use-after-free in TLS 1.2 generating handshake hashes |
|
43 * CVE-2017-7812 (bmo#1379842) |
|
44 Drag and drop of malicious page content to the tab bar can open locally stored files |
|
45 * CVE-2017-7814 (bmo#1376036) |
|
46 Blob and data URLs bypass phishing and malware protection warnings |
|
47 * CVE-2017-7813 (bmo#1383951) |
|
48 Integer truncation in the JavaScript parser |
|
49 * CVE-2017-7825 (bmo#1393624, bmo#1390980) (OSX-only) |
|
50 OS X fonts render some Tibetan and Arabic unicode characters as spaces |
|
51 * CVE-2017-7815 (bmo#1368981) |
|
52 Spoofing attack with modal dialogs on non-e10s installations |
|
53 * CVE-2017-7816 (bmo#1380597) |
|
54 WebExtensions can load about: URLs in extension UI |
|
55 * CVE-2017-7821 (bmo#1346515) |
|
56 WebExtensions can download and open non-executable files without user interaction |
|
57 * CVE-2017-7823 (bmo#1396320) |
|
58 CSP sandbox directive did not create a unique origin |
|
59 * CVE-2017-7822 (bmo#1368859) |
|
60 WebCrypto allows AES-GCM with 0-length IV |
|
61 * CVE-2017-7820 (bmo#1378207) |
|
62 Xray wrapper bypass with new tab and web console |
|
63 * CVE-2017-7811 |
|
64 Memory safety bugs fixed in Firefox 56 |
|
65 * CVE-2017-7810 |
|
66 Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4 |
8 - requires NSPR 4.16 and NSS 3.32.1 |
67 - requires NSPR 4.16 and NSS 3.32.1 |
|
68 - rebased patches |
|
69 |
|
70 ------------------------------------------------------------------- |
|
71 Thu Sep 28 07:53:13 UTC 2017 - dimstar@opensuse.org |
|
72 |
|
73 - Add alsa-devel BuildRequires: we care for ALSA support to be |
|
74 built and thus need to ensure we get the dependencies in place. |
|
75 In the past, alsa-devel was pulled in by accident: we |
|
76 buildrequire libgnome-devel. This required esound-devel and that |
|
77 in turn pulled in alsa-devel for us. libgnome is being fixed to |
|
78 no longer require esound-devel. |
9 |
79 |
10 ------------------------------------------------------------------- |
80 ------------------------------------------------------------------- |
11 Mon Sep 4 18:27:44 UTC 2017 - wr@rosenauer.org |
81 Mon Sep 4 18:27:44 UTC 2017 - wr@rosenauer.org |
12 |
82 |
13 - update to Firefox 55.0.3 |
83 - update to Firefox 55.0.3 |