Mercurial Mercurial > hg > mozilla / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
MozillaFirefox/MozillaFirefox.changes
branchfirefox84
changeset 1152 4cfe46c9a944
parent 1151 8df86bf11fc1
child 1153 fdd746757dda
equal deleted inserted replaced
1151:8df86bf11fc1 1152:4cfe46c9a944 
       
     1 -------------------------------------------------------------------
 
       
     2 Sun Dec 13 18:18:58 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>
 
       
     3 
       
     4 - Mozilla Firefox 84.0
 
       
     5   * Firefox 84 is the final release to support Adobe Flash
 
       
     6   * WebRender is enabled by default when run on GNOME-based X11
 
       
     7     Linux desktops
 
       
     8   MFSA 2020-54 (bsc#1180039))
 
       
     9   * CVE-2020-16042 (bmo#1679003)
 
       
    10     Operations on a BigInt could have caused uninitialized memory
 
       
    11     to be exposed
 
       
    12   * CVE-2020-26971 (bmo#1663466)
 
       
    13     Heap buffer overflow in WebGL
 
       
    14   * CVE-2020-26972 (bmo#1671382)
 
       
    15     Use-After-Free in WebGL
 
       
    16   * CVE-2020-26973 (bmo#1680084)
 
       
    17     CSS Sanitizer performed incorrect sanitization
 
       
    18   * CVE-2020-26974 (bmo#1681022)
 
       
    19     Incorrect cast of StyleGenericFlexBasis resulted in a heap
 
       
    20     use-after-free
 
       
    21   * CVE-2020-26975 (bmo#1661071)
 
       
    22     Malicious applications on Android could have induced Firefox
 
       
    23     for Android into sending arbitrary attacker-specified headers
 
       
    24   * CVE-2020-26976 (bmo#1674343)
 
       
    25     HTTPS pages could have been intercepted by a registered
 
       
    26     service worker when they should not have been
 
       
    27   * CVE-2020-26977 (bmo#1676311)
 
       
    28     URL spoofing via unresponsive port in Firefox for Android
 
       
    29   * CVE-2020-26978 (bmo#1677047)
 
       
    30     Internal network hosts could have been probed by a malicious
 
       
    31     webpage
 
       
    32   * CVE-2020-26979 (bmo#1641287, bmo#1673299)
 
       
    33     When entering an address in the address or search bars, a
 
       
    34     website could have redirected the user before they were
 
       
    35     navigated to the intended url
 
       
    36   * CVE-2020-35111 (bmo#1657916)
 
       
    37     The proxy.onRequest API did not catch view-source URLs
 
       
    38   * CVE-2020-35112 (bmo#1661365)
 
       
    39     Opening an extension-less download may have inadvertently
 
       
    40     launched an executable instead
 
       
    41   * CVE-2020-35113 (bmo#1664831, bmo#1673589)
 
       
    42     Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6
 
       
    43   * CVE-2020-35114 (bmo#1607449, bmo#1640416, bmo#1656459,
 
       
    44     bmo#1669914, bmo#1673567)
 
       
    45     Memory safety bugs fixed in Firefox 84
 
       
    46 - requires
 
       
    47   NSS >= 3.59
 
       
    48   rust >= 1.44
 
       
    49   rust-cbindgen >= 0.15.0
 
       
    50 - remove revert-795c8762b16b.patch and replace with mozilla-pgo.patch
 
       
    51 
     1 -------------------------------------------------------------------
 
    52 -------------------------------------------------------------------
 
     2 Sat Nov 21 08:12:17 UTC 2020 - Kirill Kirillov <kkirill@opensuse.org>
 
    53 Sat Nov 21 08:12:17 UTC 2020 - Kirill Kirillov <kkirill@opensuse.org>
 
     3 
    54 
     4 - Add/Enable GNOME search provider
 
    55 - Add/Enable GNOME search provider
 
     5 
    56
mozilla