|
1 ------------------------------------------------------------------- |
|
2 Sun Dec 13 18:18:58 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
3 |
|
4 - Mozilla Firefox 84.0 |
|
5 * Firefox 84 is the final release to support Adobe Flash |
|
6 * WebRender is enabled by default when run on GNOME-based X11 |
|
7 Linux desktops |
|
8 MFSA 2020-54 (bsc#1180039)) |
|
9 * CVE-2020-16042 (bmo#1679003) |
|
10 Operations on a BigInt could have caused uninitialized memory |
|
11 to be exposed |
|
12 * CVE-2020-26971 (bmo#1663466) |
|
13 Heap buffer overflow in WebGL |
|
14 * CVE-2020-26972 (bmo#1671382) |
|
15 Use-After-Free in WebGL |
|
16 * CVE-2020-26973 (bmo#1680084) |
|
17 CSS Sanitizer performed incorrect sanitization |
|
18 * CVE-2020-26974 (bmo#1681022) |
|
19 Incorrect cast of StyleGenericFlexBasis resulted in a heap |
|
20 use-after-free |
|
21 * CVE-2020-26975 (bmo#1661071) |
|
22 Malicious applications on Android could have induced Firefox |
|
23 for Android into sending arbitrary attacker-specified headers |
|
24 * CVE-2020-26976 (bmo#1674343) |
|
25 HTTPS pages could have been intercepted by a registered |
|
26 service worker when they should not have been |
|
27 * CVE-2020-26977 (bmo#1676311) |
|
28 URL spoofing via unresponsive port in Firefox for Android |
|
29 * CVE-2020-26978 (bmo#1677047) |
|
30 Internal network hosts could have been probed by a malicious |
|
31 webpage |
|
32 * CVE-2020-26979 (bmo#1641287, bmo#1673299) |
|
33 When entering an address in the address or search bars, a |
|
34 website could have redirected the user before they were |
|
35 navigated to the intended url |
|
36 * CVE-2020-35111 (bmo#1657916) |
|
37 The proxy.onRequest API did not catch view-source URLs |
|
38 * CVE-2020-35112 (bmo#1661365) |
|
39 Opening an extension-less download may have inadvertently |
|
40 launched an executable instead |
|
41 * CVE-2020-35113 (bmo#1664831, bmo#1673589) |
|
42 Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6 |
|
43 * CVE-2020-35114 (bmo#1607449, bmo#1640416, bmo#1656459, |
|
44 bmo#1669914, bmo#1673567) |
|
45 Memory safety bugs fixed in Firefox 84 |
|
46 - requires |
|
47 NSS >= 3.59 |
|
48 rust >= 1.44 |
|
49 rust-cbindgen >= 0.15.0 |
|
50 - remove revert-795c8762b16b.patch and replace with mozilla-pgo.patch |
|
51 |
1 ------------------------------------------------------------------- |
52 ------------------------------------------------------------------- |
2 Sat Nov 21 08:12:17 UTC 2020 - Kirill Kirillov <kkirill@opensuse.org> |
53 Sat Nov 21 08:12:17 UTC 2020 - Kirill Kirillov <kkirill@opensuse.org> |
3 |
54 |
4 - Add/Enable GNOME search provider |
55 - Add/Enable GNOME search provider |
5 |
56 |