Mercurial Mercurial > hg > mozilla / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
MozillaFirefox/MozillaFirefox.changes
branchfirefox76
changeset 1126 6b7cd9ae087d
parent 1125 3fd9346c90a6
child 1127 d5b284f833d5
equal deleted inserted replaced
1125:3fd9346c90a6 1126:6b7cd9ae087d 
       
     1 -------------------------------------------------------------------
 
       
     2 Wed May 13 12:21:13 UTC 2020 - Michel Normand <normand@linux.vnet.ibm.com>
 
       
     3 
       
     4 - change again _constraints for ppc64le use <physicalmemory>
 
       
     5   and increase limit_build in spec file to reduce max_jobs.
 
       
     6 
       
     7 -------------------------------------------------------------------
 
       
     8 Sat May  9 11:45:39 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>
 
       
     9 
       
    10 - Mozilla Firefox 76.0.1
 
       
    11   * Fixed a bug causing some add-ons such as Amazon Assistant to see
 
       
    12     multiple onConnect events, impairing functionality (bmo#1635637)
 
       
    13 
     1 -------------------------------------------------------------------
 
    14 -------------------------------------------------------------------
 
     2 Fri May  1 11:59:58 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>
 
    15 Fri May  1 11:59:58 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>
 
     3 
    16 
     4 - Mozilla Firefox 76.0
 
    17 - Mozilla Firefox 76.0
 
       
    18   * Lockwise improvements
 
       
    19   * Improvements in Picture-in-Picture feature
 
       
    20   * Support Audio Worklets
 
       
    21   MFSA-2020-16 (bsc#1171186)
 
       
    22   * CVE-2020-12387 (bmo#1545345)
 
       
    23     Use-after-free during worker shutdown
 
       
    24   * CVE-2020-12388 (bmo#1618911)
 
       
    25     Sandbox escape with improperly guarded Access Tokens
 
       
    26   * CVE-2020-12389 (bmo#1554110)
 
       
    27     Sandbox escape with improperly separated process types
 
       
    28   * CVE-2020-6831 (bmo#1632241)
 
       
    29     Buffer overflow in SCTP chunk input validation
 
       
    30   * CVE-2020-12390 (bmo#1141959)
 
       
    31     Incorrect serialization of nsIPrincipal.origin for IPv6 addresses
 
       
    32   * CVE-2020-12391 (bmo#1457100)
 
       
    33     Content-Security-Policy bypass using object elements
 
       
    34   * CVE-2020-12392 (bmo#1614468)
 
       
    35     Arbitrary local file access with 'Copy as cURL'
 
       
    36   * CVE-2020-12393 (bmo#1615471)
 
       
    37     Devtools' 'Copy as cURL' feature did not fully escape
 
       
    38     website-controlled data, potentially leading to command injection
 
       
    39   * CVE-2020-12394 (bmo#1628288)
 
       
    40     URL spoofing in location bar when unfocussed
 
       
    41   * CVE-2020-12395 (bmo#1595886, bmo#1611482, bmo#1614704, bmo#1624098,
 
       
    42     bmo#1625749, bmo#1626382, bmo#1628076, bmo#1631508)
 
       
    43     Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8
 
       
    44   * CVE-2020-12396 (bmo#1339601, bmo#1611938, bmo#1620488,
 
       
    45     bmo#1622291, bmo#1627644)
 
       
    46     Memory safety bugs fixed in Firefox 76
 
     5 - requires
 
    47 - requires
 
     6   * NSS >= 3.51.1
 
    48   * NSS >= 3.51.1
 
     7   * nasm >= 2.14
 
    49   * nasm >= 2.14
 
     8 - removed obsolete patch mozilla-bmo1622013.patch
 
    50 - removed obsolete patch mozilla-bmo1622013.patch
 
     9 - fix URI creation for KDE file selector integration (boo#1160331)
 
    51 - fix URI creation for KDE file selector integration (boo#1160331)
mozilla