|
1 ------------------------------------------------------------------- |
|
2 Sun Jan 24 11:53:58 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
3 |
|
4 - Mozilla Firefox 85.0 |
|
5 * Adobe Flash is completely history |
|
6 * supercookie protection |
|
7 * new bookmark handling and features |
|
8 MFSA 2021-03 (bsc#1181414) |
|
9 * CVE-2021-23953 (bmo#1683940) |
|
10 Cross-origin information leakage via redirected PDF requests |
|
11 * CVE-2021-23954 (bmo#1684020) |
|
12 Type confusion when using logical assignment operators in |
|
13 JavaScript switch statements |
|
14 * CVE-2021-23955 (bmo#1684837) |
|
15 Clickjacking across tabs through misusing requestPointerLock |
|
16 * CVE-2021-23956 (bmo#1338637) |
|
17 File picker dialog could have been used to disclose a |
|
18 complete directory |
|
19 * CVE-2021-23957 (bmo#1584582) |
|
20 Iframe sandbox could have been bypassed on Android via the |
|
21 intent URL scheme |
|
22 * CVE-2021-23958 (bmo#1642747) |
|
23 Screen sharing permission leaked across tabs |
|
24 * CVE-2021-23959 (bmo#1659035) |
|
25 Cross-Site Scripting in error pages on Firefox for Android |
|
26 * CVE-2021-23960 (bmo#1675755) |
|
27 Use-after-poison for incorrectly redeclared JavaScript |
|
28 variables during GC |
|
29 * CVE-2021-23961 (bmo#1677940) |
|
30 More internal network hosts could have been probed by a |
|
31 malicious webpage |
|
32 * CVE-2021-23962 (bmo#1677194) |
|
33 Use-after-poison in |
|
34 <code>nsTreeBodyFrame::RowCountChanged</code> |
|
35 * CVE-2021-23963 (bmo#1680793) |
|
36 Permission prompt inaccessible after asking for additional |
|
37 permissions |
|
38 * CVE-2021-23964 (bmo#1662507, bmo#1666285, bmo#1673526, bmo#1674278, |
|
39 bmo#1674835, bmo#1675097, bmo#1675844, bmo#1675868, bmo#1677590, |
|
40 bmo#1677888, bmo#1680410, bmo#1681268, bmo#1682068, bmo#1682938, |
|
41 bmo#1683736, bmo#1685260, bmo#1685925) |
|
42 Memory safety bugs fixed in Firefox 85 and Firefox ESR 78.7 |
|
43 * CVE-2021-23965 (bmo#1670378, bmo#1673555, bmo#1676812, bmo#1678582, |
|
44 bmo#1684497) |
|
45 Memory safety bugs fixed in Firefox 85 |
|
46 - requires NSS 3.60.1 |
|
47 - requires rust 1.47 |
|
48 - remove obsolete mozilla-pipewire-0-3.patch |
|
49 |
1 ------------------------------------------------------------------- |
50 ------------------------------------------------------------------- |
2 Mon Jan 11 18:02:01 UTC 2021 - Matthias Mailänder <mailaender@opensuse.org> |
51 Mon Jan 11 18:02:01 UTC 2021 - Matthias Mailänder <mailaender@opensuse.org> |
3 |
52 |
4 - Fix AppStream screenshot links |
53 - Fix AppStream screenshot links |
5 |
54 |