1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Sat Aug 25 15:56:51 UTC 2018 - wr@rosenauer.org |
2 Sat Sep 22 09:03:53 UTC 2018 - astieger@suse.com |
3 |
3 |
4 - update to Firefox 62.0b20 |
4 - Mozilla Firefox 62.0.2: |
|
5 MFSA 2018-22 |
|
6 * CVE-2018-12385 (boo#1109363, bmo#1490585) |
|
7 Crash in TransportSecurityInfo due to cached data |
|
8 * Unvisited bookmarks can once again be autofilled in the address |
|
9 bar |
|
10 * Fix WebGL rendering issues |
|
11 * Fix fallback on startup when a language pack is missing |
|
12 * Avoid crash when sharing a profile with newer (as yet |
|
13 unreleased) versions of Firefox |
|
14 * Do not undo removal of search engines when using a language |
|
15 pack |
|
16 * Fixed rendering of some web sites |
|
17 * Restored compatibility with some sites using deprecated TLS |
|
18 settings |
|
19 - disable rust debug symbols to fix build on %ix86 |
|
20 |
|
21 ------------------------------------------------------------------- |
|
22 Mon Sep 3 10:47:43 UTC 2018 - wr@rosenauer.org |
|
23 |
|
24 - update to Firefox 62.0 |
|
25 * Firefox Home (the default New Tab) now allows users to display |
|
26 up to 4 rows of top sites, Pocket stories, and highlights |
|
27 * "Reopen in Container" tab menu option appears for users with |
|
28 Containers that lets them choose to reopen a tab in a different |
|
29 container |
|
30 * In advance of removing all trust for Symantec-issued certificates |
|
31 in Firefox 63, a preference was added that allows users to distrust |
|
32 certificates issued by Symantec. To use this preference, go to |
|
33 about:config in the address bar and set the preference |
|
34 "security.pki.distrust_ca_policy" to 2. |
|
35 * Support for CSS Shapes, allowing for richer web page layouts. |
|
36 This goes hand in hand with a brand new Shape Path Editor in the |
|
37 CSS inspector. |
|
38 * CSS Variable Fonts (OpenType Font Variations) support, which makes |
|
39 it possible to create beautiful typography with a single font file |
|
40 * Added Canadian English (en-CA) locale |
|
41 MFSA 2018-20 (bsc#1107343) |
|
42 * CVE-2018-12377 (bmo#1470260) |
|
43 Use-after-free in refresh driver timers |
|
44 * CVE-2018-12378 (bmo#1459383) |
|
45 Use-after-free in IndexedDB |
|
46 * CVE-2018-12379 (bmo#1473113) (updater is disabled for us) |
|
47 Out-of-bounds write with malicious MAR file |
|
48 * CVE-2017-16541 (bmo#1412081) |
|
49 Proxy bypass using automount and autofs |
|
50 * CVE-2018-12381 (bmo#1435319) |
|
51 Dragging and dropping Outlook email message results in page navigation |
|
52 * CVE-2018-12382 (bmo#1479311) (Android only) |
|
53 Addressbar spoofing with javascript URI on Firefox for Android |
|
54 * CVE-2018-12383 (bmo#1475775) |
|
55 Setting a master password post-Firefox 58 does not delete |
|
56 unencrypted previously stored passwords |
|
57 * CVE-2018-12375 |
|
58 Memory safety bugs fixed in Firefox 62 |
|
59 * CVE-2018-12376 |
|
60 Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2 |
5 - requires NSS >= 3.38 |
61 - requires NSS >= 3.38 |
6 - removed obsolete patches |
62 - removed obsolete patch |
7 mozilla-bmo1464766.patch |
63 mozilla-bmo1464766.patch |
8 |
64 |
9 ------------------------------------------------------------------- |
65 ------------------------------------------------------------------- |
10 Thu Aug 9 14:22:00 UTC 2018 - wr@rosenauer.org |
66 Thu Aug 9 14:22:00 UTC 2018 - wr@rosenauer.org |
11 |
67 |