|
1 ------------------------------------------------------------------- |
|
2 Wed Mar 17 09:18:35 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
3 |
|
4 - Mozilla Firefox 87.0 |
|
5 - requires NSS 3.62 |
|
6 - removed obsolete BigEndian ICU build workaround |
|
7 |
|
8 ------------------------------------------------------------------- |
|
9 Tue Mar 16 14:26:35 UTC 2021 - Martin Liška <mliska@suse.cz> |
|
10 |
|
11 - Set memory limits for DWZ to 4x. |
|
12 |
|
13 ------------------------------------------------------------------- |
|
14 Sat Mar 13 08:23:06 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de> |
|
15 |
|
16 - Mozilla Firefox 86.0.1 |
|
17 * Fixed: Fixed an issue on Apple Silicon machines that caused |
|
18 Firefox to be unresponsive after system sleep (bmo#1682713) |
|
19 * Fixed: Fixed an issue causing windows to gain or lose focus |
|
20 unexpectedly (bmo#1694927) |
|
21 * Fixed: Fixed truncation of date and time widgets due to |
|
22 incorrect width calculation (bmo#1695578) |
|
23 * Fixed: Fixed an issue causing unexpected behavior with |
|
24 extensions managing tab groups (bmo#1694699) |
|
25 * Fixed: Fixed a frequent Linux crash on browser launch |
|
26 (bmo#1694670) |
|
27 |
|
28 ------------------------------------------------------------------- |
|
29 Sun Feb 21 18:14:12 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
30 |
|
31 - Mozilla Firefox 86.0 |
|
32 * requires NSS >= 3.61 |
|
33 * requires rust-cbindgen >= 0.16.0 |
|
34 * Firefox now supports simultaneously watching multiple videos in |
|
35 Picture-in-Picture. |
|
36 * Total Cookie Protection to Strict Mode |
|
37 * https://www.mozilla.org/en-US/firefox/86.0/releasenotes |
|
38 MSFA 2021-07 (bsc#1182614) |
|
39 * CVE-2021-23969 (bmo#1542194) |
|
40 Content Security Policy violation report could have contained |
|
41 the destination of a redirect |
|
42 * CVE-2021-23970 (bmo#1681724) |
|
43 Multithreaded WASM triggered assertions validating separation |
|
44 of script domains |
|
45 * CVE-2021-23968 (bmo#1687342) |
|
46 Content Security Policy violation report could have contained |
|
47 the destination of a redirect |
|
48 * CVE-2021-23974 (bmo#1528997, bmo#1683627) |
|
49 noscript elements could have led to an HTML Sanitizer bypass |
|
50 * CVE-2021-23971 (bmo#1678545) |
|
51 A website's Referrer-Policy could have been be overridden, |
|
52 potentially resulting in the full URL being sent as a Referrer |
|
53 * CVE-2021-23976 (bmo#1684627) |
|
54 Local spoofing of web manifests for arbitrary pages in |
|
55 Firefox for Android |
|
56 * CVE-2021-23977 (bmo#1684761) |
|
57 Malicious application could read sensitive data from Firefox |
|
58 for Android's application directories |
|
59 * CVE-2021-23972 (bmo#1683536) |
|
60 HTTP Auth phishing warning was omitted when a redirect is |
|
61 cached |
|
62 * CVE-2021-23975 (bmo#1685145) |
|
63 about:memory Measure function caused an incorrect pointer |
|
64 operation |
|
65 * CVE-2021-23973 (bmo#1690976) |
|
66 MediaError message property could have leaked information |
|
67 about cross-origin resources |
|
68 * CVE-2021-23978 (bmo#1682928, bmo#1687391, bmo#1687597, bmo#786797) |
|
69 Memory safety bugs fixed in Firefox 86 and Firefox ESR 78.8 |
|
70 * CVE-2021-23979 (bmo#1663222, bmo#1666607, bmo#1672120, bmo#1678463, |
|
71 bmo#1678927, bmo#1679560, bmo#1681297, bmo#1681684, bmo#1683490, |
|
72 bmo#1684377, bmo#1684902) |
|
73 Memory safety bugs fixed in Firefox 86 |
|
74 - updated create-tar.sh (bsc#1182357) |
|
75 - removed obsolete mozilla-bmo1554971.patch |
|
76 - remove buildsymbols subpackage |
|
77 * we haven't done anything with it for years |
|
78 * mozilla is collecting those from our debuginfo packages |
|
79 * would require a local dump_syms tool |
|
80 |
|
81 ------------------------------------------------------------------- |
|
82 Wed Feb 17 18:40:41 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de> |
|
83 |
|
84 - Mozilla Firefox 85.0.2 |
|
85 * Fixed: Fixed a deadlock during startup (bmo#1679933) |
|
86 |
|
87 ------------------------------------------------------------------- |
|
88 Wed Feb 17 11:19:01 UTC 2021 - Michel Normand <normand@linux.vnet.ibm.com> |
|
89 |
|
90 - Use %limit_build macros for PowerPC to avoid oom build failure |
|
91 |
|
92 ------------------------------------------------------------------- |
|
93 Tue Feb 9 09:05:26 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de> |
|
94 |
|
95 - Mozilla Firefox 85.0.1 |
|
96 MFSA 2021-06 (bsc#1181848) |
|
97 * MOZ-2021-0001 (bmo#1676636) |
|
98 Buffer overflow in depth pitch calculations for compressed |
|
99 textures |
|
100 * Fixed: Avoid printing an extra blank page at the end of some |
|
101 documents (bmo#1689789). |
|
102 * Fixed: Fixed a browser crash in case of unexpected Cache API |
|
103 state (bmo#1684838). |
|
104 |
1 ------------------------------------------------------------------- |
105 ------------------------------------------------------------------- |
2 Sun Jan 24 11:53:58 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
106 Sun Jan 24 11:53:58 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org> |
3 |
107 |
4 - Mozilla Firefox 85.0 |
108 - Mozilla Firefox 85.0 |
5 * Adobe Flash is completely history |
109 * Adobe Flash is completely history |