2 Wed Mar 17 09:18:35 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org>

     2 Sat Mar 27 10:40:46 UTC 2021 - Manfred Hollstein <manfred.h@gmx.net>

     3 

     4 - Switch to clang_build globally; just on TW/x86_64 it does not work

     5   due to unreolved externals `__rust_probestack' - disable clang_build

     6   then.

     7 - useccache: Add conditionals to enable/disable ccache.

     8 

     9 -------------------------------------------------------------------

    10 Tue Mar 23 16:42:19 UTC 2021 - Wolfgang Rosenauer <wr@rosenauer.org>

     5 - requires NSS 3.62

    13   * requires NSS 3.62

     6 - removed obsolete BigEndian ICU build workaround

    14   * removed obsolete BigEndian ICU build workaround

    15   * rebased patches

    16   MFSA 2021-10 (bsc#1183942)

    17   * CVE-2021-23981 (bmo#1692832)

    18     Texture upload into an unbound backing buffer resulted in an

    19     out-of-bound read

    20   * CVE-2021-23982 (bmo#1677046)

    21     Internal network hosts could have been probed by a malicious

    22     webpage

    23   * CVE-2021-23983 (bmo#1692684)

    24     Transitions for invalid ::marker properties resulted in memory

    25     corruption

    26   * CVE-2021-23984 (bmo#1693664)

    27     Malicious extensions could have spoofed popup information

    28   * CVE-2021-23985 (bmo#1659129)

    29     Devtools remote debugging feature could have been enabled

    30     without indication to the user

    31   * CVE-2021-23986 (bmo#1692623)

    32     A malicious extension could have performed credential-less

    33     same origin policy violations

    34   * CVE-2021-23987 (bmo#1513519, bmo#1683439, bmo#1690169,

    35     bmo#1690718)

    36     Memory safety bugs fixed in Firefox 87 and Firefox ESR 78.9

    37   * CVE-2021-23988 (bmo#1684994, bmo#1686653)

    38     Memory safety bugs fixed in Firefox 87