1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Tue Nov 19 09:30:19 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
2 Mon Dec 2 08:24:05 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
3 |
3 |
4 - Mozilla Firefox 71.0b11 |
4 - Mozilla Firefox 71.0 |
|
5 * Improvements to Lockwise, our integrated password manager |
|
6 * More information about Enhanced Tracking Protection in action |
|
7 * Native MP3 decoding on Windows, Linux, and macOS |
|
8 * Configuration page (about:config) reimplemented in HTML |
|
9 * New kiosk mode functionality, which allows maximum screen space |
|
10 for customer-facing displays |
|
11 MFSA 2019-36 |
|
12 * CVE-2019-11756 (bmo#1508776) |
|
13 Use-after-free of SFTKSession object |
|
14 * CVE-2019-17008 (bmo#1546331) |
|
15 Use-after-free in worker destruction |
|
16 * CVE-2019-13722 (bmo#1580156) (Windows only) |
|
17 Stack corruption due to incorrect number of arguments in WebRTC code |
|
18 * CVE-2019-17014 (bmo#1322864) |
|
19 Dragging and dropping a cross-origin resource, incorrectly loaded |
|
20 as an image, could result in information disclosure |
|
21 * CVE-2019-17010 (bmo#1581084) |
|
22 Use-after-free when performing device orientation checks |
|
23 * CVE-2019-17005 (bmo#1584170) |
|
24 Buffer overflow in plain text serializer |
|
25 * CVE-2019-17011 (bmo#1591334) |
|
26 Use-after-free when retrieving a document in antitracking |
|
27 * CVE-2019-17012 (bmo#1449736, bmo#1533957, bmo#1560667, bmo#1567209 |
|
28 bmo#1580288, bmo#1585760, bmo#1592502) |
|
29 Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3 |
|
30 * CVE-2019-17013 (bmo#1298509, bmo#1472328, bmo#1577439, bmo#1577937 |
|
31 bmo#1580320, bmo#1584195, bmo#1585106, bmo#1586293, bmo#1593865 |
|
32 bmo#1594181) |
|
33 Memory safety bugs fixed in Firefox 71 |
5 - requires |
34 - requires |
6 NSPR >= 4.23 |
35 NSPR >= 4.23 |
7 NSS >= 3.47.1 |
36 NSS >= 3.47.1 |
8 rust/cargo >= 1.37 |
37 rust/cargo >= 1.37 |
9 - reactivate webrtc for platforms where it was disabled |
38 - reactivate webrtc for platforms where it was disabled |
10 - updated create-tar.sh to cover buildid and origin repo information |
39 - updated create-tar.sh to cover buildid and origin repo information |
11 -> removed obsolete source-stamp.txt |
40 -> removed obsolete source-stamp.txt |
12 - removed obsolete patches |
41 - removed obsolete patches |
13 mozilla-bmo1511604.patch |
42 mozilla-bmo1511604.patch |
14 mozilla-openaes-decl.patch |
43 mozilla-openaes-decl.patch |
|
44 - changed locale building procedure |
|
45 * removed obsolete compare-locales.tar.xz |
|
46 - added mozilla-gcc9-lto.patch to fix LTO builds with gcc9 but also |
|
47 switched from gcc to clang for now since gcc builds are broken |
|
48 in some ways (bmo#1601707, boo#1158466) |
|
49 - added mozilla-bmo849632.patch to fix big endian issues in skia |
|
50 used for WebGL |
15 |
51 |
16 ------------------------------------------------------------------- |
52 ------------------------------------------------------------------- |
17 Fri Nov 1 14:16:39 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
53 Fri Nov 1 14:16:39 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org> |
18 |
54 |
19 - Mozilla Firefox 70.0.1 |
55 - Mozilla Firefox 70.0.1 |