Mercurial Mercurial > hg > mozilla / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
MozillaFirefox/MozillaFirefox.changes
branchfirefox99
changeset 1173 56ecd2ae6e61
parent 1172 7bdeb580be51
child 1174 90e3d0cf8567 
--- a/MozillaFirefox/MozillaFirefox.changes	Mon Apr 04 10:22:27 2022 +0200
+++ b/MozillaFirefox/MozillaFirefox.changes	Sun May 01 18:18:56 2022 +0200
@@ -1,4 +1,60 @@
 -------------------------------------------------------------------
+Tue Apr 12 19:30:30 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
+
+- Mozilla Firefox 99.0.1
+  * Fixed an issue with text rendering in Bengali (bmo#1763368)
+  * Fixed a selection issue in the Download panel with drag and
+    drop (bmo#1762723)
+  * Fixed: Fixed an issue preventing Zoom gallery mode for users
+    who go to zoom.us URLs instead of subdomain.zoom.us URLs
+    (bmo#1763801)
+
+-------------------------------------------------------------------
+Mon Apr  4 07:34:36 UTC 2022 - Wolfgang Rosenauer <wr@rosenauer.org>
+
+- Mozilla Firefox 99.0
+  * You can now toggle Narrate in ReaderMode with the keyboard
+    shortcut "n."
+  * You can find added support for search—with or without
+    diacritics—in the PDF viewer.
+  * The Linux sandbox has been strengthened: processes exposed to web
+    content no longer have access to the X Window system (X11).
+  * Firefox now supports credit card autofill and capture in
+    Germany and France.
+  MFSA 2022-13 (bsc#1197903)
+  * CVE-2022-1097 (bmo#1745667)
+    Use-after-free in NSSToken objects
+  * CVE-2022-28281 (bmo#1755621)
+    Out of bounds write due to unexpected WebAuthN Extensions
+  * CVE-2022-28282 (bmo#1751609)
+    Use-after-free in DocumentL10n::TranslateDocument
+  * CVE-2022-28283 (bmo#1754066)
+    Missing security checks for fetching sourceMapURL
+  * CVE-2022-28284 (bmo#1754522)
+    Script could be executed via svg's use element
+  * CVE-2022-28285 (bmo#1756957)
+    Incorrect AliasSet used in JIT Codegen
+  * CVE-2022-28286 (bmo#1735265)
+    iframe contents could be rendered outside the border
+  * CVE-2022-28287 (bmo#1741515)
+    Text Selection could crash Firefox
+  * CVE-2022-24713 (bmo#1758509)
+    Denial of Service via complex regular expressions
+  * CVE-2022-28289 (bmo#1663508, bmo#1744525, bmo#1753508,
+    bmo#1757476, bmo#1757805, bmo#1758549, bmo#1758776)
+    Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8
+  * CVE-2022-28288 (bmo#1746415, bmo#1746495, bmo#1746500,
+    bmo#1747282, bmo#1748759, bmo#1749056, bmo#1749786,
+    bmo#1751679, bmo#1752120, bmo#1756010, bmo#1756017,
+    bmo#1757213, bmo#1757258, bmo#1757427)
+    Memory safety bugs fixed in Firefox 99
+- requires NSS >= 3.76.1
+- remove obsolete patch
+  * mozilla-bmo1756347.patch
+  * mozilla-bmo1757571.patch
+- update create-tar.sh
+
+-------------------------------------------------------------------
 Thu Mar 24 21:49:57 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
 
 - MozillaFirefox 98.0.2:
@@ -28,7 +84,7 @@
 -------------------------------------------------------------------
 Thu Mar 17 14:52:39 UTC 2022 - Dirk Müller <dmueller@suse.com>
 
-- exclude slow cpus for building 
+- exclude slow cpus for building
 
 -------------------------------------------------------------------
 Thu Mar 17 09:18:01 UTC 2022 - Martin Sirringhaus <martin.sirringhaus@suse.com>
mozilla