# HG changeset patch # User Wolfgang Rosenauer # Date 1590563602 -7200 # Node ID 6b7cd9ae087dc25920d3539c2ac55eecfc8a55d2 # Parent 3fd9346c90a6f6d01822378af915c68ead0ee13e 76.0.1 + build changes diff -r 3fd9346c90a6 -r 6b7cd9ae087d MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Sat May 02 15:26:20 2020 +0200 +++ b/MozillaFirefox/MozillaFirefox.changes Wed May 27 09:13:22 2020 +0200 @@ -1,7 +1,49 @@ ------------------------------------------------------------------- +Wed May 13 12:21:13 UTC 2020 - Michel Normand + +- change again _constraints for ppc64le use + and increase limit_build in spec file to reduce max_jobs. + +------------------------------------------------------------------- +Sat May 9 11:45:39 UTC 2020 - Wolfgang Rosenauer + +- Mozilla Firefox 76.0.1 + * Fixed a bug causing some add-ons such as Amazon Assistant to see + multiple onConnect events, impairing functionality (bmo#1635637) + +------------------------------------------------------------------- Fri May 1 11:59:58 UTC 2020 - Wolfgang Rosenauer - Mozilla Firefox 76.0 + * Lockwise improvements + * Improvements in Picture-in-Picture feature + * Support Audio Worklets + MFSA-2020-16 (bsc#1171186) + * CVE-2020-12387 (bmo#1545345) + Use-after-free during worker shutdown + * CVE-2020-12388 (bmo#1618911) + Sandbox escape with improperly guarded Access Tokens + * CVE-2020-12389 (bmo#1554110) + Sandbox escape with improperly separated process types + * CVE-2020-6831 (bmo#1632241) + Buffer overflow in SCTP chunk input validation + * CVE-2020-12390 (bmo#1141959) + Incorrect serialization of nsIPrincipal.origin for IPv6 addresses + * CVE-2020-12391 (bmo#1457100) + Content-Security-Policy bypass using object elements + * CVE-2020-12392 (bmo#1614468) + Arbitrary local file access with 'Copy as cURL' + * CVE-2020-12393 (bmo#1615471) + Devtools' 'Copy as cURL' feature did not fully escape + website-controlled data, potentially leading to command injection + * CVE-2020-12394 (bmo#1628288) + URL spoofing in location bar when unfocussed + * CVE-2020-12395 (bmo#1595886, bmo#1611482, bmo#1614704, bmo#1624098, + bmo#1625749, bmo#1626382, bmo#1628076, bmo#1631508) + Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8 + * CVE-2020-12396 (bmo#1339601, bmo#1611938, bmo#1620488, + bmo#1622291, bmo#1627644) + Memory safety bugs fixed in Firefox 76 - requires * NSS >= 3.51.1 * nasm >= 2.14 diff -r 3fd9346c90a6 -r 6b7cd9ae087d MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Sat May 02 15:26:20 2020 +0200 +++ b/MozillaFirefox/MozillaFirefox.spec Wed May 27 09:13:22 2020 +0200 @@ -19,8 +19,8 @@ # changed with every update %define major 76 -%define mainver %major.0 -%define orig_version 76.0 +%define mainver %major.0.1 +%define orig_version 76.0.1 %define orig_suffix %{nil} %define update_channel release %define branding 1 @@ -382,7 +382,11 @@ echo "" cat << EOF %else +%ifarch ppc64 ppc64le +%limit_build -m 2500 +%else %limit_build -m 2000 +%endif cat << EOF > $MOZCONFIG %endif mk_add_options MOZILLA_OFFICIAL=1 diff -r 3fd9346c90a6 -r 6b7cd9ae087d MozillaFirefox/_constraints --- a/MozillaFirefox/_constraints Sat May 02 15:26:20 2020 +0200 +++ b/MozillaFirefox/_constraints Wed May 27 09:13:22 2020 +0200 @@ -50,9 +50,9 @@ 25 - + 10 - + diff -r 3fd9346c90a6 -r 6b7cd9ae087d MozillaFirefox/tar_stamps --- a/MozillaFirefox/tar_stamps Sat May 02 15:26:20 2020 +0200 +++ b/MozillaFirefox/tar_stamps Wed May 27 09:13:22 2020 +0200 @@ -1,11 +1,11 @@ PRODUCT="firefox" CHANNEL="release" -VERSION="76.0" +VERSION="76.0.1" VERSION_SUFFIX="" PREV_VERSION="76.0" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release" -RELEASE_TAG="cf326ad0bb298ee24b1abd9b1cb6513af4fa04ba" -RELEASE_TIMESTAMP="20200429185419" +RELEASE_TAG="e2de5f11bc0afd9a3024d32b83cb9f0ada95717a" +RELEASE_TIMESTAMP="20200507114007"