# HG changeset patch # User Wolfgang Rosenauer # Date 1693124600 -7200 # Node ID 7612b8d8c46fda08ce8ea2031d2ffeae2e8b093c # Parent 37e065158be7f4f989e33ab9b3738492ad8f3371 116.0.3 diff -r 37e065158be7 -r 7612b8d8c46f MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Fri Aug 04 12:30:24 2023 +0200 +++ b/MozillaFirefox/MozillaFirefox.changes Sun Aug 27 10:23:20 2023 +0200 @@ -1,7 +1,95 @@ ------------------------------------------------------------------- +Thu Aug 17 18:20:18 UTC 2023 - Andreas Stieger + +- Mozilla Firefox 116.0.3 + * Fixed an issue for OPFS users that broke access to files that + were locally cached in a previous version + (bmo#1847989, bmo#1847619) + * Fixed an issue that was breaking screensharing for some users + on Wayland (bmo#1841851) + * Fixed an issue where a fullscreen notification was persistently + being shown to a user, even after disabling it (bmo#1847901) + * Fixed an issue where Firefox would hang when doing a Google + search (bmo#1847066) + +------------------------------------------------------------------- +Tue Aug 15 09:51:15 UTC 2023 - Adam Majer + +- After further testing on memory consumption during linking, it's + safe to remove most of the memory reducing options for ix86 linker. + A combination of these actually resulted in the OOM condition. + It's even possible to add basic debugging info while keeping + linker memory consumption at about 2GB + +------------------------------------------------------------------- +Thu Aug 10 16:32:02 UTC 2023 - Andreas Stieger + +- Mozilla Firefox 116.0.2 + * fixes for other platforms + +------------------------------------------------------------------- +Wed Aug 9 09:52:36 UTC 2023 - Adam Majer + +- Workarold ld bug causing OOM when linking on 32-bit +- Remove -j1 limit on x86. The build runs on 64-bit kernel with a + 32-bit userland. This means there is plenty of memory available + but userland is limited to just under 4GB per process. + +------------------------------------------------------------------- +Sat Aug 5 17:46:22 UTC 2023 - Andreas Stieger + +- Mozilla Firefox 116.0.1 + * fixes for other platforms + +------------------------------------------------------------------- +Sat Aug 5 10:04:18 UTC 2023 - Andreas Schwab + +- ship vaapitest binary for supported archs + +------------------------------------------------------------------- +Fri Aug 4 09:55:05 UTC 2023 - Wolfgang Rosenauer + +- re-enable ppc64le +- ship v4l2test binary for supported archs +- drop obsolete mozilla-bmo1775202.patch + +------------------------------------------------------------------- Sun Jul 30 19:55:49 UTC 2023 - Wolfgang Rosenauer - Mozilla Firefox 116.0 + * https://www.mozilla.org/en-US/firefox/116.0/releasenotes/ + MFSA 2023-29 (bsc#1213746) + * CVE-2023-4045 (bmo#1833876) + Offscreen Canvas could have bypassed cross-origin restrictions + * CVE-2023-4046 (bmo#1837686) + Incorrect value used during WASM compilation + * CVE-2023-4047 (bmo#1839073) + Potential permissions request bypass via clickjacking + * CVE-2023-4048 (bmo#1841368) + Crash in DOMParser due to out-of-memory conditions + * CVE-2023-4049 (bmo#1842658) + Fix potential race conditions when releasing platform objects + * CVE-2023-4050 (bmo#1843038) + Stack buffer overflow in StorageManager + * CVE-2023-4051 (bmo#1821884) + Full screen notification obscured by file open dialog + * CVE-2023-4052 (bmo#1824420) + File deletion and privilege escalation through Firefox uninstaller + * CVE-2023-4053 (bmo#1839079) + Full screen notification obscured by external program + * CVE-2023-4054 (bmo#1840777) + Lack of warning when opening appref-ms files + * CVE-2023-4055 (bmo#1782561) + Cookie jar overflow caused unexpected cookie jar state + * CVE-2023-4056 (bmo#1820587, bmo#1824634, bmo#1839235, + bmo#1842325, bmo#1843847) + Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, + Firefox ESR 102.14, Thunderbird 115.1, and Thunderbird 102.14 + * CVE-2023-4057 (bmo#1841682) + Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, + and Thunderbird 115.1 + * CVE-2023-4058 (bmo#1819160, bmo#1828024) + Memory safety bugs fixed in Firefox 116 - require NSS 3.91 - remove obsolete mozilla-fix-top-level-asm.patch - re-enable LTO diff -r 37e065158be7 -r 7612b8d8c46f MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Fri Aug 04 12:30:24 2023 +0200 +++ b/MozillaFirefox/MozillaFirefox.spec Sun Aug 27 10:23:20 2023 +0200 @@ -29,8 +29,8 @@ # major 69 # mainver %%major.99 %define major 116 -%define mainver %major.0 -%define orig_version 116.0 +%define mainver %major.0.3 +%define orig_version 116.0.3 %define orig_suffix %{nil} %define update_channel release %define branding 1 @@ -61,7 +61,7 @@ %{expand:%%global optflags %(echo "%optflags"|sed -e s/i586/i686/) -march=i686 -mtune=generic -msse2} %endif %endif -#%%{expand:%%global optflags %(echo "%optflags"|sed -e s/-flto=auto//) } +%{expand:%%global optflags %(echo "%optflags"|sed -e s/-flto=auto//) } # general build definitions %define progname firefox @@ -97,7 +97,7 @@ BuildRequires: dejavu-fonts BuildRequires: fdupes BuildRequires: memory-constraints -%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150500 +%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150600 BuildRequires: gcc12 BuildRequires: gcc12-c++ %else @@ -114,7 +114,7 @@ BuildRequires: libproxy-devel BuildRequires: makeinfo BuildRequires: mozilla-nspr-devel >= 4.35 -BuildRequires: mozilla-nss-devel >= 3.90 +BuildRequires: mozilla-nss-devel >= 3.91 BuildRequires: nasm >= 2.14 BuildRequires: nodejs >= 12.22.12 %if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000 @@ -124,7 +124,7 @@ BuildRequires: python39-curses BuildRequires: python39-devel %else -%if 0%{?sle_version} >= 150000 && 0%{?sle_version} <= 150500 +%if 0%{?sle_version} >= 150000 && 0%{?sle_version} <= 150600 BuildRequires: python39 BuildRequires: python39-curses BuildRequires: python39-devel @@ -219,7 +219,6 @@ Patch10: mozilla-bmo1504834-part1.patch Patch11: mozilla-bmo1504834-part3.patch Patch12: mozilla-bmo1512162.patch -#Patch13: mozilla-fix-top-level-asm.patch Patch14: mozilla-bmo849632.patch Patch15: mozilla-bmo998749.patch Patch17: mozilla-libavcodec58_91.patch @@ -228,8 +227,7 @@ Patch20: one_swizzle_to_rule_them_all.patch Patch21: svg-rendering.patch Patch22: mozilla-partial-revert-1768632.patch -Patch23: mozilla-bmo1775202.patch -Patch24: mozilla-rust-disable-future-incompat.patch +Patch23: mozilla-rust-disable-future-incompat.patch # Firefox/browser Patch101: firefox-kde.patch Patch102: firefox-branded-icons.patch @@ -248,7 +246,7 @@ %if 0%{?devpkg} == 0 Obsoletes: %{name}-devel < %{version} %endif -ExcludeArch: armv6l armv6hl ppc ppc64 ppc64le +ExcludeArch: armv6l armv6hl ppc ppc64 %description Mozilla Firefox is a standalone web browser, designed for standards @@ -375,29 +373,26 @@ export MOZ_TELEMETRY_REPORTING=1 export MACH_BUILD_PYTHON_NATIVE_PACKAGE_SOURCE=system export CFLAGS="%{optflags}" -%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150500 +%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150600 export CC=gcc-12 export CXX=g++-12 %else %if 0%{?clang_build} == 0 export CC=gcc export CXX=g++ -%if 0%{?gcc_version:%{gcc_version}} >= 12 -export CFLAGS="\$CFLAGS -fimplicit-constexpr" -%endif %endif %endif %ifarch %arm %ix86 +### NOTE: these sections are not required anymore. Alson --no-keep-memory + -Wl,-z,pack-relative-relocs causes +### ld to go OOM (https://sourceware.org/bugzilla/show_bug.cgi?id=30756) # Limit RAM usage during link -export LDFLAGS="\$LDFLAGS -Wl,--no-keep-memory -Wl,--reduce-memory-overheads" +# export LDFLAGS="\$LDFLAGS -Wl,--no-keep-memory -Wl,--reduce-memory-overheads -Wl,--no-map-whole-files -Wl,--hash-size=31" +# # A lie to prevent -Wl,--gc-sections being set which requires more memory than 32bit can offer -export GC_SECTIONS_BREAKS_DEBUG_RANGES=yes +#export GC_SECTIONS_BREAKS_DEBUG_RANGES=yes %endif export LDFLAGS="\$LDFLAGS -fPIC -Wl,-z,relro,-z,now" %ifarch ppc64 ppc64le -%if 0%{?clang_build} == 0 -#export CFLAGS="\$CFLAGS -mminimal-toc" -%endif %endif %ifarch %ix86 # Not enough memory on 32-bit systems, reduce debug info. @@ -434,15 +429,13 @@ %ifarch %ix86 %arm ac_add_options --disable-debug-symbols %else -ac_add_options --enable-debug-symbols=-g1 +ac_add_options --enable-debug-symbols=-g0 %endif ac_add_options --disable-install-strip -# building with elf-hack started to fail everywhere with FF73 -#%%if 0%%{?suse_version} > 1549 -%ifarch %arm %ix86 x86_64 -ac_add_options --disable-elf-hack +%ifarch %ix86 %arm +# OOM on 32-bit when ld passed -Wl,-z,pack-relative-relocs +# ac_add_options --enable-elf-hack %endif -#%%endif ac_add_options --with-system-nspr ac_add_options --with-system-nss %if 0%{useccache} != 0 @@ -537,11 +530,7 @@ %endif EOF -%ifarch %ix86 -%define njobs 1 -%else %define njobs 0%{?jobs:%jobs} -%endif mkdir -p $RPM_BUILD_DIR/langpacks_artifacts/ sed -r '/^(ja-JP-mac|ga-IE|en-US|)$/d;s/ .*$//' $RPM_BUILD_DIR/%{srcname}-%{orig_version}/browser/locales/shipped-locales \ | xargs -n 1 %{?njobs:-P %njobs} -I {} /bin/sh -c ' @@ -727,8 +716,13 @@ %{progdir}/*.so %{progdir}/glxtest %if 0%{wayland_supported} +%ifarch %{arm} aarch64 %{ix86} x86_64 %{progdir}/vaapitest %endif +%endif +%ifarch aarch64 riscv64 %arm +%{progdir}/v4l2test +%endif %{progdir}/omni.ja %{progdir}/fonts/ %{progdir}/pingsender diff -r 37e065158be7 -r 7612b8d8c46f MozillaFirefox/tar_stamps --- a/MozillaFirefox/tar_stamps Fri Aug 04 12:30:24 2023 +0200 +++ b/MozillaFirefox/tar_stamps Sun Aug 27 10:23:20 2023 +0200 @@ -1,10 +1,10 @@ PRODUCT="firefox" CHANNEL="release" -VERSION="116.0" +VERSION="116.0.3" VERSION_SUFFIX="" -PREV_VERSION="115.0.3" +PREV_VERSION="116.0.2" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release" -RELEASE_TAG="e98f6440351172ce5ccd0e3c690025d9e7cb35c3" -RELEASE_TIMESTAMP="20230727152340" +RELEASE_TAG="183063cc6efa429f4f184aff169e1f9dad68cbfc" +RELEASE_TIMESTAMP="20230815173142"