# HG changeset patch # User Wolfgang Rosenauer # Date 1431688330 -7200 # Node ID e11af0d6cb48f89530c2e127f19079d7c39dde73 # Parent 0855c4ac479395bed5db2a7dd36c412eb7924c77 38.0.1 update import gcc5 patch diff -r 0855c4ac4793 -r e11af0d6cb48 MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Fri May 15 08:33:29 2015 +0200 +++ b/MozillaFirefox/MozillaFirefox.changes Fri May 15 13:12:10 2015 +0200 @@ -1,7 +1,54 @@ ------------------------------------------------------------------- +Fri May 15 10:40:19 UTC 2015 - normand@linux.vnet.ibm.com + +- add mozilla-add-glibcxx_use_cxx11_abi.patch grabbed from + https://bugzilla.mozilla.org/show_bug.cgi?id=1153109 + +------------------------------------------------------------------- +Fri May 15 07:37:46 UTC 2015 - wr@rosenauer.org + +- update to Firefox 38.0.1 + stability and regression fixes + * Systems with first generation NVidia Optimus graphics cards + may crash on start-up + * Users who import cookies from Google Chrome can end up with + broken websites + * Large animated images may fail to play and may stop other + images from loading + +------------------------------------------------------------------- Sun May 10 07:07:49 UTC 2015 - wr@rosenauer.org -- update to Firefox 38.0 (bnc#) +- update to Firefox 38.0 (bnc#930622) + * New tab-based preferences + * Ruby annotation support + * more info: https://www.mozilla.org/en-US/firefox/38.0/releasenotes/ + security fixes: + * MFSA 2015-46/CVE-2015-2708/CVE-2015-2709 + Miscellaneous memory safety hazards + * MFSA 2015-47/VE-2015-0797 (bmo#1080995) + Buffer overflow parsing H.264 video with Linux Gstreamer + * MFSA 2015-48/CVE-2015-2710 (bmo#1149542) + Buffer overflow with SVG content and CSS + * MFSA 2015-49/CVE-2015-2711 (bmo#1113431) + Referrer policy ignored when links opened by middle-click and + context menu + * MFSA 2015-50/CVE-2015-2712 (bmo#1152280) + Out-of-bounds read and write in asm.js validation + * MFSA 2015-51/CVE-2015-2713 (bmo#1153478) + Use-after-free during text processing with vertical text enabled + * MFSA 2015-53/CVE-2015-2715 (bmo#988698) + Use-after-free due to Media Decoder Thread creation during shutdown + * MFSA 2015-54/CVE-2015-2716 (bmo#1140537) + Buffer overflow when parsing compressed XML + * MFSA 2015-55/CVE-2015-2717 (bmo#1154683) + Buffer overflow and out-of-bounds read while parsing MP4 video + metadata + * MFSA 2015-56/CVE-2015-2718 (bmo#1146724) + Untrusted site hosting trusted page can intercept webchannel + responses + * MFSA 2015-57/CVE-2011-3079 (bmo#1087565) + Privilege escalation through IPC channel messages - requires NSS 3.18.1 - removed obsolete patches: * mozilla-skia-bmo1136958.patch diff -r 0855c4ac4793 -r e11af0d6cb48 MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Fri May 15 08:33:29 2015 +0200 +++ b/MozillaFirefox/MozillaFirefox.spec Fri May 15 13:12:10 2015 +0200 @@ -19,9 +19,9 @@ # changed with every update %define major 38 -%define mainver %major.0 +%define mainver %major.0.1 %define update_channel release -%define releasedate 2015050900 +%define releasedate 2015051400 # general build definitions %if "%{update_channel}" != "aurora" @@ -146,6 +146,7 @@ Patch12: mozilla-openaes-decl.patch Patch14: mozilla-skia-be-le.patch Patch15: mozilla-bmo1005535.patch +Patch16: mozilla-add-glibcxx_use_cxx11_abi.patch # Firefox/browser Patch101: firefox-kde.patch Patch102: firefox-no-default-ualocale.patch @@ -260,6 +261,7 @@ %patch12 -p1 %patch14 -p1 %patch15 -p1 +%patch16 -p1 # Firefox %patch101 -p1 %patch102 -p1 diff -r 0855c4ac4793 -r e11af0d6cb48 MozillaFirefox/create-tar.sh --- a/MozillaFirefox/create-tar.sh Fri May 15 08:33:29 2015 +0200 +++ b/MozillaFirefox/create-tar.sh Fri May 15 13:12:10 2015 +0200 @@ -2,8 +2,8 @@ CHANNEL="release" BRANCH="releases/mozilla-$CHANNEL" -RELEASE_TAG="FIREFOX_38_0_RELEASE" -VERSION="38.0" +RELEASE_TAG="FIREFOX_38_0_1_RELEASE" +VERSION="38.0.1" # mozilla if [ -d mozilla ]; then diff -r 0855c4ac4793 -r e11af0d6cb48 MozillaFirefox/mozilla-add-glibcxx_use_cxx11_abi.patch --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/MozillaFirefox/mozilla-add-glibcxx_use_cxx11_abi.patch Fri May 15 13:12:10 2015 +0200 @@ -0,0 +1,1 @@ +../mozilla-add-glibcxx_use_cxx11_abi.patch \ No newline at end of file diff -r 0855c4ac4793 -r e11af0d6cb48 mozilla-add-glibcxx_use_cxx11_abi.patch --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/mozilla-add-glibcxx_use_cxx11_abi.patch Fri May 15 13:12:10 2015 +0200 @@ -0,0 +1,35 @@ +From 32b9943e0d2c7c28d9d113c0e83d121c356fe5d5 Mon Sep 17 00:00:00 2001 +From: Mike Hommey +Date: Fri, 10 Apr 2015 16:53:05 +0900 +Subject: [PATCH] Bug 1153109 - Add -D_GLIBCXX_USE_CXX11_ABI=0 to CXXFLAGS when + building with --enable-stdcxx-compat + +patch grab from https://bugzilla.mozilla.org/show_bug.cgi?id=1153109 + +--- + configure.in | 2 ++ + 1 file changed, 2 insertions(+) + +diff --git a/configure.in b/configure.in +index 95d2a70..6c858b3 100644 +--- a/configure.in ++++ b/configure.in +@@ -7375,16 +7375,18 @@ STDCXX_COMPAT= + MOZ_ARG_ENABLE_BOOL(stdcxx-compat, + [ --enable-stdcxx-compat Enable compatibility with older libstdc++], + STDCXX_COMPAT=1) + + if test -n "$STDCXX_COMPAT"; then + eval $(CXX="$CXX" HOST_CXX="$HOST_CXX" $PYTHON -m mozbuild.configure.libstdcxx) + AC_SUBST(MOZ_LIBSTDCXX_TARGET_VERSION) + AC_SUBST(MOZ_LIBSTDCXX_HOST_VERSION) ++ CXXFLAGS="$CXXFLAGS -D_GLIBCXX_USE_CXX11_ABI=0" ++ HOST_CXXFLAGS="$HOST_CXXFLAGS -D_GLIBCXX_USE_CXX11_ABI=0" + fi + + dnl ======================================================== + dnl = + dnl = Profiling and Instrumenting + dnl = + dnl ======================================================== + MOZ_ARG_HEADER(Profiling and Instrumenting) diff -r 0855c4ac4793 -r e11af0d6cb48 series --- a/series Fri May 15 08:33:29 2015 +0200 +++ b/series Fri May 15 13:12:10 2015 +0200 @@ -15,6 +15,7 @@ mozilla-openaes-decl.patch mozilla-skia-be-le.patch mozilla-bmo1005535.patch +mozilla-add-glibcxx_use_cxx11_abi.patch # Firefox patches firefox-kde.patch