--- a/MozillaFirefox/MozillaFirefox.changes Thu May 28 08:59:15 2020 +0200
+++ b/MozillaFirefox/MozillaFirefox.changes Thu Jun 11 21:56:33 2020 +0200
@@ -1,11 +1,47 @@
-------------------------------------------------------------------
-Wed May 27 11:48:06 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>
-
-- Mozilla Firefox 77.0 (build1)
+Wed Jun 10 07:17:15 UTC 2020 - Guillaume GARDET <guillaume.gardet@opensuse.org>
+
+- Exclude armv6, since it is unbuildable since about 3 years
+
+-------------------------------------------------------------------
+Wed Jun 3 21:39:11 UTC 2020 - Andreas Stieger <andreas.stieger@gmx.de>
+
+- Mozilla Firefox 77.0.1
+ * Disable automatic selection of DNS over HTTPS providers during
+ a test to enable wider deployment in a more controlled way
+ (bmo#1642723)
+
+-------------------------------------------------------------------
+Fri May 29 11:49:36 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>
+
+- Mozilla Firefox 77.0
+ * view and manage web certificates more easily on the new
+ about:certificate page
+ * improvements in accessibility
+ * significant improvements to JavaScript debugging
+ MFSA 2020-20 (bsc#1172402)
+ * CVE-2020-12399 (bmo#1631576)
+ Timing attack on DSA signatures in NSS library
+ (fixed with external NSS >= 3.52.1)
+ * CVE-2020-12405 (bmo#1631618)
+ Use-after-free in SharedWorkerService
+ * CVE-2020-12406 (bmo#1639590)
+ JavaScript type confusion with NativeTypes
+ * CVE-2020-12407 (bmo#1637112)
+ WebRender leaking GPU memory when using border-image CSS
+ directive
+ * CVE-2020-12408 (bmo#1623888)
+ URL spoofing when using IP addresses
+ * CVE-2020-12409 (bmo#1619305, bmo#1632717)
+ Memory safety bugs fixed in Firefox 77 and Firefox ESR 68.9
+ * CVE-2020-12411 (bmo#1620972, bmo#1625333)
+ Memory safety bugs fixed in Firefox 77
- requires
* NSS >= 3.52.1
* rust-cbindgen >= 1.14.1
-- do not use gcc (but clang for everything)
+ * clang >= 5
+- added mozilla-bmo1634646.patch as part of fixing PGO build
+ (still not working)
-------------------------------------------------------------------
Wed May 13 12:21:13 UTC 2020 - Michel Normand <normand@linux.vnet.ibm.com>
--- a/MozillaFirefox/MozillaFirefox.spec Thu May 28 08:59:15 2020 +0200
+++ b/MozillaFirefox/MozillaFirefox.spec Thu Jun 11 21:56:33 2020 +0200
@@ -19,18 +19,18 @@
# changed with every update
%define major 77
-%define mainver %major.0
-%define orig_version 77.0
+%define mainver %major.0.1
+%define orig_version 77.0.1
%define orig_suffix %{nil}
%define update_channel release
%define branding 1
%define devpkg 1
-# disable for FF73 for now as it fails for unknown reason
+# PGO builds do not work in TW currently (bmo#1642410)
%define do_profiling 0
# upstream default is clang (to use gcc for large parts set to 0)
-%define clang_build 1
+%define clang_build 0
# PIE, full relro
%define build_hardened 1
@@ -104,6 +104,7 @@
%if 0%{?suse_version} < 1550
BuildRequires: pkgconfig(gconf-2.0) >= 1.2.1
%endif
+BuildRequires: clang-devel >= 5
BuildRequires: pkgconfig(gdk-x11-2.0)
BuildRequires: pkgconfig(glib-2.0) >= 2.22
BuildRequires: pkgconfig(gobject-2.0)
@@ -113,12 +114,6 @@
BuildRequires: pkgconfig(gtk+-unix-print-3.0)
BuildRequires: pkgconfig(libffi)
BuildRequires: pkgconfig(libpulse)
-%if 0%{?suse_version} > 1320
-BuildRequires: llvm-clang-devel >= 3.9.0
-%else
-# this covers the workaround to compile on Leap 42 in OBS
-BuildRequires: clang4-devel
-%endif
# libavcodec is required for H.264 support but the
# openSUSE version is currently not able to play H.264
# therefore the Packman version is required
@@ -186,6 +181,7 @@
Patch20: mozilla-fix-top-level-asm.patch
Patch21: mozilla-bmo1504834-part4.patch
Patch22: mozilla-bmo849632.patch
+Patch23: mozilla-bmo1634646.patch
# Firefox/browser
Patch101: firefox-kde.patch
Patch102: firefox-branded-icons.patch
@@ -207,7 +203,7 @@
%if 0%{?suse_version} < 1220
Obsoletes: libproxy1-pacrunner-mozjs <= 0.4.7
%endif
-##BuildArch: i686 x86_64 aarch64 ppc64le
+ExcludeArch: armv6l armv6hl
%description
Mozilla Firefox is a standalone web browser, designed for standards
@@ -321,6 +317,7 @@
%patch20 -p1
%patch21 -p1
%patch22 -p1
+%patch23 -p1
# Firefox
%patch101 -p1
%patch102 -p1
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/MozillaFirefox/mozilla-bmo1634646.patch Thu Jun 11 21:56:33 2020 +0200
@@ -0,0 +1,1 @@
+../mozilla-bmo1634646.patch
\ No newline at end of file
--- a/MozillaFirefox/tar_stamps Thu May 28 08:59:15 2020 +0200
+++ b/MozillaFirefox/tar_stamps Thu Jun 11 21:56:33 2020 +0200
@@ -1,11 +1,11 @@
PRODUCT="firefox"
CHANNEL="release"
-VERSION="77.0"
+VERSION="77.0.1"
VERSION_SUFFIX=""
-PREV_VERSION="76.0.1"
+PREV_VERSION="77.0"
PREV_VERSION_SUFFIX=""
#SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"
-RELEASE_TAG="69ca1d06f46ad976113938e6dfccfeb7315ee7a6"
-RELEASE_TIMESTAMP="20200525134724"
+RELEASE_TAG="b8d272601020250ac2897e113b3fc3b53b72cf4b"
+RELEASE_TIMESTAMP="20200602222727"
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/mozilla-bmo1634646.patch Thu Jun 11 21:56:33 2020 +0200
@@ -0,0 +1,26 @@
+# HG changeset patch
+# User Wolfgang Rosenauer <wr@rosenauer.org>
+# Parent 43820d9e289abee98a2e3cdb4314848de3bc8622
+
+diff --git a/build/pgo/profileserver.py b/build/pgo/profileserver.py
+--- a/build/pgo/profileserver.py
++++ b/build/pgo/profileserver.py
+@@ -127,17 +127,17 @@ if __name__ == '__main__':
+ # Bug 1553850 considers fixing this.
+ env["MOZ_DISABLE_CONTENT_SANDBOX"] = "1"
+ env["MOZ_DISABLE_RDD_SANDBOX"] = "1"
+
+ # Ensure different pids write to different files
+ env["LLVM_PROFILE_FILE"] = "default_%p_random_%m.profraw"
+
+ # Write to an output file if we're running in automation
+- process_args = {}
++ process_args = {'universal_newlines': True}
+ if 'UPLOAD_PATH' in env:
+ process_args['logfile'] = os.path.join(env['UPLOAD_PATH'], 'profile-run-1.log')
+
+ # Run Firefox a first time to initialize its profile
+ runner = FirefoxRunner(profile=profile,
+ binary=binary,
+ cmdargs=['data:text/html,<script>Quitter.quit()</script>'],
+ env=env,
--- a/series Thu May 28 08:59:15 2020 +0200
+++ b/series Thu Jun 11 21:56:33 2020 +0200
@@ -21,6 +21,7 @@
mozilla-fix-top-level-asm.patch
mozilla-bmo1504834-part4.patch
mozilla-bmo849632.patch
+mozilla-bmo1634646.patch
# Firefox patches
firefox-kde.patch