Sync from SUSE:SLFO:Main MozillaFirefox revision 8a6dc4969681ecc8f4a3a15370803888

2024-06-08 17:37:53 +02:00 · 2024-06-08 17:37:53 +02:00 · 8cde56270c
commit 8cde56270c
parent 9d5c8f3d4e
8 changed files with 41 additions and 36 deletions
--- a/MozillaFirefox.changes
+++ b/MozillaFirefox.changes
@ -1,28 +1,33 @@
 -------------------------------------------------------------------
 Wed Mar 13 08:25:10 UTC 2024 - Martin Sirringhaus <martin.sirringhaus@suse.com>
 - Firefox Extended Support Release 115.9.0 ESR
  Placeholder changelog-entry (bsc#1221327)
 -------------------------------------------------------------------
 Mon Feb 19 07:18:16 UTC 2024 - Martin Sirringhaus <martin.sirringhaus@suse.com>
 - Firefox Extended Support Release 115.8.0 ESR
  * Fixed: Various security fixes and other quality improvements.
- Mozilla Firefox ESR 115.8
+  MFSA 2024-06 (bsc#1220048)
-  MFSA 2024-UNKNOWN (bsc#1220048)
+  * CVE-2024-1546 (bmo#1843752)
  * NO CVE-NUMBER ASSIGNED YET (bmo#1843752)
    Out-of-bounds memory read in networking channels
-  * NO CVE-NUMBER ASSIGNED YET (bmo#1877879)
+  * CVE-2024-1547 (bmo#1877879)
    Alert dialog could have been spoofed on another site
-  * NO CVE-NUMBER ASSIGNED YET (bmo#1832627)
+  * CVE-2024-1548 (bmo#1832627)
    Fullscreen Notification could have been hidden by select
    element
-  * NO CVE-NUMBER ASSIGNED YET (bmo#1833814)
+  * CVE-2024-1549 (bmo#1833814)
    Custom cursor could obscure the permission dialog
-  * NO CVE-NUMBER ASSIGNED YET (bmo#1860065)
+  * CVE-2024-1550 (bmo#1860065)
    Mouse cursor re-positioned unexpectedly could have led to
    unintended permission grants
-  * NO CVE-NUMBER ASSIGNED YET (bmo#1864385)
+  * CVE-2024-1551 (bmo#1864385)
    Multipart HTTP Responses would accept the Set-Cookie header
    in response parts
-  * NO CVE-NUMBER ASSIGNED YET (bmo#1874502)
+  * CVE-2024-1552 (bmo#1874502)
    Incorrect code generation on 32-bit ARM devices
-  * NO CVE-NUMBER ASSIGNED YET (bmo#1855686, bmo#1867982, bmo#1871498,
+  * CVE-2024-1553 (bmo#1855686, bmo#1867982, bmo#1871498,
    bmo#1872296, bmo#1873521, bmo#1873577, bmo#1873597,
    bmo#1873866, bmo#1874080, bmo#1874740, bmo#1875795,
    bmo#1875906, bmo#1876425, bmo#1878211, bmo#1878286)
--- a/MozillaFirefox.spec
+++ b/MozillaFirefox.spec
@ -1,7 +1,7 @@
 #
 # spec file
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 # Copyright (c) 2006-2023 Wolfgang Rosenauer <wr@rosenauer.org>
 #
 # All modifications and additions to the file contributed by third parties
@ -29,8 +29,8 @@
 # major 69
 # mainver %%major.99
 %define major          115
-%define mainver        %major.8.0
+%define mainver        %major.9.0
-%define orig_version   115.8.0
+%define orig_version   115.9.0
 %define orig_suffix    esr
 %define update_channel release
 %define branding       1
--- a/firefox-115.8.0esr.source.tar.xz
+++ b/firefox-115.8.0esr.source.tar.xz
--- a/firefox-115.8.0esr.source.tar.xz.asc
+++ b/firefox-115.8.0esr.source.tar.xz.asc
@ -1,16 +0,0 @@
 -----BEGIN PGP SIGNATURE-----
 iQIzBAABCgAdFiEErdcHlHlwDcrf3VM34207E/PZMnQFAmXKiskACgkQ4207E/PZ
 MnQ4wA//bA9vJkE+Q+RySotiCcZ3xLZO4h8JSNMOy3Z5PJhORXlw5S5T51gGSpIc
 o8cQzpTe6IMNNA5nLE/RR99OII1WiQ5g0ex1Vcv2/mY5wD0VxnvxGiRgSw2Ocmod
 jCvOo4LH9Z4sqRsrAkgmnbqc5iR5ULSr+/p0Y0ypIUo+rJFPD5g0saeAxkfF8Q3E
 WoeUI7MTXJlJ3yenyhAmLqcDHoAvcekULG3ERaqL953BXzftaIaooSos06MoHzFT
 W/sgNCekHsAfrUZxjJg2XmawJ4dwTc8/tuCPXEmLNJejEBhWizAN9Si4MaYg4Gmx
 wLh39i8US68dNBcOZOsEjLo6DA4RhCm0z2VVhH8C4e6PSClFDF3OtdB1aHOJWwIj
 u285DFJy738N61D9teN1uzyDS4nwRDjNCbgWvWWLxmoSkEiMgOmX41WbhOtsuqXz
 kphrckU8lxUymG15+8kJJK1jVNmbmsPOR7MZkBsJffxHQNKrKxGHY+nqd/oJvFjs
 tEu6r9eZr6rgPJqkyJvlw4e+rSO+VNOCjp9aMv6arPNTxmsfmaNopMtOBr///Wvp
 D03HarZoJDLFnTOES9AAWDq0agDLywdohNWMLtXozqVdlnyC5ZPT7OsX0/ef2/yn
 WsZjvqLX6YFw1YhYii7pPCg9AwJBJyZv942kn1zFkNuGH5oYGcs=
 =rruB
 -----END PGP SIGNATURE-----
--- a/firefox-115.9.0esr.source.tar.xz
+++ b/firefox-115.9.0esr.source.tar.xz
--- a/firefox-115.9.0esr.source.tar.xz.asc
+++ b/firefox-115.9.0esr.source.tar.xz.asc
@ -0,0 +1,16 @@
 -----BEGIN PGP SIGNATURE-----
 iQIzBAABCgAdFiEErdcHlHlwDcrf3VM34207E/PZMnQFAmXyisMACgkQ4207E/PZ
 MnTDRhAAmTBt2/CYTWrNfBxz71vSR/brjJJHTSavv3M/VvgQl8iLMh4DOrCX6J+I
 bAoRXjmlmv2nwUITQZgkMZ0spnhhJ9eIN4U0yBSwrBWk2Fe3sPwPWp97vdg9PsRG
 xYFIhFFLzxep/9F0Dktw8/hy6hV00utOcr9qBTlG07PQQRv5wQVCFtFtGOJYu4hi
 qTdJIvlnOj8ZEgv0cNtVmpLqbD/7hspapVfACiQ8LvgggTD33Yx/QQ1SaRRla+p9
 YOd2Mwyyb7/MZHfypM0qDvtU0uOyZp6HB0ca40L4VPfrYi42JKfmDgGuDmww1Nnk
 DPOzTWjZ57eCgAHxW5zvqu7XA6TgOT7mqRlRYv5GX+uo+YXsp4mYcaKZqwyX25P8
 c3aQfNdwSzX8K31qLlh3XaeX+xObNDus6u2paPmIkjo48nJV9Bu18/mHAQJ5p+7c
 MgtVGpiK4u8/dcpgmIpjiL/S+Srg/anjPchV3DPSusb7d3eEIpSat46u98718Zbj
 d+oM0oURd4ErtgtovsLqWkqrA/PE/qeFriZfywGvMWpUb5rhWPOsz4HLP7dAqFKi
 yLGe+U7owcffEslvpgyliuUnbef5rGxbthEKEp+uJ4iq9Hpvp6PY1Tjm3JuWC/0M
 0vhjYo/TxInfjobdS8oGolp1r1NOArXuJ6l6n/qIN9ESu75lIP8=
 =WePS
 -----END PGP SIGNATURE-----
--- a/l10n-115.9.0esr.tar.xz
+++ b/l10n-115.9.0esr.tar.xz
--- a/8
+++ b/8
@ -1,10 +1,10 @@
 PRODUCT="firefox"
 CHANNEL="release"
-VERSION="115.8.0"
+VERSION="115.9.0"
 VERSION_SUFFIX="esr"
-PREV_VERSION="115.7.0"
+PREV_VERSION="115.8.0"
 PREV_VERSION_SUFFIX="esr"
 #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
 RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-esr115"
-RELEASE_TAG="17fcbdf6426663c10da5d0ba21927e71184304c3"
+RELEASE_TAG="423e963b3d9b923e3c7fae8eae2f626f02c15cf2"
-RELEASE_TIMESTAMP="20240212204114"
+RELEASE_TIMESTAMP="20240314014136"