- update to Firefox 63.0.1
* Snippets are not loaded due to missing element (bmo#1503047)
* Print preview always shows 30& scale when it is actually
Shrink To Fit (bmo#1501952)
* Dialog displayed when closing multiple windows shows unreplaced
%1$S placeholder in Japanese and potentially other locales
(bmo#1500823)
MFSA 2018-26 (bsc#1112852)
* CVE-2018-12391 (bmo#1478843) (Android-only)
HTTP Live Stream audio data is accessible cross-origin
* CVE-2018-12392 (bmo#1492823)
Crash with nested event loops
* CVE-2018-12393 (bmo#1495011) (only affects non-64-bit archs)
Integer overflow during Unicode conversion while loading JavaScript
* CVE-2018-12395 (bmo#1467523)
WebExtension bypass of domain restrictions through header rewriting
* CVE-2018-12396 (bmo#1483602)
WebExtension content scripts can execute in disallowed contexts
* CVE-2018-12397 (bmo#1487478)
Missing warning prompt when WebExtension requests local file access
* CVE-2018-12398 (bmo#1460538, bmo#1488061)
CSP bypass through stylesheet injection in resource URIs
* CVE-2018-12399 (bmo#1490276)
Spoofing of protocol registration notification bar
* CVE-2018-12400 (bmo#1448305) (Android only)
Favicons are cached in private browsing mode on Firefox for Android
* CVE-2018-12401 (bmo#1422456)
DOS attack through special resource URI parsing
* CVE-2018-12402 (bmo#1469916)
SameSite cookies leak when pages are explicitly saved
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=692
This commit is contained in:
Wolfgang Rosenauer
Git OBS Bridge
parent
6bbb36ffe9
commit
2f1f7dea2a
@ -1,3 +1,14 @@
|
||||
-------------------------------------------------------------------
|
||||
Thu Nov 8 14:59:13 UTC 2018 - wr@rosenauer.org
|
||||
|
||||
- update to Firefox 63.0.1
|
||||
* Snippets are not loaded due to missing element (bmo#1503047)
|
||||
* Print preview always shows 30& scale when it is actually
|
||||
Shrink To Fit (bmo#1501952)
|
||||
* Dialog displayed when closing multiple windows shows unreplaced
|
||||
%1$S placeholder in Japanese and potentially other locales
|
||||
(bmo#1500823)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Oct 29 14:07:51 UTC 2018 - wr@rosenauer.org
|
||||
|
||||
@ -8,7 +19,45 @@ Mon Oct 29 14:07:51 UTC 2018 - wr@rosenauer.org
|
||||
default behavior is activated only in new profiles and can be
|
||||
changed in preferences.
|
||||
* Added support for Web Components custom elements and shadow DOM
|
||||
MFSA 2018-26 (bsc#1112852)
|
||||
* CVE-2018-12391 (bmo#1478843) (Android-only)
|
||||
HTTP Live Stream audio data is accessible cross-origin
|
||||
* CVE-2018-12392 (bmo#1492823)
|
||||
Crash with nested event loops
|
||||
* CVE-2018-12393 (bmo#1495011) (only affects non-64-bit archs)
|
||||
Integer overflow during Unicode conversion while loading JavaScript
|
||||
* CVE-2018-12395 (bmo#1467523)
|
||||
WebExtension bypass of domain restrictions through header rewriting
|
||||
* CVE-2018-12396 (bmo#1483602)
|
||||
WebExtension content scripts can execute in disallowed contexts
|
||||
* CVE-2018-12397 (bmo#1487478)
|
||||
Missing warning prompt when WebExtension requests local file access
|
||||
* CVE-2018-12398 (bmo#1460538, bmo#1488061)
|
||||
CSP bypass through stylesheet injection in resource URIs
|
||||
* CVE-2018-12399 (bmo#1490276)
|
||||
Spoofing of protocol registration notification bar
|
||||
* CVE-2018-12400 (bmo#1448305) (Android only)
|
||||
Favicons are cached in private browsing mode on Firefox for Android
|
||||
* CVE-2018-12401 (bmo#1422456)
|
||||
DOS attack through special resource URI parsing
|
||||
* CVE-2018-12402 (bmo#1469916)
|
||||
SameSite cookies leak when pages are explicitly saved
|
||||
* CVE-2018-12403 (bmo#1484753)
|
||||
Mixed content warning is not displayed when HTTPS page loads a favicon over HTTP
|
||||
* CVE-2018-12388 (bmo#1472639, bmo#1485698, bmo#1301547, bmo#1471427,
|
||||
bmo#1379411, bmo#1482122, bmo#1486314, bmo#1487167)
|
||||
Memory safety bugs fixed in Firefox 63
|
||||
* CVE-2018-12390 (bmo#1487098, bmo#1487660, bmo#1490234, bmo#1496159,
|
||||
bmo#1443748, bmo#1496340, bmo#1483905, bmo#1493347, bmo#1488803,
|
||||
bmo#1498701, bmo#1498482, bmo#1442010, bmo#1495245, bmo#1483699,
|
||||
bmo#1469486, bmo#1484905, bmo#1490561, bmo#1492524, bmo#1481844)
|
||||
Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3
|
||||
- requires NSPR 4.20, NSS 3.39 and Rust 1.28
|
||||
- latest rust does not provide rust-std so stop requiring it
|
||||
- requires cargo-crate-cbindgen >= 0.6.2 to build
|
||||
- requires nodejs to build
|
||||
- added mozilla-bmo1491289.patch to fix system NSS build (bmo#1491289)
|
||||
- added mozilla-cubeb-noreturn.patch to fix non-return function
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Oct 25 14:39:04 UTC 2018 - guillaume.gardet@opensuse.org
|
||||
|
||||
@ -19,12 +19,12 @@
|
||||
|
||||
# changed with every update
|
||||
%define major 63
|
||||
%define mainver %major.0
|
||||
%define orig_version 63.0
|
||||
%define mainver %major.0.1
|
||||
%define orig_version 63.0.1
|
||||
%define orig_suffix %{nil}
|
||||
%define update_channel release
|
||||
%define branding 1
|
||||
%define releasedate 20181018182531
|
||||
%define releasedate 20181030165643
|
||||
%define source_prefix firefox-%{orig_version}
|
||||
|
||||
# PIE, full relro (x86_64 for now)
|
||||
@ -66,7 +66,8 @@ BuildRequires: gcc7-c++
|
||||
%else
|
||||
BuildRequires: gcc-c++
|
||||
%endif
|
||||
BuildRequires: cargo
|
||||
BuildRequires: cargo >= 1.28
|
||||
BuildRequires: cargo-crate-cbindgen >= 0.6.2
|
||||
BuildRequires: libXcomposite-devel
|
||||
BuildRequires: libcurl-devel
|
||||
BuildRequires: libidl-devel
|
||||
@ -76,11 +77,11 @@ BuildRequires: libproxy-devel
|
||||
BuildRequires: makeinfo
|
||||
BuildRequires: mozilla-nspr-devel >= 4.20
|
||||
BuildRequires: mozilla-nss-devel >= 3.39
|
||||
BuildRequires: nodejs
|
||||
BuildRequires: python-devel
|
||||
BuildRequires: python2-xml
|
||||
BuildRequires: python3 >= 3.5
|
||||
BuildRequires: rust >= 1.26
|
||||
BuildRequires: rust-std
|
||||
BuildRequires: rust >= 1.28
|
||||
BuildRequires: startup-notification-devel
|
||||
BuildRequires: unzip
|
||||
BuildRequires: update-desktop-files
|
||||
@ -159,6 +160,8 @@ Patch6: mozilla-reduce-files-per-UnifiedBindings.patch
|
||||
Patch7: mozilla-aarch64-startup-crash.patch
|
||||
Patch8: mozilla-bmo256180.patch
|
||||
Patch9: mozilla-bmo1463035.patch
|
||||
Patch10: mozilla-bmo1491289.patch
|
||||
Patch11: mozilla-cubeb-noreturn.patch
|
||||
# Firefox/browser
|
||||
Patch101: firefox-kde.patch
|
||||
Patch102: firefox-branded-icons.patch
|
||||
@ -268,6 +271,8 @@ cd $RPM_BUILD_DIR/%{source_prefix}
|
||||
%patch7 -p1
|
||||
%patch8 -p1
|
||||
%patch9 -p1
|
||||
%patch10 -p1
|
||||
%patch11 -p1
|
||||
# Firefox
|
||||
%patch101 -p1
|
||||
%patch102 -p1
|
||||
|
||||
@ -1,3 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:be9a1053e0516d4a8661b408fae6a82ecfcf65fe5e8c6b13e7abebacd89f3b23
|
||||
size 28404
|
||||
oid sha256:85b27594e97e8be902088fe92581669382e7d7ca0088f9b9d7e8e97e5a352fe8
|
||||
size 28372
|
||||
|
||||
@ -7,8 +7,8 @@
|
||||
|
||||
CHANNEL="release"
|
||||
BRANCH="releases/mozilla-$CHANNEL"
|
||||
RELEASE_TAG="FIREFOX_63_0_RELEASE"
|
||||
VERSION="63.0"
|
||||
RELEASE_TAG="FIREFOX_63_0_1_RELEASE"
|
||||
VERSION="63.0.1"
|
||||
VERSION_SUFFIX=""
|
||||
LOCALE_FILE="firefox-$VERSION/browser/locales/l10n-changesets.json"
|
||||
|
||||
|
||||
3
firefox-63.0.1.source.tar.xz
Normal file
3
firefox-63.0.1.source.tar.xz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:c42c60ee9789058d4aca2c9673b45255d29767cc087bf6acbb57f4a2211fd7e9
|
||||
size 265358784
|
||||
17
firefox-63.0.1.source.tar.xz.asc
Normal file
17
firefox-63.0.1.source.tar.xz.asc
Normal file
@ -0,0 +1,17 @@
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
Version: GnuPG v2.0.14 (GNU/Linux)
|
||||
|
||||
iQIcBAABCAAGBQJb2PRhAAoJELu+vbskxvNVZAkQALLGLZ6wE/O1RiHgGBxlBgkF
|
||||
zQ+sOLXSLg8e4id7Mn2C+M110cvgyTCMyZqGwmPpd4j/m6FAcUyyrUYrn4FGyfNh
|
||||
6xCRW30X0rExNTZX0I4BxdOOVQtpHi+T2XYb1DCgUxPPxRhmjXd6MD3aHPc2Moul
|
||||
w8xLks55Hy9JPTSJ/Ye3IEsiH7MqyRtW4Mhp3sylR+4TX+5b+uovEHtH4cm1CIBE
|
||||
TI1GUZcixZQ0npVpHKJ0sT4lEtNolUefv2Px7yWvScl9wsRPI6E5PSRpvV+2H3Mq
|
||||
NSyFsXTvn5n7j/XZrDM0hWzvEBCl+HfUAzs3mc9DM5fmQxK5Y46KqjWyLySUFRqS
|
||||
CTYIxbuw4vS35AAkS6WuMg3sof4jxuBI4kskBifNb3XEE3oWLQjRtQef8qU1/cET
|
||||
/CEYBaw0cA13Qa+M2BvbnUaUIixaSlBerRnEJtVIgE1CyxI1/J3ZubZqjeXHi/tY
|
||||
c6MEM6J5ZSGaTCX5PNYjPwlG3AzH1WgCGXv5lalcis8QIy+IKtiuSvLOCBZ8F312
|
||||
WOERtkgdYhvxNBvyckrfIjYZyw6BEUUQJSWni3uygQzlEvpqtljlTAurUgmLWnTe
|
||||
oFLi28Zn90w1xAr1mJGFN8IoWL/a8q8rG3rqIzWeI3Gt43WmGswKaMw5b8FRUo1I
|
||||
8fj9P4Rv0QKw1f9fUg7C
|
||||
=53l/
|
||||
-----END PGP SIGNATURE-----
|
||||
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:3f95b028571ab9ffb3bf637761534a685aed224de3b87eb8ad7e1d0831995c07
|
||||
size 265957640
|
||||
@ -1,17 +0,0 @@
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
Version: GnuPG v2.0.14 (GNU/Linux)
|
||||
|
||||
iQIcBAABCAAGBQJbyOkNAAoJELu+vbskxvNV5LMQAK7JdjrLmZ0BQm489MBrC6Pq
|
||||
RLAdoa8Qpkng4Ffe9Rtjj9DTo3ZdJfccTm41E/k8yc5OJ2hwtKfsB3nheCCDtnON
|
||||
aqBUBkj2Rd3heLZBV0uKL56shCf41p58Xp93tsYQJeVfFvOMImVcYNxxyw0M9O7R
|
||||
EZeABrOIhvTlIXWRjgnVgcuPMvOK5sgrtdKT8c9kSIEjCRn49w7jAe7RMgVYWfop
|
||||
FDUmtM4Q1ZwxQoyGjJYSTbwIebSfirwzjXgUD5jTith4bvhDCu4bAx62IyONEGG/
|
||||
2M+WjPviP7n/RRC2EfWbZukozLCGGCkeIQpyRlcSpZxtqNkR3Q+rWhRVXm7VeyfC
|
||||
Bp3MQWEOE75f1hMxS14ggD+lAXq7u4pj6wdGROFTHXRLPEvjj12F76Xr2hUqWX02
|
||||
HA/WVNsYTlqd08+ojbEqsJBDPi2UUv/ogaEWfKPehpnzXJ1znO5eVMdNnA0ykjD4
|
||||
nbo4PRDt3g6E2GMXJgpnVcrq8bQv28s+cHaC4OhxZ7E0fPtfvPp2j0CLX2TGZwq2
|
||||
Ub8NKYWrt6ZjEJrf7fAFMkHnlK+OCb/69byoKhbcrOozZk47f74scVRAv9iLWPdK
|
||||
qj+HeOP8/lg7UMLjN/vP9xpLl4tMpCXmu+H2+uE/OBYS6YNtheHIgwy4EG3DDDSj
|
||||
VKJF8cbSSpvtyh5Q/4Ka
|
||||
=1MST
|
||||
-----END PGP SIGNATURE-----
|
||||
3
l10n-63.0.1.tar.xz
Normal file
3
l10n-63.0.1.tar.xz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:dde58d907268f4c69301e99a30984ef0d028f216436111d634bac22b119821ac
|
||||
size 50071496
|
||||
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:2ae5f088b5896142de8ca19478a42d85b4d6bba45bf4de540bb5c8345b1194df
|
||||
size 50087576
|
||||
24896
mozilla-bmo1491289.patch
Normal file
24896
mozilla-bmo1491289.patch
Normal file
File diff suppressed because it is too large
Load Diff
18
mozilla-cubeb-noreturn.patch
Normal file
18
mozilla-cubeb-noreturn.patch
Normal file
@ -0,0 +1,18 @@
|
||||
# HG changeset patch
|
||||
# User Wolfgang Rosenauer <wr@rosenauer.org>
|
||||
# Parent a9d61a2614b01b1e0ca37d00a6b11b2571868f86
|
||||
|
||||
diff --git a/media/libcubeb/src/cubeb_utils.cpp b/media/libcubeb/src/cubeb_utils.cpp
|
||||
--- a/media/libcubeb/src/cubeb_utils.cpp
|
||||
+++ b/media/libcubeb/src/cubeb_utils.cpp
|
||||
@@ -15,9 +15,10 @@ size_t cubeb_sample_size(cubeb_sample_fo
|
||||
return sizeof(int16_t);
|
||||
case CUBEB_SAMPLE_FLOAT32LE:
|
||||
case CUBEB_SAMPLE_FLOAT32BE:
|
||||
return sizeof(float);
|
||||
default:
|
||||
// should never happen as all cases are handled above.
|
||||
assert(false);
|
||||
}
|
||||
+ return 0;
|
||||
}
|
||||
@ -1,2 +1,2 @@
|
||||
REV=84219fbf133c
|
||||
REV=6d5e52718c00
|
||||
REPO=http://hg.mozilla.org/releases/mozilla-release
|
||||
|
||||
Loading…
Reference in New Issue
Block a user