Accepting request 1226801 from mozilla:Factory

- Mozilla Firefox 133.0 https://www.mozilla.org/en-US/firefox/133.0/releasenotes MFSA 2024-63 (bsc#1233695) * CVE-2024-11691 (bmo#1914707, bmo#1924184) Memory corruption in Apple GPU drivers * CVE-2024-11700 (bmo#1836921) Potential Tapjacking Exploit for Intent Confirmation on Android * CVE-2024-11692 (bmo#1909535) Select list elements could be shown over another site * CVE-2024-11701 (bmo#1914797) Misleading Address Bar State During Navigation Interruption * CVE-2024-11702 (bmo#1918884) Inadequate Clipboard Protection in Private Browsing Mode on Android * CVE-2024-11693 (bmo#1921458) Download Protections were bypassed by .library-ms files on Windows * CVE-2024-11694 (bmo#1924167) CSP Bypass and XSS Exposure via Web Compatibility Shims * CVE-2024-11695 (bmo#1925496) URL Bar Spoofing via Manipulated Punycode and Whitespace Characters * CVE-2024-11703 (bmo#1928779) Password access without authentication via PIN bypass on Android * CVE-2024-11696 (bmo#1929600) Unhandled Exception in Add-on Signature Verification * CVE-2024-11697 (bmo#1842187) Improper Keypress Handling in Executable File Confirmation Dialog * CVE-2024-11704 (bmo#1899402) Potential Double-Free Vulnerability in PKCS#7 Decryption Handling * CVE-2024-11698 (bmo#1916152) OBS-URL: https://build.opensuse.org/request/show/1226801 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/MozillaFirefox?expand=0&rev=443
2024-11-28 23:08:13 +00:00 · 2024-11-28 23:08:13 +00:00 · d1d6a0968b
commit d1d6a0968b
parent 78130d13f6 9e86c649c9
9 changed files with 157 additions and 106 deletions
--- a/MozillaFirefox.changes
+++ b/MozillaFirefox.changes
@ -1,3 +1,54 @@
+-------------------------------------------------------------------
+Mon Nov 25 11:00:38 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org>
+
+- Mozilla Firefox 133.0
+  https://www.mozilla.org/en-US/firefox/133.0/releasenotes
+  MFSA 2024-63 (bsc#1233695)
+  * CVE-2024-11691 (bmo#1914707, bmo#1924184)
+    Memory corruption in Apple GPU drivers
+  * CVE-2024-11700 (bmo#1836921)
+    Potential Tapjacking Exploit for Intent Confirmation on Android
+  * CVE-2024-11692 (bmo#1909535)
+    Select list elements could be shown over another site
+  * CVE-2024-11701 (bmo#1914797)
+    Misleading Address Bar State During Navigation Interruption
+  * CVE-2024-11702 (bmo#1918884)
+    Inadequate Clipboard Protection in Private Browsing Mode on
+    Android
+  * CVE-2024-11693 (bmo#1921458)
+    Download Protections were bypassed by .library-ms files on
+    Windows
+  * CVE-2024-11694 (bmo#1924167)
+    CSP Bypass and XSS Exposure via Web Compatibility Shims
+  * CVE-2024-11695 (bmo#1925496)
+    URL Bar Spoofing via Manipulated Punycode and Whitespace Characters
+  * CVE-2024-11703 (bmo#1928779)
+    Password access without authentication via PIN bypass on Android
+  * CVE-2024-11696 (bmo#1929600)
+    Unhandled Exception in Add-on Signature Verification
+  * CVE-2024-11697 (bmo#1842187)
+    Improper Keypress Handling in Executable File Confirmation Dialog
+  * CVE-2024-11704 (bmo#1899402)
+    Potential Double-Free Vulnerability in PKCS#7 Decryption Handling
+  * CVE-2024-11698 (bmo#1916152)
+    Fullscreen Lock-Up When Modal Dialog Interrupts Transition on macOS
+  * CVE-2024-11705 (bmo#1921768)
+    Null Pointer Dereference in NSC_DeriveKey
+  * CVE-2024-11706 (bmo#1923767)
+    Null Pointer Dereference in PKCS#12 Utility
+  * CVE-2024-11708 (bmo#1922912)
+    Data race with PlaybackParams
+  * CVE-2024-11699 (bmo#1880582, bmo#1929911)
+    Memory safety bugs fixed in Firefox 133, Firefox ESR 128.5,
+    and Thunderbird 128.5
+- requires NSS 3.106
+- remove obsolete mozilla-python313.patch
+
+-------------------------------------------------------------------
+Sat Nov 23 17:52:32 UTC 2024 - Dirk Müller <dmueller@suse.com>
+
+- add mozilla-python313.patch to fix build with python 3.13+
+
 -------------------------------------------------------------------
 Fri Nov 15 13:37:19 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org>

@ -5203,7 +5254,7 @@ Sat Jun 23 07:25:51 UTC 2018 - wr@rosenauer.org
    CSRF attacks through 307 redirects and NPAPI plugins
  * CVE-2018-12365 (bmo#1459206)
    Compromised IPC child process can list local filenames
-  * CVE-2018-12371 (bmo#1465686) 
+  * CVE-2018-12371 (bmo#1465686)
    Integer overflow in Skia library during edge builder allocation
  * CVE-2018-12366 (bmo#1464039)
    Invalid data handling during QCMS transformations
@ -9235,8 +9286,8 @@ Fri Jul 16 06:48:44 CEST 2010 - wr@rosenauer.org
 Sun Jun 27 20:24:31 CEST 2010 - wr@rosenauer.org

 - update to 3.6.6 release
-  * modifies the crash protection feature to increase the amount 
-    of time that plugins are allowed to be non-responsive before 
+  * modifies the crash protection feature to increase the amount
+    of time that plugins are allowed to be non-responsive before
    being terminated.

 -------------------------------------------------------------------
@ -9394,7 +9445,7 @@ Sat Oct 17 23:19:23 CEST 2009 - wr@rosenauer.org
  * MFSA 2009-64/CVE-2009-3380/CVE-2009-3381/CVE-2009-3383
    Crashes with evidence of memory corruption
 - removed upstreamed patch
-  * firefox-bug506901.patch 
+  * firefox-bug506901.patch

 -------------------------------------------------------------------
 Wed Oct  7 20:11:24 CEST 2009 - llunak@novell.com
@ -9404,7 +9455,7 @@ Wed Oct  7 20:11:24 CEST 2009 - llunak@novell.com
 -------------------------------------------------------------------
 Fri Oct  2 20:26:49 CEST 2009 - wr@rosenauer.org

- improve UI colors to be usable with dark themes at all 
+- improve UI colors to be usable with dark themes at all
  (firefox-browser-css.patch) (bnc#503351)
 - extend list of supported architectures as ABI identifier
  (mozilla-abi.patch) (bnc#543460)
@ -9412,9 +9463,9 @@ Fri Oct  2 20:26:49 CEST 2009 - wr@rosenauer.org
 -------------------------------------------------------------------
 Mon Sep 14 00:07:55 CEST 2009 - wr@rosenauer.org

- added KDE integration patch from llunak@novell.com  
-  (firefox-kde.patch)  
-  * support for knotify, making -kde4-addon obsolete  
+- added KDE integration patch from llunak@novell.com
+  (firefox-kde.patch)
+  * support for knotify, making -kde4-addon obsolete
  * KDE-specific support functional (bnc#170055)
 - do not build libnkgnomevfs (bmo#512671) (firefox-no-gnomevfs)

@ -9437,8 +9488,8 @@ Wed Aug 19 22:14:07 CEST 2009 - wr@rosenauer.org

 - renamed patch firefox-contextmenu-gnome to firefox-cross-desktop
  as it contains more tweaks to handle non-Gnome environments and
-  especially KDE integration: 
-  * added the ability to set the KDE default browser 
+  especially KDE integration:
+  * added the ability to set the KDE default browser
    (still part of bnc#170055)

 -------------------------------------------------------------------
@ -9604,16 +9655,16 @@ Wed Jan 28 13:48:00 CET 2009 - wr@rosenauer.org
 - security update to 3.0.6 (bnc#470074)
  * MFSA 2009-06/CVE-2009-0358: Directives to not cache pages ignored
    (bmo#441751)
-  * MFSA 2009-05/CVE-2009-0357: XMLHttpRequest allows reading 
+  * MFSA 2009-05/CVE-2009-0357: XMLHttpRequest allows reading
    HTTPOnly cookies (bmo#380418)
-  * MFSA 2009-04/CVE-2009-0356: Chrome privilege escalation via 
+  * MFSA 2009-04/CVE-2009-0356: Chrome privilege escalation via
    local .desktop files (bmo#460425)
  * MFSA 2009-03/CVE-2009-0355: Local file stealing with SessionStore
    (bmo#466937)
-  * MFSA 2009-02/CVE-2009-0354: XSS using a chrome XBL method 
+  * MFSA 2009-02/CVE-2009-0354: XSS using a chrome XBL method
    and window.eval (bmo#468581)
-  * MFSA 2009-01/CVE-2009-0352 - CVE-2009-0353: Crashes with 
-    evidence of memory corruption (rv:1.9.0.6) (bmo#452913, 
+  * MFSA 2009-01/CVE-2009-0352 - CVE-2009-0353: Crashes with
+    evidence of memory corruption (rv:1.9.0.6) (bmo#452913,
    bmo#449006, bmo#331088, bmo#401042, bmo#416461, bmo#422283,
    bmo#422301, bmo#431705, bmo#437142, bmo#421839, bmo#420697,
    bmo#461027)
@ -9658,7 +9709,7 @@ Fri Nov 21 03:11:41 EST 2008 - hfiguiere@suse.de
  * Bookmark editing it now properly locked down. bnc#439335
  * Bookmars are properly hidden.
  * History is properly locked down. bnc#439343
-  * Make sure the search bar is not put back when resetting the 
+  * Make sure the search bar is not put back when resetting the
    toolbar. bnc#439358

 -------------------------------------------------------------------
@ -9779,13 +9830,13 @@ Tue Jul 29 15:02:47 CEST 2008 - vuntz@novell.com
 -------------------------------------------------------------------
 Mon Jul 28 20:54:22 CEST 2008 - mauro@suse.de

- Update to stability/security release 3.0.1 (bnc#407573) 
+- Update to stability/security release 3.0.1 (bnc#407573)
  (thanks, Wolfgang)
  + MFSA 2008-36  Crash with malformed GIF file on Mac OS X
-  + MFSA 2008-35 Command-line URLs launch multiple tabs when 
+  + MFSA 2008-35 Command-line URLs launch multiple tabs when
    Firefox not running
  + MFSA 2008-34 Remote code execution by overflowing CSS reference counter
- Set browser.shell.checkDefaultBrowser to true (bnc#404119) 
+- Set browser.shell.checkDefaultBrowser to true (bnc#404119)

 -------------------------------------------------------------------
 Tue Jun 17 18:49:33 CEST 2008 - maw@suse.de
@ -9996,7 +10047,7 @@ Fri Sep 14 23:13:06 CEST 2007 - maw@suse.de
 -------------------------------------------------------------------
 Wed Sep 12 15:21:06 CEST 2007 - dmueller@suse.de

- fix hardlinks accross partitions 
+- fix hardlinks accross partitions

 -------------------------------------------------------------------
 Thu Sep  6 16:07:12 CEST 2007 - maw@suse.de
@ -10007,12 +10058,12 @@ Thu Sep  6 16:07:12 CEST 2007 - maw@suse.de
 -------------------------------------------------------------------
 Mon Sep  3 22:33:09 CEST 2007 - ro@suse.de

- move last change a bit further in specfile 
+- move last change a bit further in specfile

 -------------------------------------------------------------------
 Fri Aug 31 18:36:16 CEST 2007 - maw@suse.de

- Mark a .png file as nonexecutable. 
+- Mark a .png file as nonexecutable.

 -------------------------------------------------------------------
 Tue Aug 28 16:44:08 CEST 2007 - maw@suse.de
@ -10030,7 +10081,7 @@ Wed Aug 22 17:53:03 CEST 2007 - maw@suse.de
  + Add x11-session.patch, supporting X11 session management
    (#227047)
  + Update to version 2.0.0.6
-    * MFSA 2007-26  Privilege escalation through chrome-loaded 
+    * MFSA 2007-26  Privilege escalation through chrome-loaded
                    about:blank windows
    * MFSA 2007-27  Unescaped URIs passed to external programs
                    (only relevant on Windows)
@ -10043,7 +10094,7 @@ Tue Aug 21 09:45:35 CEST 2007 - aj@suse.de
  page.

 -------------------------------------------------------------------
-Thu Aug 16 14:57:27 CEST 2007 - mauro@suse.de 
+Thu Aug 16 14:57:27 CEST 2007 - mauro@suse.de

 - Revert previous change.

@ -10052,7 +10103,7 @@ Tue Aug 14 11:58:23 CEST 2007 - mauro@suse.de

 - Added support for ymp in the mimetypes.rdf
 - Added OneClickInstallUrlHandler for handing the actual call from firefox.
- Fixes bnc #295677 
+- Fixes bnc #295677

 -------------------------------------------------------------------
 Mon Jul 23 18:57:07 CEST 2007 - maw@suse.de
@ -10108,7 +10159,7 @@ Mon Jun  4 19:53:35 CDT 2007 - maw@suse.de
 -------------------------------------------------------------------
 Mon Apr 30 16:49:55 CEST 2007 - ro@suse.de

- added unzip to BuildRequires 
+- added unzip to BuildRequires

 -------------------------------------------------------------------
 Wed Apr 18 14:16:44 CEST 2007 - mfabian@suse.de
@ -10232,7 +10283,7 @@ Sun Nov 12 11:28:00 CET 2006 - aj@suse.de
 -------------------------------------------------------------------
 Thu Nov  9 19:09:46 CET 2006 - jhargadon@suse.de

- updated tango theme 
+- updated tango theme

 -------------------------------------------------------------------
 Sun Oct 29 12:05:46 CET 2006 - aj@suse.de
@ -10269,10 +10320,10 @@ Fri Oct 20 11:27:23 CEST 2006 - mkoenig@suse.de
 - update to version 2.0rc3:
  * New features: Visual Refresh, Built-in phishing protection,
    Enhanced search capabilities, Improved tabbed browsing,
-    Resuming your browsing session, Previewing and subscribing 
+    Resuming your browsing session, Previewing and subscribing
    to Web feeds, Inline spell checking, Live Titles,
-    Improved Add-ons manager, JavaScript 1.7, Extended search 
-    plugin format, Updates to the extension system, 
+    Improved Add-ons manager, JavaScript 1.7, Extended search
+    plugin format, Updates to the extension system,
    Client-side session and persistent storage, SVG text

 -------------------------------------------------------------------
@ -10294,7 +10345,7 @@ Mon Aug 21 12:53:50 CEST 2006 - stark@suse.de
 -------------------------------------------------------------------
 Fri Aug 11 20:51:48 CEST 2006 - stark@suse.de

- fixed crash in dbus component (patch by thoenig #197928) 
+- fixed crash in dbus component (patch by thoenig #197928)
 - use external adresses for PAC configuration (#196506)

 -------------------------------------------------------------------
@ -10321,7 +10372,7 @@ Thu Jun 29 20:13:28 CEST 2006 - stark@suse.de

 - fixed printing crash if the last used printer is not available
  anymore (#187013)
-  
+
 -------------------------------------------------------------------
 Fri Jun 16 22:11:22 CEST 2006 - stark@suse.de

@ -10398,7 +10449,7 @@ Mon Apr 24 08:04:16 CEST 2006 - stark@suse.de
 - get available paper sizes from CUPS (#65482)
 - replaced/removed complicated gconfd reload in %post (#167989)
 - fixed memory leak in clipboard caching (bmo #289897)
-  
+
 -------------------------------------------------------------------
 Tue Apr 11 08:35:53 CEST 2006 - stark@suse.de

@ -10447,7 +10498,7 @@ Wed Feb 22 13:24:58 CET 2006 - stark@suse.de
 Tue Feb 14 06:45:24 CET 2006 - stark@suse.de

 - modified lockdown patches (#67281, #67282)
- applied set of security patches (#148876) 
+- applied set of security patches (#148876)
  bmo bugs: 282105, 307989, 315625, 320459, 323634, 325403, 325947

 -------------------------------------------------------------------
@ -10489,7 +10540,7 @@ Wed Jan 25 21:33:43 CET 2006 - mls@suse.de
 -------------------------------------------------------------------
 Sun Jan 22 17:06:57 CET 2006 - stark@suse.de

- disable Pango if MOZ_ENABLE_PANGO is not set 
+- disable Pango if MOZ_ENABLE_PANGO is not set
  and no typical language which needs Pango is used (#143428)

 -------------------------------------------------------------------
@ -10553,7 +10604,7 @@ Tue Nov 29 21:33:13 CET 2005 - stark@suse.de
 -------------------------------------------------------------------
 Fri Nov 18 07:41:41 CET 2005 - stark@suse.de

- update to 1.5rc3 (20051117) 
+- update to 1.5rc3 (20051117)

 -------------------------------------------------------------------
 Mon Oct 31 08:58:14 CET 2005 - stark@suse.de
@ -10601,7 +10652,7 @@ Tue Sep 20 10:24:16 CEST 2005 - stark@suse.de
 - security update to 1.0.7 (#117619)
  * MFSA 2005-57: IDN heap overrun using soft-hyphens (bmo #307259)
    (enabled IDN pref again)
-  * MFSA 2005-58: 
+  * MFSA 2005-58:
      CAN-2005-2701 Heap overrun in XBM image processing
      CAN-2005-2702 Crash on "zero-width non-joiner" sequence
      CAN-2005-2703 XMLHttpRequest header spoofing
@ -10646,7 +10697,7 @@ Mon Aug 22 06:10:12 CEST 2005 - stark@suse.de
 - install gconf schema for lockdown also on non-NLD
 - added backports (firefox-backports.patch)
  * gtk_im_context_set_cursor_location() is not used (bmo #281339)
-  * fixed crash in imgCacheValidator::OnStartRequest() 
+  * fixed crash in imgCacheValidator::OnStartRequest()
    (bmo #293307)
 - workaround for linking with pangoxft and pangox
  (broken by gtk 2.8 update) (#105764)
@ -10809,7 +10860,7 @@ Sat Apr 23 15:56:08 CEST 2005 - stark@suse.de
 -------------------------------------------------------------------
 Fri Apr 22 02:06:06 CEST 2005 - ro@suse.de

- use mozilla-gcc4.patch 
+- use mozilla-gcc4.patch

 -------------------------------------------------------------------
 Thu Apr 21 12:51:19 CEST 2005 - stark@suse.de
@ -10824,14 +10875,14 @@ Sat Apr 16 13:05:37 CEST 2005 - stark@suse.de
 -------------------------------------------------------------------
 Fri Apr 15 00:10:54 CEST 2005 - ro@suse.de

- fix problem in postinstall script 
+- fix problem in postinstall script

 -------------------------------------------------------------------
 Wed Apr 14 09:20:02 CEST 2005 - stark@suse.de

 - included fixed lockdown patch for NLD
 - linked proxies within Firefox with gnome settings (NLD)
- added gconfd restart procedure to install script 
+- added gconfd restart procedure to install script
  (only needed if gconf changes are done) (#76852)

 -------------------------------------------------------------------
@ -10854,7 +10905,7 @@ Tue Mar 22 12:33:15 CET 2005 - stark@suse.de
 - added default-plugin-less-annoying from mozilla
 - use GTK2 for Flash
 - use system NSPR on SUSE releases after 9.3
- made startscript PIS aware 
+- made startscript PIS aware
 - set g-application-name correctly (bmo #281979)
 - added man-page
 - use GTK system colors
@ -10876,7 +10927,7 @@ Mon Mar 21 18:20:39 CET 2005 - max@suse.de
 -------------------------------------------------------------------
 Thu Mar 17 21:01:11 CET 2005 - stark@suse.de

- updates from upcoming 1.0.2 
+- updates from upcoming 1.0.2
 - added again logic to use Adobe Reader 7 (#70861)
 - fixed crash in ICO decoding (#67142, bmo #245631)
 - preinstall beagle extension (#72920)
@ -10900,7 +10951,7 @@ Wed Mar  9 21:42:05 CET 2005 - stark@suse.de
 Mon Mar  7 20:47:00 CET 2005 - stark@suse.de

 - disable inclusion of acrobat plugin again (#70861)
- don't use gconfd in registration phase (#66381) 
+- don't use gconfd in registration phase (#66381)

 -------------------------------------------------------------------
 Mon Mar  7 16:13:29 CET 2005 - adrian@suse.de
@ -10954,10 +11005,10 @@ Tue Feb 15 10:26:04 CET 2005 - stark@suse.de
 Thu Feb 10 06:57:33 CET 2005 - stark@suse.de

 - additional fireflashing fix (#50635, bmo #280664)
- some more security related fixes 
+- some more security related fixes
  (bmo #268483, #273498, #277322)
 - fire up GTK2 filepicker if GNOME is running
-  
+
 -------------------------------------------------------------------
 Tue Feb  8 07:51:13 CET 2005 - stark@suse.de

@ -11031,7 +11082,7 @@ Thu Nov 18 21:48:05 CET 2004 - stark@suse.de
 -------------------------------------------------------------------
 Thu Nov 11 09:01:58 CET 2004 - stark@suse.de

- made initial window height smaller again 
+- made initial window height smaller again

 -------------------------------------------------------------------
 Tue Nov  9 09:09:06 CET 2004 - stark@suse.de
@ -11041,7 +11092,7 @@ Tue Nov  9 09:09:06 CET 2004 - stark@suse.de
 -------------------------------------------------------------------
 Thu Nov  4 08:22:36 CET 2004 - stark@suse.de

- update to 1.0rc2 
+- update to 1.0rc2

 -------------------------------------------------------------------
 Sat Oct 30 21:27:29 CEST 2004 - stark@suse.de
@ -11073,7 +11124,7 @@ Fri Oct 15 13:51:54 CEST 2004 - stark@suse.de

 -------------------------------------------------------------------
 Wed Oct  6 23:11:01 CEST 2004 - joeshaw@suse.de
- 
+
 - disable gconf settings as default (Ximian #67718)

 -------------------------------------------------------------------
@ -11084,7 +11135,7 @@ Wed Oct  6 07:04:05 CEST 2004 - stark@suse.de
 -------------------------------------------------------------------
 Tue Oct  5 10:09:04 CEST 2004 - stark@suse.de

- small important fix in firefox-download.patch (Ximian #65472) 
+- small important fix in firefox-download.patch (Ximian #65472)

 -------------------------------------------------------------------
 Sun Oct  3 00:02:09 CEST 2004 - stark@suse.de
@ -11107,7 +11158,7 @@ Thu Sep 30 16:14:10 CEST 2004 - shprasad@suse.de
 -------------------------------------------------------------------
 Wed Sep 29 15:54:46 CEST 2004 - stark@suse.de

- fix inclusion of RealPlayer plugin (Ximian #65711) 
+- fix inclusion of RealPlayer plugin (Ximian #65711)

 -------------------------------------------------------------------
 Mon Sep 27 17:51:24 CEST 2004 - joeshaw@suse.de
@ -11141,7 +11192,7 @@ Wed Sep 22 10:23:01 CEST 2004 - stark@suse.de
 - synced NLD package with 9.2 version
 - GTK2 filepicker does now ask for confirmation when overwriting
  files (Ximian #65068) by sagarwala@novell.com
- no direct update function (Ximian #65615) by rganesan@novell.com 
+- no direct update function (Ximian #65615) by rganesan@novell.com
 - throbber linked to Novell (Ximian #66283) by rganesan@novell.com
 - make industrial the default theme for NLD
  (Ximian #65542) by joeshaw@suse.de
@ -11163,13 +11214,13 @@ Mon Sep 20 17:57:38 CEST 2004 - federico@ximian.com
 -------------------------------------------------------------------
 Sun Sep 19 15:42:30 CEST 2004 - stark@suse.de

- use GNOME system prefs only for NLD by default 
+- use GNOME system prefs only for NLD by default
  (fixes bug #45575)

 -------------------------------------------------------------------
 Fri Sep 17 08:59:32 CEST 2004 - stark@suse.de

- joeshaw@suse.de: Update GConf patch so that proxy settings work 
+- joeshaw@suse.de: Update GConf patch so that proxy settings work
  correctly (Ximian #64461)
 - don't search Java on every path (Ximian #65383)
 - added some missing fixes for official release
@ -11180,7 +11231,7 @@ Sat Sep 11 13:25:41 CEST 2004 - stark@suse.de

 - update to official 1.0PR (0.10)
 - adopted gnome-filepicker patch
- removed obsolete CUPS hack from start-script 
+- removed obsolete CUPS hack from start-script
  (Ximian #65635, #65560)

 -------------------------------------------------------------------
@ -11196,7 +11247,7 @@ Mon Sep  6 17:33:07 CEST 2004 - stark@suse.de
 -------------------------------------------------------------------
 Mon Sep  6 13:48:03 CEST 2004 - stark@suse.de

- update to 1.0PR (aka 0.10) 
+- update to 1.0PR (aka 0.10)

 -------------------------------------------------------------------
 Fri Sep  3 21:35:47 CEST 2004 - stark@suse.de
@ -11206,12 +11257,12 @@ Fri Sep  3 21:35:47 CEST 2004 - stark@suse.de
 -------------------------------------------------------------------
 Thu Sep  2 03:08:59 CEST 2004 - dave@suse.de

- Fixed up the .desktop installation on nld 
+- Fixed up the .desktop installation on nld

 -------------------------------------------------------------------
 Wed Sep  1 15:05:48 CEST 2004 - shprasad@suse.de

- Doesn't ask to set Firefox as default web-browser. 
+- Doesn't ask to set Firefox as default web-browser.

 -------------------------------------------------------------------
 Tue Aug 31 14:01:18 CEST 2004 - stark@suse.de
@ -11229,7 +11280,7 @@ Tue Aug 24 17:35:52 CEST 2004 - stark@suse.de
 -------------------------------------------------------------------
 Fri Aug 20 17:12:48 CEST 2004 - stark@suse.de

- update to snapshot (20040820) 
+- update to snapshot (20040820)

 -------------------------------------------------------------------
 Thu Aug 19 08:46:42 CEST 2004 - stark@suse.de
@ -11253,7 +11304,7 @@ Tue Aug 17 13:12:35 CEST 2004 - stark@suse.de
 -------------------------------------------------------------------
 Thu Aug  5 06:27:41 CEST 2004 - stark@suse.de

- security update to 0.9.3 
+- security update to 0.9.3
  (including #43312 and others)
 - handle RealPlayer 9 plugin

@ -11265,13 +11316,13 @@ Mon Aug  2 15:11:51 CEST 2004 - ro@suse.de
 -------------------------------------------------------------------
 Wed Jul 28 08:46:31 CEST 2004 - stark@suse.de

- added fix against certificate spoofing (#43312) 
+- added fix against certificate spoofing (#43312)

 -------------------------------------------------------------------
 Fri Jul 23 06:31:41 CEST 2004 - stark@suse.de

 - update to 0.9.2
- added workaround for extension registry 
+- added workaround for extension registry
 - removed old (incompatible) mozex extension

 -------------------------------------------------------------------
@ -11283,7 +11334,7 @@ Tue Jun 29 06:27:59 CEST 2004 - stark@suse.de
 -------------------------------------------------------------------
 Tue Jun 15 12:42:28 CEST 2004 - stark@suse.de

- update to 0.9 
+- update to 0.9
 - added patch for newer freetype

 -------------------------------------------------------------------
@ -11299,7 +11350,7 @@ Mon Mar 29 11:43:51 CEST 2004 - stark@suse.de
  milestone builds
 - changed profile-dir to .firefox
 - added some needed files
- enabled gnomevfs extension 
+- enabled gnomevfs extension

 -------------------------------------------------------------------
 Fri Mar 26 18:09:34 CET 2004 - uli@suse.de
@ -11309,13 +11360,13 @@ Fri Mar 26 18:09:34 CET 2004 - uli@suse.de
 -------------------------------------------------------------------
 Wed Mar  3 06:52:00 CET 2004 - stark@suse.de

- removed unused patches for GTK2 build 
+- removed unused patches for GTK2 build
 - more fixes for (#35179)

 -------------------------------------------------------------------
 Mon Mar  1 07:32:52 CET 2004 - stark@suse.de

- improved start-script to interact with thunderbird (#35179) 
+- improved start-script to interact with thunderbird (#35179)

 -------------------------------------------------------------------
 Thu Feb 26 06:57:05 CET 2004 - stark@suse.de
@ -11328,15 +11379,15 @@ Thu Feb 26 06:57:05 CET 2004 - stark@suse.de
 -------------------------------------------------------------------
 Tue Feb 24 16:43:17 CET 2004 - stark@suse.de

- fixed optimization for non-x86 archs 
+- fixed optimization for non-x86 archs

 -------------------------------------------------------------------
 Tue Feb 24 07:43:35 CET 2004 - stark@suse.de

- adopted file-list and build options to original distribution 
+- adopted file-list and build options to original distribution
 - added prdtoa fix (#32963)
 - added hook for static firefox build to rebuild-databases.sh
- added compiler flags for security/ (nss-opt.patch) 
+- added compiler flags for security/ (nss-opt.patch)
 - included mozex (mozex.mozdev.org)
 - added -Os as optimization flag

@ -11344,14 +11395,14 @@ Tue Feb 24 07:43:35 CET 2004 - stark@suse.de
 Mon Feb  9 21:59:37 CET 2004 - stark@suse.de

 - renamed to MozillaFirefox
- update to final version 0.8 
+- update to final version 0.8

 -------------------------------------------------------------------
 Fri Feb  6 08:39:15 CET 2004 - stark@suse.de

 - update to Firebird 0.8 (20040205)
 - added mips build fix
- set PS printer list in MozillaFirebird.sh 
+- set PS printer list in MozillaFirebird.sh
 - use lib64 again for biarch platforms

 -------------------------------------------------------------------
@ -11391,20 +11442,20 @@ Thu Jul 10 09:45:49 CEST 2003 - stark@suse.de
 -------------------------------------------------------------------
 Fri Jun 20 06:53:08 CEST 2003 - stark@suse.de

- update to snapshot 20030622 (0.7pre) 
+- update to snapshot 20030622 (0.7pre)

 -------------------------------------------------------------------
 Mon May 19 08:54:46 CEST 2003 - stark@suse.de

- update to snapshot 20030518 (0.6) 
+- update to snapshot 20030518 (0.6)

 -------------------------------------------------------------------
 Sun May  7 10:11:16 CEST 2003 - stark@suse.de

- update to snapshot 20030507 
+- update to snapshot 20030507

 -------------------------------------------------------------------
 Wed Apr 30 13:26:43 CEST 2003 - stark@suse.de

- initial SuSE package 
+- initial SuSE package

--- a/MozillaFirefox.spec
+++ b/MozillaFirefox.spec
@ -28,9 +28,9 @@
 # orig_suffix b3
 # major 69
 # mainver %%major.99
-%define major          132
-%define mainver        %major.0.2
-%define orig_version   132.0.2
+%define major          133
+%define mainver        %major.0
+%define orig_version   133.0
 %define orig_suffix    %{nil}
 %define update_channel release
 %define branding       1
@ -114,7 +114,7 @@ BuildRequires:  libiw-devel
 BuildRequires:  libproxy-devel
 BuildRequires:  makeinfo
 BuildRequires:  mozilla-nspr-devel >= 4.35
-BuildRequires:  mozilla-nss-devel >= 3.105
+BuildRequires:  mozilla-nss-devel >= 3.106
 BuildRequires:  nasm >= 2.14
 BuildRequires:  nodejs >= 12.22.12
 %if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000
@ -724,7 +724,7 @@ exit 0
 %{progdir}/crashreporter
 #%{progdir}/crashreporter.ini
 #%{progdir}/Throbber-small.gif
-%{progdir}/minidump-analyzer
+#%{progdir}/minidump-analyzer
 #%{progdir}/browser/crashreporter-override.ini
 %endif
 %{_datadir}/applications/%{desktop_file_name}.desktop
--- a/firefox-132.0.2.source.tar.xz
+++ b/firefox-132.0.2.source.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:329e1764f4b4e13f11dcf1fd7b3c6d8f80e512e8b7ed5bf65fbe44749c2610e9
-size 570535648
--- a/firefox-132.0.2.source.tar.xz.asc
+++ b/firefox-132.0.2.source.tar.xz.asc
@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEErdcHlHlwDcrf3VM34207E/PZMnQFAmcxUm8ACgkQ4207E/PZ
-MnT0wRAArmyYe/mq41VRqfNWiImndL87tEhJcdi+6GWvnP0Rj7IYi2Wl5ACxuHbk
-dDNP0J8af/ICqpuKmSLfGHfsA8ANBSXncQ1LR3YByutiDHjQ+iRwwwn9wIGrA7PA
-56QKa7WoexeKQiegkL02f4C8f9RNbfI64CNyUknEpj8VQRcbttpx1NSCcCQBc1OZ
-SqBtXJyvdkZVVXi5VeWID+0jpduKcdMMH/n6mAqre8LQlIvISasPfBYkXa+zNHwd
-WtBVgRelbvoqPJWXLBbiiH0y5Tr5MeJZn+JzW7wszc2XosqG5skf8cUkXBWdx8Gd
-2X0TCd8xxMN5YuAVyOVRT8qn+/6sZebM/6Wwovf8D4hKgf91yxR4aqLpLApuLWc6
-54EJkXGYyZsQyXCi5SmzMAvwuCKiIYVgPFYctMsrw7GXajkznIXqOg/VRDB0YpQg
-ius2QTt44NF6Vp7u+NHyI87QYX4HjmMkziqgdqP72K+Qgx+mta93ebleoIMiHykC
-+IP14/OMjZXbSD6N+fGX64Jog5LnAyV+ld4bk2SzsKJkfXWojhIYe0qdZRFL3fDd
-7ERd/LIWeYOPdRHpKfMqh9b7jqp2I9ssC+JmhECXKNc2tFKKWtbJ5EpbGcgnfaqH
-kcqZNfyeGl228SfHolCzssA5JudW2LsyKOHpRwJ0y6ZHChfSrjQ=
-=POwe
-----END PGP SIGNATURE-----
--- a/firefox-133.0.source.tar.xz
+++ b/firefox-133.0.source.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:492b2c9a3b6d215e38ce490624e8b2b9473419accdeaddb24ba00bc6adc3cc60
+size 582165112
--- a/firefox-133.0.source.tar.xz.asc
+++ b/firefox-133.0.source.tar.xz.asc
@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=g/x2
+-----END PGP SIGNATURE-----
--- a/l10n-132.0.2.tar.xz
+++ b/l10n-132.0.2.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:101ebdc00d8f913a6cfeabf2dfeb4262307e096f4afde07c942853065729a813
-size 34999896
--- a/l10n-133.0.tar.xz
+++ b/l10n-133.0.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:767905b231198d4b0cdbc00970cd4de63315bf63fb1d88bf53c844d4e694f8fe
+size 35102084
--- a/8
+++ b/8
@ -1,10 +1,10 @@
 PRODUCT="firefox"
 CHANNEL="release"
-VERSION="132.0.2"
+VERSION="133.0"
 VERSION_SUFFIX=""
-PREV_VERSION="132.0.1"
+PREV_VERSION="132.0.2"
 PREV_VERSION_SUFFIX=""
 #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
 RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"
-RELEASE_TAG="60f8744af5044d16783c2c71ca09d27f3932afce"
-RELEASE_TIMESTAMP="20241110231641"
+RELEASE_TAG="8141aab3ba856d7cbae6c851dd71f2e0cb69649c"
+RELEASE_TIMESTAMP="20241121140525"