pool/MozillaFirefox
SHA256
6
0
Fork 1
Code Issues Pull Requests Packages Projects Releases Wiki Activity
MozillaFirefox/firefox-70.0.source.tar.xz.asc
Wolfgang Rosenauer 9b8d4398e7 - Mozilla Firefox 70.0 
* more privacy protections from Enhanced Tracking Protection
  * Firefox Lockwise passwordmanager
  * Improvements to core engine components, for better browsing on more sites
  * Improved privacy and security indicators
  MFSA 2019-34
  * CVE-2018-6156 (bmo#1480088)
    Heap buffer overflow in FEC processing in WebRTC
  * CVE-2019-15903 (bmo#1584907)
    Heap overflow in expat library in XML_GetCurrentLineNumber
  * CVE-2019-11757 (bmo#1577107)
    Use-after-free when creating index updates in IndexedDB
  * CVE-2019-11759 (bmo#1577953)
    Stack buffer overflow in HKDF output
  * CVE-2019-11760 (bmo#1577719)
    Stack buffer overflow in WebRTC networking
  * CVE-2019-11761 (bmo#1561502)
    Unintended access to a privileged JSONView object
  * CVE-2019-11762 (bmo#1582857)
    document.domain-based origin isolation has same-origin-property violation
  * CVE-2019-11763 (bmo#1584216)
    Incorrect HTML parsing results in XSS bypass technique
  * CVE-2019-11765 (bmo#1562582)
    Incorrect permissions could be granted to a website
  * CVE-2019-17000 (bmo#1441468)
    CSP bypass using object tag with data: URI
  * CVE-2019-17001 (bmo#1587976)
    CSP bypass using object tag when script-src 'none' is specified
  * CVE-2019-17002 (bmo#1561056)
    upgrade-insecure-requests was not being honored for links dragged and dropped

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=786
2019-10-25 09:13:30 +00:00

17 lines
833 B
Plaintext
Raw Blame History

-----BEGIN PGP SIGNATURE-----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=8Xkb
-----END PGP SIGNATURE-----
Reference in New Issue View Git Blame Copy Permalink