mozjs102/mozjs102.changes

-------------------------------------------------------------------
Tue Oct 18 14:14:17 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 102.4.0:
  + Various stability, functionality, and security fixes.
  + CVE-2022-42927: Same-origin policy violation could have leaked
    cross-origin URLs.
  + CVE-2022-42928: Memory Corruption in JS Engine.
  + CVE-2022-42929: Denial of Service via window.print.
  + CVE-2022-42932: Memory safety bugs fixed in Firefox 106 and
    Firefox ESR 102.4.

-------------------------------------------------------------------
Tue Sep 27 14:13:15 UTC 2022 - Fabian Vogt <fvogt@suse.com>

- Adjust name of ICU data file to fix build on big-endian platforms

-------------------------------------------------------------------
Tue Sep 20 07:41:19 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 102.3.0:
  + Various stability, functionality, and security fixes.
  + CVE-2022-3266: Out of bounds read when decoding H264.
  + CVE-2022-40959: Bypassing FeaturePolicy restrictions on
    transient pages.
  + CVE-2022-40960: Data-race when parsing non-UTF-8 URLs in
    threads.
  + CVE-2022-40958: Bypassing Secure Context restriction for
    cookies with __Host and __Secure prefix.
  + CVE-2022-40956: Content-Security-Policy base-uri bypass.
  + CVE-2022-40957: Incoherent instruction cache when building WASM
    on ARM64.
  + CVE-2022-40962: Memory safety bugs fixed in Firefox 105 and
    Firefox ESR 102.3.

-------------------------------------------------------------------
Fri Aug 26 18:08:37 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>

- Initial packaging for openSUSE.
Accepting request 1029775 from GNOME:Next New upstream release OBS-URL: https://build.opensuse.org/request/show/1029775 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/mozjs102?expand=0&rev=7 2022-10-19 13:14:56 +02:00			`-------------------------------------------------------------------`
			`Tue Oct 18 14:14:17 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>`

			`- Update to version 102.4.0:`
			`+ Various stability, functionality, and security fixes.`
			`+ CVE-2022-42927: Same-origin policy violation could have leaked`
			`cross-origin URLs.`
			`+ CVE-2022-42928: Memory Corruption in JS Engine.`
			`+ CVE-2022-42929: Denial of Service via window.print.`
			`+ CVE-2022-42932: Memory safety bugs fixed in Firefox 106 and`
			`Firefox ESR 102.4.`

Accepting request 1006421 from home:favogt:branches:GNOME:Factory - Adjust name of ICU data file to fix build on big-endian platforms OBS-URL: https://build.opensuse.org/request/show/1006421 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/mozjs102?expand=0&rev=5 2022-09-27 22:19:05 +02:00			`-------------------------------------------------------------------`
			`Tue Sep 27 14:13:15 UTC 2022 - Fabian Vogt <fvogt@suse.com>`

			`- Adjust name of ICU data file to fix build on big-endian platforms`

Accepting request 1004912 from GNOME:Next OBS-URL: https://build.opensuse.org/request/show/1004912 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/mozjs102?expand=0&rev=3 2022-09-20 21:32:28 +02:00			`-------------------------------------------------------------------`
			`Tue Sep 20 07:41:19 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>`

			`- Update to version 102.3.0:`
			`+ Various stability, functionality, and security fixes.`
Accepting request 1029775 from GNOME:Next New upstream release OBS-URL: https://build.opensuse.org/request/show/1029775 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/mozjs102?expand=0&rev=7 2022-10-19 13:14:56 +02:00			`+ CVE-2022-3266: Out of bounds read when decoding H264.`
			`+ CVE-2022-40959: Bypassing FeaturePolicy restrictions on`
			`transient pages.`
			`+ CVE-2022-40960: Data-race when parsing non-UTF-8 URLs in`
			`threads.`
			`+ CVE-2022-40958: Bypassing Secure Context restriction for`
			`cookies with __Host and __Secure prefix.`
			`+ CVE-2022-40956: Content-Security-Policy base-uri bypass.`
			`+ CVE-2022-40957: Incoherent instruction cache when building WASM`
			`on ARM64.`
			`+ CVE-2022-40962: Memory safety bugs fixed in Firefox 105 and`
			`Firefox ESR 102.3.`
Accepting request 1004912 from GNOME:Next OBS-URL: https://build.opensuse.org/request/show/1004912 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/mozjs102?expand=0&rev=3 2022-09-20 21:32:28 +02:00
Accepting request 1002335 from GNOME:Next I guess we keep that with us? as being the only consumer? OBS-URL: https://build.opensuse.org/request/show/1002335 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/mozjs102?expand=0&rev=1 2022-09-09 19:53:20 +02:00			`-------------------------------------------------------------------`
			`Fri Aug 26 18:08:37 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>`

			`- Initial packaging for openSUSE.`