1
0

Accepting request 1170867 from mozilla:Factory

OBS-URL: https://build.opensuse.org/request/show/1170867
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/MozillaFirefox?expand=0&rev=426
This commit is contained in:
Dominique Leuenberger 2024-05-01 12:54:55 +00:00 committed by Git OBS Bridge
commit 640c98451f
8 changed files with 66 additions and 37 deletions

View File

@ -1,10 +1,34 @@
-------------------------------------------------------------------
Mon Apr 29 18:17:48 UTC 2024 - Andreas Stieger <andreas.stieger@gmx.de>
- Mozilla Firefox 125.0.3
* Fixed: Fixed an extra blank tab with an address of
`https://0.0.0.1` sometimes appearing when attempting to
launch Firefox when it is already running (bmo#1892612).
* Fixed: Fixed an issue that could cause incorrect font
selection in some situations for users with the Japanese
locale set (bmo#1892363).
* Fixed: Fixed text corruption when dragging text containing
unicode characters on Linux systems (bmo#1888202).
* Fixed: Fixed a correctness error when checking
`arguments.length` (and not using arguments otherwise) inside
of a generator or async function (bmo#1892699).
* Fixed: Fixed an issue that could lead to inconsistent focus
handling of `<select>` elements when opened (bmo#1893177).
-------------------------------------------------------------------
Wed Apr 24 08:43:53 UTC 2024 - Manfred Hollstein <manfred.h@gmx.net>
- Fix build on Leap by requiring gcc13 which has been made available
as an update.
-------------------------------------------------------------------
Sun Apr 21 04:49:23 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org>
- Mozilla Firefox 125.0.2
* The 125.0 and 125.0.1 releases were skipped due to problems with a
feature that proactively blocked downloads from potentially
untrustworthy URLs
* The 125.0 and 125.0.1 releases were skipped due to problems
with a feature that proactively blocked downloads from
potentially untrustworthy URLs.
* New: Firefox now supports the AV1 codec for Encrypted Media
Extensions (EME), enabling higher-quality playback from video
streaming providers
@ -81,18 +105,21 @@ Sun Apr 21 04:49:23 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org>
* CVE-2024-3852 (bmo#1883542)
GetBoundName in the JIT returned the wrong object
* CVE-2024-3853 (bmo#1884427)
Use-after-free if garbage collection runs during realm initialization
Use-after-free if garbage collection runs during realm
initialization
* CVE-2024-3854 (bmo#1884552)
Out-of-bounds-read after mis-optimized switch statement
* CVE-2024-3855 (bmo#1885828)
Incorrect JIT optimization of MSubstr leads to out-of-bounds reads
Incorrect JIT optimization of MSubstr leads to out-of-bounds
reads
* CVE-2024-3856 (bmo#1885829)
Use-after-free in WASM garbage collection
* CVE-2024-3857 (bmo#1886683)
Incorrect JITting of arguments led to use-after-free during
garbage collection
* CVE-2024-3858 (bmo#1888892)
Corrupt pointer dereference in js::CheckTracedThing<js::Shape>
Corrupt pointer dereference in
js::CheckTracedThing<js::Shape>
* CVE-2024-3859 (bmo#1874489)
Integer-overflow led to out-of-bounds-read in the OpenType
sanitizer
@ -104,14 +131,16 @@ Sun Apr 21 04:49:23 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org>
Potential use of uninitialized memory in MarkStack assignment
operator on self-assignment
* CVE-2024-3863 (bmo#1885855)
Download Protections were bypassed by .xrm-ms files on Windows
Download Protections were bypassed by .xrm-ms files on
Windows
* CVE-2024-3302 (bmo#1881183,
bmo#https://kb.cert.org/vuls/id/421644)
Denial of Service using HTTP/2 CONTINUATION frames
* CVE-2024-3864 (bmo#1888333)
Memory safety bug fixed in Firefox 125, Firefox ESR 115.10,
and Thunderbird 115.10
* CVE-2024-3865 (bmo#1881076, bmo#1884887, bmo#1885359, bmo#1889049)
* CVE-2024-3865 (bmo#1881076, bmo#1884887, bmo#1885359,
bmo#1889049)
Memory safety bugs fixed in Firefox 125
- requires
NSS 3.99

View File

@ -29,8 +29,8 @@
# major 69
# mainver %%major.99
%define major 125
%define mainver %major.0.2
%define orig_version 125.0.2
%define mainver %major.0.3
%define orig_version 125.0.3
%define orig_suffix %{nil}
%define update_channel release
%define branding 1
@ -98,8 +98,8 @@ BuildRequires: dejavu-fonts
BuildRequires: fdupes
BuildRequires: memory-constraints
%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150600
BuildRequires: gcc12
BuildRequires: gcc12-c++
BuildRequires: gcc13
BuildRequires: gcc13-c++
%else
BuildRequires: gcc-c++
%endif
@ -382,8 +382,8 @@ export MOZ_TELEMETRY_REPORTING=1
export MACH_BUILD_PYTHON_NATIVE_PACKAGE_SOURCE=system
export CFLAGS="%{optflags}"
%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150600
export CC=gcc-12
export CXX=g++-12
export CC=gcc-13
export CXX=g++-13
%else
%if 0%{?clang_build} == 0
export CC=gcc

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:69d0563361bab375407b25430c782346bec7623f3f1005e7dc505351ac69f799
size 544666944

View File

@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----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=H/Mp
-----END PGP SIGNATURE-----

View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:461c66b85e4a0345dcce422d3b66212489f3cca8f22a9a8f43a07a0c98bd5616
size 551590872

View File

@ -0,0 +1,16 @@
-----BEGIN PGP SIGNATURE-----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=0RYQ
-----END PGP SIGNATURE-----

View File

@ -1,10 +1,10 @@
PRODUCT="firefox"
CHANNEL="release"
VERSION="125.0.2"
VERSION="125.0.3"
VERSION_SUFFIX=""
PREV_VERSION="125.0.1"
PREV_VERSION="125.0.2"
PREV_VERSION_SUFFIX=""
#SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"
RELEASE_TAG="c5ee44e4135571bec3220340242f9189c59ca5ba"
RELEASE_TIMESTAMP="20240419144423"
RELEASE_TAG="899257fc1af08f2b141cd16d4b6151c0e0b47a9a"
RELEASE_TIMESTAMP="20240425211020"