diff --git a/MozillaFirefox.changes b/MozillaFirefox.changes index 1c4c70b..d88b5ff 100644 --- a/MozillaFirefox.changes +++ b/MozillaFirefox.changes @@ -1,3 +1,83 @@ +------------------------------------------------------------------- +Sun Mar 17 10:08:51 UTC 2019 - Wolfgang Rosenauer + +- Mozilla Firefox 66.0 + * Increased content processes to 8 + * Added capability to search through open tabs from the tab overflow menu + * New backend for the storage.local WebExtensions API, providing + I/O performance improvements when the extension updates a small + subset of the stored data + * WebExtension keyboard shortcuts can now be managed or overridden + from about:addons + * Improved scrolling behavior: Firefox will now attempt to keep content + from jumping around while a page is loading by supporting scroll + anchoring + * New about:privatebrowsing with search + * A certificate error page now notifies the user of the name of the + certificate issuer that breaks HTTPs connections on intercepted + connections to help troubleshooting possible anti-virus software + issues. + * Fixed an performance issue some Linux users experienced with the + Downloads panel (bmo#1517101) + * Firefox now blocks all autoplay media with sound by default. Users + can add individual sites to an exceptions list or turn the blocking + off. + * System title bar is hidden by default to match Gnome guideline + MFSA 2019-07 (bsc#1129821) + * CVE-2019-9790 (bmo#1525145) + Use-after-free when removing in-use DOM elements + * CVE-2019-9791 (bmo#1530958) + Type inference is incorrect for constructors entered through on-stack + replacement with IonMonkey + * CVE-2019-9792 (bmo#1532599) + IonMonkey leaks JS_OPTIMIZED_OUT magic value to script + * CVE-2019-9793 (bmo#1528829) + Improper bounds checks when Spectre mitigations are disabled + * CVE-2019-9794 (bmo#1530103) (Windows only) + Command line arguments not discarded during execution + * CVE-2019-9795 (bmo#1514682) + Type-confusion in IonMonkey JIT compiler + * CVE-2019-9796 (bmo#1531277) + Use-after-free with SMIL animation controller + * CVE-2019-9797 (bmo#1528909) + Cross-origin theft of images with createImageBitmap + * CVE-2019-9798 (bmo#1527534) (Android only) + Library is loaded from world writable APITRACE_LIB location + * CVE-2019-9799 (bmo#1505678) + Information disclosure via IPC channel messages + * CVE-2019-9801 (bmo#1527717) (Windows only) + Windows programs that are not 'URL Handlers' are exposed to web content + * CVE-2019-9802 (bmo#1415508) + Chrome process information leak + * CVE-2019-9803 (bmo#1515863, bmo#1437009) + Upgrade-Insecure-Requests incorrectly enforced for same-origin navigation + * CVE-2019-9804 (bmo#1518026) (MacOS only) + Code execution through 'Copy as cURL' in Firefox Developer Tools on macOS + * CVE-2019-9805 (bmo#1521360) + Potential use of uninitialized memory in Prio + * CVE-2019-9806 (bmo#1525267) + Denial of service through successive FTP authorization prompts + * CVE-2019-9807 (bmo#1362050) + Text sent through FTP connection can be incorporated into alert messages + * CVE-2019-9809 (bmo#1282430, bmo#1523249) + Denial of service through FTP modal alert error messages + * CVE-2019-9808 (bmo#1434634) + WebRTC permissions can display incorrect origin with data: and blob: URLs + * CVE-2019-9789 bmo#1520483, bmo#1522987, bmo#1528199, bmo#1519337, + bmo#1525549, bmo#1516179, bmo#1518524, bmo#1518331, bmo#1526579, + bmo#1512567, bmo#1524335, bmo#1448505, bmo#1518821 + Memory safety bugs fixed in Firefox 66 + * CVE-2019-9788 bmo#1518001, bmo#1521304, bmo#1521214, bmo#1506665, + bmo#1516834, bmo#1518774, bmo#1524755, bmo#1523362, bmo#1524214, bmo#1529203 + Memory safety bugs fixed in Firefox 66 and Firefox ESR 60.6 +- updated build/runtime requirements + * mozilla-nss >= 3.42.1 + * cargo/rust >= 1.31 + * rust-cbindgen >= 0.6.8 + * nasm >= 2.13 (new) +- removed obsolete patch + * mozilla-bmo256180.patch + ------------------------------------------------------------------- Tue Mar 5 10:17:01 UTC 2019 - Stephan Kulow diff --git a/MozillaFirefox.spec b/MozillaFirefox.spec index 835da0d..f06048d 100644 --- a/MozillaFirefox.spec +++ b/MozillaFirefox.spec @@ -18,13 +18,13 @@ # changed with every update -%define major 65 -%define mainver %major.0.1 -%define orig_version 65.0.1 +%define major 66 +%define mainver %major.0 +%define orig_version 66.0 %define orig_suffix %{nil} %define update_channel release %define branding 1 -%define releasedate 20190211233335 +%define releasedate 20190314174725 %define source_prefix firefox-%{orig_version} # always build with GCC as SUSE Security Team requires that @@ -69,7 +69,7 @@ BuildRequires: gcc7-c++ %else BuildRequires: gcc-c++ %endif -BuildRequires: cargo >= 1.30 +BuildRequires: cargo >= 1.31 BuildRequires: libXcomposite-devel BuildRequires: libcurl-devel BuildRequires: libidl-devel @@ -78,13 +78,14 @@ BuildRequires: libnotify-devel BuildRequires: libproxy-devel BuildRequires: makeinfo BuildRequires: mozilla-nspr-devel >= 4.20 -BuildRequires: mozilla-nss-devel >= 3.41 +BuildRequires: mozilla-nss-devel >= 3.42.1 +BuildRequires: nasm >= 2.13 BuildRequires: nodejs >= 8.11 BuildRequires: python-devel BuildRequires: python2-xml BuildRequires: python3 >= 3.5 -BuildRequires: rust >= 1.30 -BuildRequires: rust-cbindgen >= 0.6.7 +BuildRequires: rust >= 1.31 +BuildRequires: rust-cbindgen >= 0.6.8 BuildRequires: startup-notification-devel BuildRequires: unzip BuildRequires: update-desktop-files @@ -160,7 +161,6 @@ Patch2: mozilla-kde.patch Patch3: mozilla-ntlm-full-path.patch Patch4: mozilla-openaes-decl.patch Patch7: mozilla-aarch64-startup-crash.patch -Patch8: mozilla-bmo256180.patch Patch9: mozilla-bmo1463035.patch Patch10: mozilla-cubeb-noreturn.patch # Firefox/browser @@ -267,7 +267,6 @@ cd $RPM_BUILD_DIR/%{source_prefix} %patch3 -p1 %patch4 -p1 %patch7 -p1 -%patch8 -p1 %patch9 -p1 %patch10 -p1 # Firefox @@ -359,7 +358,8 @@ ac_add_options --enable-startup-notification #ac_add_options --enable-chrome-format=jar ac_add_options --enable-update-channel=%{update_channel} ac_add_options --with-mozilla-api-keyfile=%{SOURCE18} -ac_add_options --with-google-api-keyfile=%{SOURCE19} +ac_add_options --with-google-location-service-api-keyfile=%{SOURCE19} +ac_add_options --with-google-safebrowsing-api-keyfile=%{SOURCE19} ac_add_options --with-unsigned-addon-scopes=app %if %branding ac_add_options --enable-official-branding diff --git a/compare-locales.tar.xz b/compare-locales.tar.xz index b4be37a..b604fbb 100644 --- a/compare-locales.tar.xz +++ b/compare-locales.tar.xz @@ -1,3 +1,3 @@ version https://git-lfs.github.com/spec/v1 -oid sha256:3d6e6d872570a25ef1c79b4ceac28b3199321c3606e5c3c115e435d3cce92608 -size 28372 +oid sha256:0d8caf841081c71595005496010130f394420abb1597d461a1a5ef4e53f9ec0c +size 28392 diff --git a/create-tar.sh b/create-tar.sh index 13fa846..7dde324 100644 --- a/create-tar.sh +++ b/create-tar.sh @@ -7,8 +7,8 @@ CHANNEL="release" BRANCH="releases/mozilla-$CHANNEL" -RELEASE_TAG="1ea7b51ef5bb91bdc34fb7406fd4d35ed7961363" -VERSION="65.0.1" +RELEASE_TAG="164a57c0cdf0088e786e6b966e34fdd3799671d1" +VERSION="66.0" VERSION_SUFFIX="" LOCALE_FILE="firefox-$VERSION/browser/locales/l10n-changesets.json" diff --git a/firefox-65.0.1.source.tar.xz b/firefox-65.0.1.source.tar.xz deleted file mode 100644 index c58382c..0000000 --- a/firefox-65.0.1.source.tar.xz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:67e517f6d1ea8aa5c8f32404b8756f3205c3550917a91a19b0a0edccc656a3cc -size 276816148 diff --git a/firefox-65.0.1.source.tar.xz.asc b/firefox-65.0.1.source.tar.xz.asc deleted file mode 100644 index 81d7ccf..0000000 --- a/firefox-65.0.1.source.tar.xz.asc +++ /dev/null @@ -1,17 +0,0 @@ ------BEGIN PGP SIGNATURE----- -Version: GnuPG v2.0.14 (GNU/Linux) - -iQIcBAABCAAGBQJcYimSAAoJELu+vbskxvNV7jMQALO4YSnT/C6p5G83WEKN79oo -/KTibnBddU6zUScHbnZDvISV8f38nuOhPo8EdmeDS24vMUzP8SvUJHRjU0q0Oei4 -9sNrP7kL7gKiO92QVmnidh6xv9zrHsF7YzzcDwoRKDuoYjU2prr9LRcnh0OKTrON -U1dWIEkiDkhV+RzbFhog3IsFspA+5Xx2FUefUKb2R8IoxiE5NqrwhvpM5CbbVScH -6xbi//ei5yVypxSv99RD+qfk/hYGxhgzWJB2DVaNPrRjrOStDFf4Hil8Uwl3cKU+ -4AXTfo5xWmw6mXWp3usSrss3IRBGK1z8dYf2UyZhZaMcCV7sUy6sWKKrXyYqxR+P -E5Ylir6GOPNvYys1zaEkeodQo+nBt/U446514ZYaCp7Zvl9W2r2OGtQ1VTO0It9y -+dkNbxECUrM5T7Oiv3CG0e+BIRuX8pMSqWzAC7/Yl5Hxqkp9XQLx1P3dcKoKusw5 -OX0pUYtoAiM+sepPuurUc+UqpswLwdJx/XwR46icyz8oQoINSoyIvIAm5Lufx82M -bHY1CejdEb2Sgge8mzr2vn0T7Fs+9B9VmBAnyOZrXNv4/rdee1MtBvDXwfL0dhxg -w4Hl2L7y1aWJicNagK4B1GpaWCBcRteVzrkIEzk+/JqCiM+vB2IGXqLxnxcgi4OJ -toHbIuS/oYjU7UAj+hUI -=tFO8 ------END PGP SIGNATURE----- diff --git a/firefox-66.0.source.tar.xz b/firefox-66.0.source.tar.xz new file mode 100644 index 0000000..d7f7e70 --- /dev/null +++ b/firefox-66.0.source.tar.xz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:c37b253294826b6d14864dc38342edd5b174e76a272a7e5dbaca007eb2cac7b0 +size 281516416 diff --git a/firefox-66.0.source.tar.xz.asc b/firefox-66.0.source.tar.xz.asc new file mode 100644 index 0000000..d430cab --- /dev/null +++ b/firefox-66.0.source.tar.xz.asc @@ -0,0 +1,17 @@ +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v2.0.14 (GNU/Linux) + +iQIcBAABCAAGBQJcitNSAAoJELu+vbskxvNVvXkP/3rShiOGBcBZTf/pFHVbv6ZH +BqVjaFusWpnyz3DvFkSyVLOgqW0lSytL66SYP0xqCIvngmiT8xNTX4Z8gX7F77xw +W0yYdH7trNbB4otHD7fzWiP2qV+d1Un8PsJHyOayPFM6Vccg0IXkrD0t7fgtZSLq +zN2ahURRVLXMHouE7bQKFL6X3DLf2R0Rk4sCOn/q0K/ENoXdVLNLcpELzAQLxboZ +yRPDv2fv/+bBxdgxbeT2i2beyuKw6iZ2VmlOhr92Qt92XHw533j5Cd3meWxzDK0l +Sk4PYZBn4D1y9yb2OHzONNQMlyThy+sLKp5pRf3FcTSbVxoI9Tr4vg/s1pbzhN/F +Mjd8kMZMPvUyeT4t3WOEyF+lHPmgcMXLYSdisPV1dNo7x53LNp0+avur29x9Ljtb ++U4s9S5/Oz5TXvxW3Lkyikw7hGkB82QxS3/TmxSthgx1Gz046uUY9eRd1wQlQKeX +v6PKmXGnYSwoT6qBX6ohA2LXHPseQ6tRc0EkRH36NlugjuVNPCU03BF/9xSw55Dq +EFH/KefH3X7KbUWqHUBeg1Q/74FLTHSUfpDZ45CfczciL7HRCWXbkLVPeP2I2SR2 +hyhUQ4i8ya+uZ3tS6LyMu3J3LCQCTYV3sNq0phub6su4yqXslDSns4uz6+LOHwNk +zTZRJb/k/lDBBCzb2l7f +=NjX9 +-----END PGP SIGNATURE----- diff --git a/firefox-kde.patch b/firefox-kde.patch index e2fc9d2..962ddd0 100644 --- a/firefox-kde.patch +++ b/firefox-kde.patch @@ -1,11 +1,11 @@ # HG changeset patch -# Parent 693f0baece29cc958a7d91b89fd12e3b89a502e3 +# Parent 87262204aa945e6fce864193d103a93659bf76f6 diff --git a/browser/base/content/browser-kde.xul b/browser/base/content/browser-kde.xul new file mode 100644 --- /dev/null +++ b/browser/base/content/browser-kde.xul -@@ -0,0 +1,1395 @@ +@@ -0,0 +1,1408 @@ +#filter substitution + +# -*- Mode: HTML -*- @@ -276,6 +276,8 @@ new file mode 100644 + noautofocus="true" + hidden="true" + flip="none" ++ consumeoutsideclicks="never" ++ norolluponanchor="true" + level="parent"> + + @@ -579,6 +581,7 @@ new file mode 100644 + position="bottomcenter topright" + tabspecific="true" + noautofocus="true" ++ pocket-title="&saveToPocketCmd.label;" + copyURL-title="&pageAction.copyLink.label;" + emailLink-title="&emailPageCmd.label;" + sendToDevice-notReadyTitle="&sendToDevice.syncNotReady.label;" @@ -771,13 +774,11 @@ new file mode 100644 + aria-label="&tabsToolbar.label;" + context="toolbar-context-menu" + flex="1"> -+ -+ + ++ ++ ++ + -+ -+ + -+ -+ + -+ ++ ++ ++ + +#ifndef XP_MACOSX +