rpm/MozillaFirefox
SHA256
1
0
Fork 0
forked from pool/MozillaFirefox
Code Pull Requests Activity
824 Commits 2 Branches 0 Tags 12 MiB
3c65948f42
Commit Graph

660 Commits

Author SHA256 Message Date
Wolfgang Rosenauer
3c65948f42 Accepting request 1132141 from home:AndreasStieger:branches:mozilla:Factory 
Mozilla Firefox 120.0.1 (boo#1217910)

OBS-URL: https://build.opensuse.org/request/show/1132141
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1122
 2023-12-08 21:21:52 +00:00
Wolfgang Rosenauer
9a9faccc26 - Mozilla Firefox 120.0 
https://www.mozilla.org/en-US/firefox/120.0/releasenotes
  MFSA 2023-49 (bsc#1217230)
  * CVE-2023-6204 (bmo#1841050)
    Out-of-bound memory access in WebGL2 blitFramebuffer
  * CVE-2023-6205 (bmo#1854076)
    Use-after-free in MessagePort::Entangled
  * CVE-2023-6206 (bmo#1857430)
    Clickjacking permission prompts using the fullscreen
    transition
  * CVE-2023-6207 (bmo#1861344)
    Use-after-free in ReadableByteStreamQueueEntry::Buffer
  * CVE-2023-6208 (bmo#1855345)
    Using Selection API would copy contents into X11 primary
    selection.
  * CVE-2023-6209 (bmo#1858570)
    Incorrect parsing of relative URLs starting with "///"
  * CVE-2023-6210 (bmo#1801501)
    Mixed-content resources not blocked in a javascript: pop-up
  * CVE-2023-6211 (bmo#1850200)
    Clickjacking to load insecure pages in HTTPS-only mode
  * CVE-2023-6212 (bmo#1658432, bmo#1820983, bmo#1829252,
    bmo#1856072, bmo#1856091, bmo#1859030, bmo#1860943,
    bmo#1862782)
    Memory safety bugs fixed in Firefox 120, Firefox ESR 115.5,
    and Thunderbird 115.5
  * CVE-2023-6213 (bmo#1849265, bmo#1851118, bmo#1854911)
    Memory safety bugs fixed in Firefox 120
- rebased patches

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1120
 2023-11-27 14:33:21 +00:00
Wolfgang Rosenauer
0682eecc12 Accepting request 1124728 from home:AndreasStieger:branches:mozilla:Factory 
Mozilla Firefox 119.0.1

OBS-URL: https://build.opensuse.org/request/show/1124728
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1118
 2023-11-09 21:23:49 +00:00
Wolfgang Rosenauer
ea5dd3dbee - Mozilla Firefox 119.0 
https://www.mozilla.org/en-US/firefox/119.0/releasenotes
  MFSA 2023-45 (bsc#1216338)
  * CVE-2023-5721 (bmo#1830820)
    Queued up rendering could have allowed websites to clickjack
  * CVE-2023-5722 (bmo#1738426)
    Cross-Origin size and header leakage
  * CVE-2023-5723 (bmo#1802057)
    Invalid cookie characters could have led to unexpected errors
  * CVE-2023-5724 (bmo#1836705)
    Large WebGL draw could have led to a crash
  * CVE-2023-5725 (bmo#1845739)
    WebExtensions could open arbitrary URLs
  * CVE-2023-5726 (bmo#1846205)
    Full screen notification obscured by file open dialog on macOS
  * CVE-2023-5727 (bmo#1847180)
    Download Protections were bypassed by .msix, .msixbundle,
    .appx, and .appxbundle files on Windows
  * CVE-2023-5728 (bmo#1852729)
    Improper object tracking during GC in the JavaScript engine
    could have led to a crash.
  * CVE-2023-5729 (bmo#1823720)
    Fullscreen notification dialog could have been obscured by
    WebAuthn prompts
  * CVE-2023-5730 (bmo#1836607, bmo#1840918, bmo#1848694, bmo#1848833,
    bmo#1850191, bmo#1850259, bmo#1852596, bmo#1853201, bmo#1854002,
    bmo#1855306, bmo#1855640, bmo#1856695)
    Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4,
    and Thunderbird 115.4.1
  * CVE-2023-5731 (bmo#1690111, bmo#1721904, bmo#1851803, bmo#1854068)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1115
 2023-10-27 07:18:39 +00:00
Wolfgang Rosenauer
3e7afa6df6 - Activate KDE integration again, included rebased and updated patches 
(upstream removed special files handling for preferences but that
  has no effect since we haven't shipped obsolete kde.js for a while)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1113
 2023-10-14 12:04:21 +00:00
Wolfgang Rosenauer
93544be53d Accepting request 1114576 from home:Thaodan:branches:mozilla:Factory 
- Active KDE integration again, included rebased and updated patches

OBS-URL: https://build.opensuse.org/request/show/1114576
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1112
 2023-10-14 12:01:14 +00:00
Wolfgang Rosenauer
865d7485c2 Accepting request 1117058 from home:AndreasStieger:branches:mozilla:Factory 
Mozilla Firefox 118.0.2

OBS-URL: https://build.opensuse.org/request/show/1117058
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1111
 2023-10-12 08:10:17 +00:00
Wolfgang Rosenauer
aeb0620d41 - Mozilla Firefox 118.0.1 
MFSA 2023-44 (bsc#1215814)
  * CVE-2023-5217 (bmo#1855550),
    Heap buffer overflow in libvpx

- Mozilla Firefox 118.0
  MFSA 2023-41 (bsc#1215575)
  * CVE-2023-5168 (bmo#1846683)
    Out-of-bounds write in FilterNodeD2D1
  * CVE-2023-5169 (bmo#1846685)
    Out-of-bounds write in PathOps
  * CVE-2023-5170 (bmo#1846686)
    Memory leak from a privileged process
  * CVE-2023-5171 (bmo#1851599)
    Use-after-free in Ion Compiler
  * CVE-2023-5172 (bmo#1852218)
    Memory Corruption in Ion Hints
  * CVE-2023-5173 (bmo#1823172)
    Out-of-bounds write in HTTP Alternate Services
  * CVE-2023-5174 (bmo#1848454)
    Double-free in process spawning on Windows
  * CVE-2023-5175 (bmo#1849704)
    Use-after-free of ImageBitmap during process shutdown
  * CVE-2023-5176 (bmo#1836353, bmo#1842674, bmo#1843824, bmo#1843962,
    bmo#1848890, bmo#1850180, bmo#1850983, bmo#1851195)
    Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3,
    and Thunderbird 115.3
- requires NSS 3.93
- deactivated KDE integration temporarily

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1108
 2023-09-29 08:31:52 +00:00
Wolfgang Rosenauer
226302d631 Accepting request 1113090 from home:biggestsonicfan:branches:mozilla:Factory 
Fixes 1822730, which will be blocked from merging until 1768383 is resolved.

OBS-URL: https://build.opensuse.org/request/show/1113090
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1106
 2023-09-23 07:28:40 +00:00
Wolfgang Rosenauer
202b7e7c4a Accepting request 1110680 from home:AndreasStieger:branches:mozilla:Factory 
117.0.1 MFSA 2023-40 CVE-2023-4863 (boo#1215231)

OBS-URL: https://build.opensuse.org/request/show/1110680
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1104
 2023-09-12 17:59:40 +00:00
Wolfgang Rosenauer
bbbb712787 - Mozilla Firefox 117.0 
https://www.mozilla.org/en-US/firefox/117.0/releasenotes
  MFSA 2023-34 (bsc#1214606)
  * CVE-2023-4573 (bmo#1846687)
    Memory corruption in IPC CanvasTranslator
  * CVE-2023-4574 (bmo#1846688)
    Memory corruption in IPC ColorPickerShownCallback
  * CVE-2023-4575 (bmo#1846689)
    Memory corruption in IPC FilePickerShownCallback
  * CVE-2023-4576 (bmo#1846694)
    Integer Overflow in RecordedSourceSurfaceCreation
  * CVE-2023-4577 (bmo#1847397)
    Memory corruption in JIT UpdateRegExpStatics
  * CVE-2023-4578 (bmo#1839007)
    Error reporting methods in SpiderMonkey could have triggered
    an Out of Memory Exception
  * CVE-2023-4579 (bmo#1842766)
    Persisted search terms were formatted as URLs
  * CVE-2023-4580 (bmo#1843046)
    Push notifications saved to disk unencrypted
  * CVE-2023-4581 (bmo#1843758)
    XLL file extensions were downloadable without warnings
  * CVE-2023-4582 (bmo#1773874)
    Buffer Overflow in WebGL glGetProgramiv
  * CVE-2023-4583 (bmo#1842030)
    Browsing Context potentially not cleared when closing Private
    Window
  * CVE-2023-4584 (bmo#1843968, bmo#1845205, bmo#1846080,
    bmo#1846526, bmo#1847529)
    Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15,

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1102
 2023-08-29 12:55:43 +00:00
Wolfgang Rosenauer
42f90b08c5 Accepting request 1104460 from home:AndreasStieger:branches:mozilla:Factory 
Mozilla Firefox 116.0.3

OBS-URL: https://build.opensuse.org/request/show/1104460
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1100
 2023-08-17 19:11:10 +00:00
Wolfgang Rosenauer
afd2ed8433 Accepting request 1104036 from home:adamm:ldbug 
- After further testing on memory consumption during linking, it's
  safe to remove most of the memory reducing options for ix86 linker.
  A combination of these actually resulted in the OOM condition.
  It's even possible to add basic debugging info while keeping
  linker memory consumption at about 2GB

OBS-URL: https://build.opensuse.org/request/show/1104036
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1099
 2023-08-15 21:01:22 +00:00
Wolfgang Rosenauer
062ac2aed4 Accepting request 1103590 from home:adamm:ldbug 
- Remove -j1 limit on x86. The build runs on 64-bit kernel with a
  32-bit userland. This means there is plenty of memory available
  but userland is limited to just under 4GB per process.

OBS-URL: https://build.opensuse.org/request/show/1103590
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1098
 2023-08-12 20:13:40 +00:00
Wolfgang Rosenauer
5ef499faa4 OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1096 2023-08-11 14:23:29 +00:00
Wolfgang Rosenauer
3a86056012 Accepting request 1103454 from home:adamm:branches:mozilla:Factory 
- Fix OOM when linking on 32-bit

OBS-URL: https://build.opensuse.org/request/show/1103454
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1095
 2023-08-11 14:20:02 +00:00
Wolfgang Rosenauer
155b3d9c31 Accepting request 1103362 from home:AndreasStieger:branches:mozilla:Factory 
- Mozilla Firefox 116.0.2
  * fixes for other platforms

OBS-URL: https://build.opensuse.org/request/show/1103362
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1094
 2023-08-10 20:13:00 +00:00
Wolfgang Rosenauer
49fcd30862 OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1093 2023-08-07 07:24:23 +00:00
Wolfgang Rosenauer
ef55d0543e Accepting request 1102535 from home:Andreas_Schwab:riscv:mozilla 
- ship vaapitest binary for supported archs

OBS-URL: https://build.opensuse.org/request/show/1102535
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1092
 2023-08-06 07:59:16 +00:00
Wolfgang Rosenauer
b4c782f656 Accepting request 1102496 from home:AndreasStieger:branches:mozilla:Factory 
- Mozilla Firefox 116.0.1
  * fixes for other platforms

OBS-URL: https://build.opensuse.org/request/show/1102496
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1091
 2023-08-06 07:58:18 +00:00
Wolfgang Rosenauer
9f4536dddd OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1090 2023-08-04 17:04:22 +00:00
Wolfgang Rosenauer
119d807d14 OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1089 2023-08-04 17:03:28 +00:00
Wolfgang Rosenauer
28cc6cc335 - drop obsolete mozilla-bmo1775202.patch 
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1088
 2023-08-04 10:40:33 +00:00
Wolfgang Rosenauer
d9a83463ef - re-enable ppc64le 
- ship v4l2test binary for supported archs

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1087
 2023-08-04 10:12:18 +00:00
Wolfgang Rosenauer
b33933d92e OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1086 2023-08-03 06:11:35 +00:00
Wolfgang Rosenauer
af84a81635 OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1085 2023-08-03 04:42:17 +00:00
Wolfgang Rosenauer
e2f2e91dcf OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1084 2023-08-02 18:35:36 +00:00
Wolfgang Rosenauer
f8dc58b23c OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1083 2023-08-02 12:41:25 +00:00
Wolfgang Rosenauer
ebfb67fa55 OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1082 2023-08-02 09:08:02 +00:00
Wolfgang Rosenauer
a83fab0562 OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1081 2023-08-02 07:55:21 +00:00
Wolfgang Rosenauer
03b7e7950d * https://www.mozilla.org/en-US/firefox/116.0/releasenotes/ 
MFSA 2023-29 (bsc#1213746)
  * CVE-2023-4045 (bmo#1833876)
    Offscreen Canvas could have bypassed cross-origin restrictions
  * CVE-2023-4046 (bmo#1837686)
    Incorrect value used during WASM compilation
  * CVE-2023-4047 (bmo#1839073)
    Potential permissions request bypass via clickjacking
  * CVE-2023-4048 (bmo#1841368)
    Crash in DOMParser due to out-of-memory conditions
  * CVE-2023-4049 (bmo#1842658)
    Fix potential race conditions when releasing platform objects
  * CVE-2023-4050 (bmo#1843038)
    Stack buffer overflow in StorageManager
  * CVE-2023-4051 (bmo#1821884)
    Full screen notification obscured by file open dialog
  * CVE-2023-4052 (bmo#1824420)
    File deletion and privilege escalation through Firefox uninstaller
  * CVE-2023-4053 (bmo#1839079)
    Full screen notification obscured by external program
  * CVE-2023-4054 (bmo#1840777)
    Lack of warning when opening appref-ms files
  * CVE-2023-4055 (bmo#1782561)
    Cookie jar overflow caused unexpected cookie jar state
  * CVE-2023-4056 (bmo#1820587, bmo#1824634, bmo#1839235,
    bmo#1842325, bmo#1843847)
    Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1,
    Firefox ESR 102.14, Thunderbird 115.1, and Thunderbird 102.14
  * CVE-2023-4057 (bmo#1841682)
    Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1,

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1080
 2023-08-02 07:26:14 +00:00
Wolfgang Rosenauer
8197a462a5 - Mozilla Firefox 116.0 
- require NSS 3.91
- remove obsolete mozilla-fix-top-level-asm.patch
- re-enable LTO

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1079
 2023-08-01 20:59:19 +00:00
Wolfgang Rosenauer
38ca28006f Accepting request 1101319 from home:AndreasStieger:branches:mozilla:Factory 
115.0.3 boo#1213657 boo#1213776

OBS-URL: https://build.opensuse.org/request/show/1101319
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1077
 2023-07-29 12:27:50 +00:00
Wolfgang Rosenauer
eea8e1ad28 - Mozilla Firefox 115.0.2 
* Fixed a bug with displaying a caret in the text editor on some websites
    (bmo#1840804)
  * Fixed a bug with broken audio rendering on some websites (bmo#1841982)
  * Fixed a bug with patternTransform translate using the wrong units
    (bmo#1840746)
  MFSA 2023-26 (bsc#1213230)
  * CVE-2023-3600 (bmo#1839703)
    Use-after-free in workers

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1075
 2023-07-13 13:44:31 +00:00
Wolfgang Rosenauer
888ad71ef0 Accepting request 1097629 from home:AndreasStieger:branches:mozilla:Factory 
- Mozilla Firefox 115.0.1
  * fixes for other platforms

OBS-URL: https://build.opensuse.org/request/show/1097629
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1073
 2023-07-07 20:25:49 +00:00
Wolfgang Rosenauer
82053303d3 - Mozilla Firefox 115.0 
* Support for importing payment methods saved in Chrome-based browser
  * Hardware video decoding is now enabled for Intel GPUs on Linux
  * The Tab Manager dropdown now features close buttons, so tabs
    can be closed more quickly
  * Streamlined the user interface for importing data in from other browsers
  * Users without platform support for H264 video decoding can now
    fallback to Cisco's OpenH264 plugin for playback.
  * Undo and redo are now available in Password fields
  * Changed: On Linux, middle clicks on the new tab button will
    now open the xclipboard contents in the new tab. If the
    xclipboard content is a URL then that URL is opened, any
    other text is opened with your default search provider.
  * Changed: For users with a Firefox Colorways built-in theme,
    the theme will be automatically migrated to the same theme
    hosted on addons.mozilla.org for Firefox profiles that have
    disabled add-ons auto-updates. This will allow users to keep
    their Colorways theme when they are later removed from
    Firefox installer files.
  * Changed: Certain Firefox users may come across a message in
    the extensions panel indicating that their add-ons are not
    allowed on the site currently open. We have introduced a new
    back-end feature to only allow some extensions monitored by
    Mozilla to run on specific websites for various reasons,
    including security concerns.
  * HTML5: The builtin editor now behaves similarly to other
    browsers with `contenteditable` and `designMode` when
    splitting a node, e.g. typing Enter to split a paragraph, and
    also when joining two nodes, e.g. typing Backspace at the
    start of a paragraph to join the paragraph and the previous

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1071
 2023-07-05 21:06:07 +00:00
Wolfgang Rosenauer
871587aafc Accepting request 1094224 from home:AndreasStieger:branches:mozilla:Factory 
Mozilla Firefox 114.0.2

OBS-URL: https://build.opensuse.org/request/show/1094224
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1069
 2023-06-20 21:30:52 +00:00
Wolfgang Rosenauer
62c83bccda - do not enable LTO as it caused crashes now (boo#1212101) 
mozilla-bmo1005535.patch mozilla-s390x-skia-gradient.patch

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1068
 2023-06-20 06:31:10 +00:00
Wolfgang Rosenauer
24a9e3ddcb Accepting request 1092018 from home:AndreasStieger:branches:mozilla:Factory 
Mozilla Firefox 114.0.1

OBS-URL: https://build.opensuse.org/request/show/1092018
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1066
 2023-06-10 15:11:56 +00:00
Wolfgang Rosenauer
6caaefa8ca Accepting request 1088911 from home:AndreasStieger:branches:mozilla:Factory 
Mozilla Firefox 113.0.2 (boo#1211696)

OBS-URL: https://build.opensuse.org/request/show/1088911
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1064
 2023-05-25 13:45:47 +00:00
Wolfgang Rosenauer
d4b52ebc4a Accepting request 1087021 from home:AndreasStieger:branches:mozilla:Factory 
113.0.1

OBS-URL: https://build.opensuse.org/request/show/1087021
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1062
 2023-05-14 18:44:10 +00:00
Wolfgang Rosenauer
9ce57073ae - Mozilla Firefox 113.0 
* https://www.mozilla.org/en-US/firefox/113.0/releasenotes
  MFSA 2023-16 (bsc#1211175)
  * CVE-2023-32205 (bmo#1753339, bmo#1753341)
    Browser prompts could have been obscured by popups
  * CVE-2023-32206 (bmo#1824892)
    Crash in RLBox Expat driver
  * CVE-2023-32207 (bmo#1826116)
    Potential permissions request bypass via clickjacking
  * CVE-2023-32208 (bmo#1646034)
    Leak of script base URL in service workers via import()
  * CVE-2023-32209 (bmo#1767194)
    Persistent DoS via favicon image
  * CVE-2023-32210 (bmo#1776755)
    Incorrect principal object ordering
  * CVE-2023-32211 (bmo#1823379)
    Content process crash due to invalid wasm code
  * CVE-2023-32212 (bmo#1826622)
    Potential spoof due to obscured address bar
  * CVE-2023-32213 (bmo#1826666)
    Potential memory corruption in FileReader::DoReadData()
  * MFSA-TMP-2023-0002 (bmo#1814560, bmo#1814790, bmo#1819796)
    Race condition in dav1d decoding
  * CVE-2023-32214 (bmo#1828716)
    Potential DoS via exposed protocol handlers
  * CVE-2023-32215 (bmo#1540883, bmo#1751943, bmo#1814856, bmo#1820210,
    bmo#1821480, bmo#1827019, bmo#1827024, bmo#1827144, bmo#1827359,
    bmo#1830186)
    Memory safety bugs fixed in Firefox 113 and Firefox ESR 102.11
  * CVE-2023-32216 (bmo#1746479, bmo#1806852, bmo#1815987,

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1059
 2023-05-10 06:26:50 +00:00
Wolfgang Rosenauer
c1a18b007d Accepting request 1085361 from home:aaronpuchert:branches:mozilla:Factory 
- Fix i586 build by reducing debug info to -g1. (boo#1210168)

OBS-URL: https://build.opensuse.org/request/show/1085361
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1057
 2023-05-08 05:59:59 +00:00
Wolfgang Rosenauer
a2aae95ca7 Accepting request 1082806 from home:AndreasStieger:branches:mozilla:Factory 
112.0.2

OBS-URL: https://build.opensuse.org/request/show/1082806
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1055
 2023-04-25 17:09:11 +00:00
Wolfgang Rosenauer
10e1ac0514 Accepting request 1080895 from home:AndreasStieger:branches:mozilla:Factory 
112.0.1

OBS-URL: https://build.opensuse.org/request/show/1080895
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1053
 2023-04-20 19:38:57 +00:00
Wolfgang Rosenauer
df4a0a1c4b - Mozilla Firefox 112.0 
* https://www.mozilla.org/en-US/firefox/112.0/releasenotes/
  MFSA 2023-13 (bsc#1210212)
  * CVE-2023-29531 (bmo#1794292)
    Out-of-bound memory access in WebGL on macOS
  * CVE-2023-29532 (bmo#1806394)
    Mozilla Maintenance Service Write-lock bypass
  * CVE-2023-29533 (bmo#1798219, bmo#1814597)
    Fullscreen notification obscured
  * CVE-2023-29534 (bmo#1816007, bmo#1816059, bmo#1821155, bmo#1821576,
    bmo#1821906, bmo#1822298, bmo#1822305)
    Fullscreen notification could have been obscured on Firefox
    for Android
  * MFSA-TMP-2023-0001 (bmo#1819244)
    Double-free in libwebp
  * CVE-2023-29535 (bmo#1820543)
    Potential Memory Corruption following Garbage Collector compaction
  * CVE-2023-29536 (bmo#1821959)
    Invalid free from JavaScript code
  * CVE-2023-29537 (bmo#1823365, bmo#1824200, bmo#1825569)
    Data Races in font initialization code
  * CVE-2023-29538 (bmo#1685403)
    Directory information could have been leaked to WebExtensions
  * CVE-2023-29539 (bmo#1784348)
    Content-Disposition filename truncation leads to Reflected
    File Download
  * CVE-2023-29540 (bmo#1790542)
    Iframe sandbox bypass using redirects and sourceMappingUrls
  * CVE-2023-29541 (bmo#1810191)
    Files with malicious extensions could have been downloaded

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1051
 2023-04-11 21:09:55 +00:00
Wolfgang Rosenauer
01aefd0ce5 - exclude i586/i686 once again because it fails to link libxul due 
to its size

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1049
 2023-03-27 15:18:05 +00:00
Wolfgang Rosenauer
28f1396420 - Mozilla Firefox 111.0.1 (boo#1209688) 
* Fixed a crash on macOS while pinch-zooming under some circumstances
    (bmo#1658986)
  * Fixed a bug causing Firefox to freeze on startup for some
    Windows users (bmo#1823159)
- fix build on Tumbleweed (mozilla-bmo1807652.patch)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1048
 2023-03-26 17:00:08 +00:00
Wolfgang Rosenauer
708d958a66 Accepting request 1072979 from home:Thaodan:branches:mozilla:Factory 
Packaging cleanup
- Reomve obsolote checks that unused now
- Escape macros inside comments from dead code or plain comments
- Make -devel package noarch, it doesn't contain any architecture specific files

OBS-URL: https://build.opensuse.org/request/show/1072979
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1047
 2023-03-20 07:47:31 +00:00
Wolfgang Rosenauer
38ab2454d8 - Mozilla Firefox 111.0 
* https://www.mozilla.org/en-US/firefox/111.0/releasenotes
  MFSA 2023-09 (bsc#1209173)
  * CVE-2023-28159 (bmo#1783561)
    Fullscreen Notification could have been hidden by download
    popups on Android
  * CVE-2023-25748 (bmo#1798798)
    Fullscreen Notification could have been hidden by window
    prompts on Android
  * CVE-2023-25749 (bmo#1810705)
    Firefox for Android may have opened third-party apps without
    a prompt
  * CVE-2023-25750 (bmo#1814733)
    Potential ServiceWorker cache leak during private browsing mode
  * CVE-2023-25751 (bmo#1814899)
    Incorrect code generation during JIT compilation
  * CVE-2023-28160 (bmo#1802385)
    Redirect to Web Extension files may have leaked local path
  * CVE-2023-28164 (bmo#1809122)
    URL being dragged from a removed cross-origin iframe into the
    same tab triggered navigation
  * CVE-2023-28161 (bmo#1811181)
    One-time permissions granted to a local file were extended to
    other local files loaded in the same tab
  * CVE-2023-28162 (bmo#1811327)
    Invalid downcast in Worklets
  * CVE-2023-25752 (bmo#1811627)
    Potential out-of-bounds when accessing throttled streams
  * CVE-2023-28163 (bmo#1817768)
    Windows Save As dialog resolved environment variables

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=1046
 2023-03-15 08:38:02 +00:00