forked from pool/MozillaFirefox
1bfb30f717
MFSA 2017-21 * CVE-2017-7793 (bmo#1371889) Use-after-free with Fetch API * CVE-2017-7817 (bmo#1356596) (Android-only) Firefox for Android address bar spoofing through fullscreen mode * CVE-2017-7818 (bmo#1363723) Use-after-free during ARIA array manipulation * CVE-2017-7819 (bmo#1380292) Use-after-free while resizing images in design mode * CVE-2017-7824 (bmo#1398381) Buffer overflow when drawing and validating elements with ANGLE * CVE-2017-7805 (bmo#1377618) (fixed via NSS requirement) Use-after-free in TLS 1.2 generating handshake hashes * CVE-2017-7812 (bmo#1379842) Drag and drop of malicious page content to the tab bar can open locally stored files * CVE-2017-7814 (bmo#1376036) Blob and data URLs bypass phishing and malware protection warnings * CVE-2017-7813 (bmo#1383951) Integer truncation in the JavaScript parser * CVE-2017-7825 (bmo#1393624, bmo#1390980) (OSX-only) OS X fonts render some Tibetan and Arabic unicode characters as spaces * CVE-2017-7815 (bmo#1368981) Spoofing attack with modal dialogs on non-e10s installations * CVE-2017-7816 (bmo#1380597) WebExtensions can load about: URLs in extension UI * CVE-2017-7821 (bmo#1346515) WebExtensions can download and open non-executable files without user interaction * CVE-2017-7823 (bmo#1396320) CSP sandbox directive did not create a unique origin OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=604 |
||
---|---|---|
_constraints | ||
.gitattributes | ||
.gitignore | ||
compare-locales.tar.xz | ||
create-tar.sh | ||
find-external-requires.sh | ||
firefox-56.0-source.tar.xz | ||
firefox-appdata.xml | ||
firefox-branded-icons.patch | ||
firefox-kde.patch | ||
firefox-mimeinfo.xml | ||
firefox-no-default-ualocale.patch | ||
firefox.1 | ||
firefox.js | ||
google-api-key | ||
kde.js | ||
l10n_changesets.txt | ||
l10n-56.0.tar.xz | ||
mozilla-aarch64-startup-crash.patch | ||
mozilla-api-key | ||
mozilla-get-app-id | ||
mozilla-kde.patch | ||
mozilla-language.patch | ||
mozilla-no-stdcxx-check.patch | ||
mozilla-nongnome-proxies.patch | ||
mozilla-ntlm-full-path.patch | ||
mozilla-openaes-decl.patch | ||
mozilla-reduce-files-per-UnifiedBindings.patch | ||
mozilla-ucontext.patch | ||
mozilla.sh.in | ||
MozillaFirefox-rpmlintrc | ||
MozillaFirefox.changes | ||
MozillaFirefox.desktop | ||
MozillaFirefox.spec | ||
source-stamp.txt | ||
spellcheck.js |