forked from pool/MozillaFirefox
70fb53e62e
* Firefox 84 is the final release to support Adobe Flash
* WebRender is enabled by default when run on GNOME-based X11
Linux desktops
MFSA 2020-54 (bsc#1180039))
* CVE-2020-16042 (bmo#1679003)
Operations on a BigInt could have caused uninitialized memory
to be exposed
* CVE-2020-26971 (bmo#1663466)
Heap buffer overflow in WebGL
* CVE-2020-26972 (bmo#1671382)
Use-After-Free in WebGL
* CVE-2020-26973 (bmo#1680084)
CSS Sanitizer performed incorrect sanitization
* CVE-2020-26974 (bmo#1681022)
Incorrect cast of StyleGenericFlexBasis resulted in a heap
use-after-free
* CVE-2020-26975 (bmo#1661071)
Malicious applications on Android could have induced Firefox
for Android into sending arbitrary attacker-specified headers
* CVE-2020-26976 (bmo#1674343)
HTTPS pages could have been intercepted by a registered
service worker when they should not have been
* CVE-2020-26977 (bmo#1676311)
URL spoofing via unresponsive port in Firefox for Android
* CVE-2020-26978 (bmo#1677047)
Internal network hosts could have been probed by a malicious
webpage
* CVE-2020-26979 (bmo#1641287, bmo#1673299)
When entering an address in the address or search bars, a
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=880
67 lines
2.5 KiB
Diff
67 lines
2.5 KiB
Diff
From 91bb79836ee274855393bdf6ab10e24899b1b349 Mon Sep 17 00:00:00 2001
|
|
From: Martin Liska <mliska@suse.cz>
|
|
Date: Fri, 17 May 2019 14:41:35 +0200
|
|
Subject: [PATCH] Fix top-level asm issue.
|
|
|
|
---
|
|
security/sandbox/linux/moz.build | 5 ++++-
|
|
1 file changed, 4 insertions(+), 1 deletion(-)
|
|
|
|
diff --git a/security/sandbox/linux/moz.build b/security/sandbox/linux/moz.build
|
|
--- a/security/sandbox/linux/moz.build
|
|
+++ b/security/sandbox/linux/moz.build
|
|
@@ -66,32 +66,32 @@ UNIFIED_SOURCES += [
|
|
"../chromium/base/time/time_now_posix.cc",
|
|
"../chromium/sandbox/linux/bpf_dsl/bpf_dsl.cc",
|
|
"../chromium/sandbox/linux/bpf_dsl/codegen.cc",
|
|
"../chromium/sandbox/linux/bpf_dsl/dump_bpf.cc",
|
|
"../chromium/sandbox/linux/bpf_dsl/policy.cc",
|
|
"../chromium/sandbox/linux/bpf_dsl/policy_compiler.cc",
|
|
"../chromium/sandbox/linux/bpf_dsl/syscall_set.cc",
|
|
"../chromium/sandbox/linux/seccomp-bpf/die.cc",
|
|
- "../chromium/sandbox/linux/seccomp-bpf/syscall.cc",
|
|
"broker/SandboxBrokerCommon.cpp",
|
|
"Sandbox.cpp",
|
|
"SandboxBrokerClient.cpp",
|
|
"SandboxFilter.cpp",
|
|
"SandboxFilterUtil.cpp",
|
|
"SandboxHooks.cpp",
|
|
"SandboxInfo.cpp",
|
|
"SandboxLogging.cpp",
|
|
"SandboxOpenedFiles.cpp",
|
|
"SandboxReporterClient.cpp",
|
|
]
|
|
|
|
SOURCES += [
|
|
"../chromium/base/strings/safe_sprintf.cc",
|
|
"../chromium/base/third_party/icu/icu_utf.cc",
|
|
+ "../chromium/sandbox/linux/seccomp-bpf/syscall.cc",
|
|
"../chromium/sandbox/linux/seccomp-bpf/trap.cc",
|
|
"../chromium/sandbox/linux/services/syscall_wrappers.cc",
|
|
]
|
|
|
|
# This copy of SafeSPrintf doesn't need to avoid the Chromium logging
|
|
# dependency like the one in libxul does, but this way the behavior is
|
|
# consistent. See also the comment in SandboxLogging.h.
|
|
SOURCES["../chromium/base/strings/safe_sprintf.cc"].flags += ["-DNDEBUG"]
|
|
@@ -105,16 +105,19 @@ if CONFIG["CC_TYPE"] in ("clang", "gcc")
|
|
"-Wno-unreachable-code-return"
|
|
]
|
|
|
|
if CONFIG["CC_TYPE"] in ("clang", "gcc"):
|
|
CXXFLAGS += ["-Wno-shadow"]
|
|
SOURCES["../chromium/sandbox/linux/services/syscall_wrappers.cc"].flags += [
|
|
"-Wno-empty-body",
|
|
]
|
|
+ SOURCES['../chromium/sandbox/linux/seccomp-bpf/syscall.cc'].flags += [
|
|
+ '-fno-lto'
|
|
+ ]
|
|
|
|
# gcc lto likes to put the top level asm in syscall.cc in a different partition
|
|
# from the function using it which breaks the build. Work around that by
|
|
# forcing there to be only one partition.
|
|
for f in CONFIG["OS_CXXFLAGS"]:
|
|
if f.startswith("-flto") and CONFIG["CC_TYPE"] != "clang":
|
|
LDFLAGS += ["--param lto-partitions=1"]
|
|
|