forked from pool/MozillaFirefox
a9628fa6ae
* https://www.mozilla.org/en-US/firefox/74.0/releasenotes/ MFSA 2020-08 (bsc#1166238) * CVE-2020-6805 (bmo#1610880) Use-after-free when removing data about origins * CVE-2020-6806 (bmo#1612308) BodyStream::OnInputStreamReady was missing protections against state confusion * CVE-2020-6807 (bmo#1614971) Use-after-free in cubeb during stream destruction * CVE-2020-6808 (bmo#1247968) URL Spoofing via javascript: URL * CVE-2020-6809 (bmo#1420296) Web Extensions with the all-urls permission could access local files * CVE-2020-6810 (bmo#1432856) Focusing a popup while in fullscreen could have obscured the fullscreen notification * CVE-2020-6811 (bmo#1607742) Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection * CVE-2019-20503 (bmo#1613765) Out of bounds reads in sctp_load_addresses_from_init * CVE-2020-6812 (bmo#1616661) The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission * CVE-2020-6813 (bmo#1605814) @import statements in CSS could bypass the Content Security Policy nonce feature * CVE-2020-6814 (bmo#1592078,bmo#1604847,bmo#1608256,bmo#1612636, OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=809 |
||
|---|---|---|
| _constraints | ||
| .gitattributes | ||
| .gitignore | ||
| create-tar.sh | ||
| firefox-74.0.source.tar.xz | ||
| firefox-74.0.source.tar.xz.asc | ||
| firefox-appdata.xml | ||
| firefox-branded-icons.patch | ||
| firefox-kde.patch | ||
| firefox-mimeinfo.xml | ||
| firefox.1 | ||
| firefox.js | ||
| google-api-key | ||
| l10n-74.0.tar.xz | ||
| mozilla-aarch64-startup-crash.patch | ||
| mozilla-api-key | ||
| mozilla-bmo849632.patch | ||
| mozilla-bmo1005535.patch | ||
| mozilla-bmo1463035.patch | ||
| mozilla-bmo1504834-part1.patch | ||
| mozilla-bmo1504834-part2.patch | ||
| mozilla-bmo1504834-part3.patch | ||
| mozilla-bmo1504834-part4.patch | ||
| mozilla-bmo1512162.patch | ||
| mozilla-bmo1554971.patch | ||
| mozilla-bmo1568145.patch | ||
| mozilla-bmo1609538.patch | ||
| mozilla-disable-wasm-emulate-arm-unaligned-fp-access.patch | ||
| mozilla-fix-aarch64-libopus.patch | ||
| mozilla-fix-top-level-asm.patch | ||
| mozilla-get-app-id | ||
| mozilla-kde.patch | ||
| mozilla-nongnome-proxies.patch | ||
| mozilla-ntlm-full-path.patch | ||
| mozilla-ppc-altivec_static_inline.patch | ||
| mozilla-reduce-rust-debuginfo.patch | ||
| mozilla-s390-bigendian.patch | ||
| mozilla-s390-context.patch | ||
| mozilla.keyring | ||
| mozilla.sh.in | ||
| MozillaFirefox-rpmlintrc | ||
| MozillaFirefox.changes | ||
| MozillaFirefox.desktop | ||
| MozillaFirefox.spec | ||
| spellcheck.js | ||
| tar_stamps | ||