forked from pool/MozillaFirefox
70fb53e62e
* Firefox 84 is the final release to support Adobe Flash
* WebRender is enabled by default when run on GNOME-based X11
Linux desktops
MFSA 2020-54 (bsc#1180039))
* CVE-2020-16042 (bmo#1679003)
Operations on a BigInt could have caused uninitialized memory
to be exposed
* CVE-2020-26971 (bmo#1663466)
Heap buffer overflow in WebGL
* CVE-2020-26972 (bmo#1671382)
Use-After-Free in WebGL
* CVE-2020-26973 (bmo#1680084)
CSS Sanitizer performed incorrect sanitization
* CVE-2020-26974 (bmo#1681022)
Incorrect cast of StyleGenericFlexBasis resulted in a heap
use-after-free
* CVE-2020-26975 (bmo#1661071)
Malicious applications on Android could have induced Firefox
for Android into sending arbitrary attacker-specified headers
* CVE-2020-26976 (bmo#1674343)
HTTPS pages could have been intercepted by a registered
service worker when they should not have been
* CVE-2020-26977 (bmo#1676311)
URL spoofing via unresponsive port in Firefox for Android
* CVE-2020-26978 (bmo#1677047)
Internal network hosts could have been probed by a malicious
webpage
* CVE-2020-26979 (bmo#1641287, bmo#1673299)
When entering an address in the address or search bars, a
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=880
56 lines
2.3 KiB
Diff
56 lines
2.3 KiB
Diff
# HG changeset patch
|
|
# User msirringhaus@suse.de
|
|
# Date 1560754926 -7200
|
|
# Mon Jun 17 09:02:06 2019 +0200
|
|
# Node ID 428161c3b9599083e1b8710eda1760f1f707ab11
|
|
# Parent f5e9431a99bb1d122ccd76411f08ac6f3236c19f
|
|
#Description: reduce the rust debuginfo level on selected architectures where
|
|
# compiling with debuginfo=2 causes the OOM killer to interrupt the build on
|
|
# launchpad builders. Initially this was only on 32 bit architectures, but with
|
|
# firefox 63 it started happening frequently on arm64 and ppc64el too.
|
|
|
|
diff --git a/build/moz.configure/toolchain.configure b/build/moz.configure/toolchain.configure
|
|
--- a/build/moz.configure/toolchain.configure
|
|
+++ b/build/moz.configure/toolchain.configure
|
|
@@ -2138,19 +2138,19 @@ imply_option("RUSTC_OPT_LEVEL", "2", whe
|
|
def rustc_opt_level(opt_level_option, moz_optimize):
|
|
if opt_level_option:
|
|
return opt_level_option[0]
|
|
else:
|
|
return "1" if moz_optimize.optimize else "0"
|
|
|
|
|
|
@depends(
|
|
- rustc_opt_level, debug_rust, "--enable-debug-symbols", "--enable-frame-pointers"
|
|
+ rustc_opt_level, debug_rust, "--enable-debug-symbols", "--enable-frame-pointers", host
|
|
)
|
|
-def rust_compile_flags(opt_level, debug_rust, debug_symbols, frame_pointers):
|
|
+def rust_compile_flags(opt_level, debug_rust, debug_symbols, frame_pointers, host):
|
|
# Cargo currently supports only two interesting profiles for building:
|
|
# development and release. Those map (roughly) to --enable-debug and
|
|
# --disable-debug in Gecko, respectively.
|
|
#
|
|
# But we'd also like to support an additional axis of control for
|
|
# optimization level. Since Cargo only supports 2 profiles, we're in
|
|
# a bit of a bind.
|
|
#
|
|
@@ -2163,16 +2163,18 @@ def rust_compile_flags(opt_level, debug_
|
|
|
|
# opt-level=0 implies -C debug-assertions, which may not be desired
|
|
# unless Rust debugging is enabled.
|
|
if opt_level == "0" and not debug_rust:
|
|
debug_assertions = False
|
|
|
|
if debug_symbols:
|
|
debug_info = "2"
|
|
+ if host.bitness == 32 or host.cpu == 'aarch64' or host.cpu == 'ppc64':
|
|
+ debug_info = '1'
|
|
|
|
opts = []
|
|
|
|
if opt_level is not None:
|
|
opts.append("opt-level=%s" % opt_level)
|
|
if debug_assertions is not None:
|
|
opts.append("debug-assertions=%s" % ("yes" if debug_assertions else "no"))
|
|
if debug_info is not None:
|