|
1 ------------------------------------------------------------------- |
|
2 Tue Apr 7 12:18:27 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
3 |
|
4 - Mozilla Firefox 75.0 |
|
5 * https://www.mozilla.org/en-US/firefox/75.0/releasenotes |
|
6 MFSA 2020-12 (bsc#1168874) |
|
7 * CVE-2020-6821 (bmo#1625404) |
|
8 Uninitialized memory could be read when using the WebGL |
|
9 copyTexSubImage method |
|
10 * CVE-2020-6822 (bmo#1544181) |
|
11 Out of bounds write in GMPDecodeData when processing large images |
|
12 * CVE-2020-6823 (bmo#1614919) |
|
13 Malicious Extension could obtain auth codes from OAuth login flows |
|
14 * CVE-2020-6824 (bmo#1621853) |
|
15 Generated passwords may be identical on the same site between |
|
16 separate private browsing sessions |
|
17 * CVE-2020-6825 (bmo#1572541,bmo#1620193,bmo#1620203) |
|
18 Memory safety bugs fixed in Firefox 75 and Firefox ESR 68.7 |
|
19 * CVE-2020-6826 (bmo#1613009,bmo#1613195,bmo#1616734,bmo#1617488, |
|
20 bmo#1619229,bmo#1620719,bmo#1624897) |
|
21 Memory safety bugs fixed in Firefox 75 |
|
22 - removed obsolete patch |
|
23 mozilla-bmo1609538.patch |
|
24 - requires |
|
25 * rust >= 1.41 |
|
26 * rust-cbindgen >= 0.13.1 |
|
27 * mozilla-nss >= 3.51 |
|
28 * nodejs10 >= 10.19 |
|
29 - fix build issue in libvpx for i586 via mozilla-bmo1622013.patch |
|
30 |
|
31 ------------------------------------------------------------------- |
|
32 Mon Apr 6 11:19:24 UTC 2020 - Michel Normand <normand@linux.vnet.ibm.com> |
|
33 |
|
34 - increase _constraints memory for ppc64le |
|
35 |
|
36 ------------------------------------------------------------------- |
|
37 Fri Apr 3 15:23:28 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org> |
|
38 |
|
39 - Mozilla Firefox 74.0.1 |
|
40 MFSA 2020-11 (boo#1168630) |
|
41 * CVE-2020-6819 (bmo#1620818) |
|
42 Use-after-free while running the nsDocShell destructor |
|
43 * CVE-2020-6820 (bmo#1626728) |
|
44 Use-after-free when handling a ReadableStream |
|
45 |
1 ------------------------------------------------------------------- |
46 ------------------------------------------------------------------- |
2 Wed Mar 25 07:30:39 UTC 2020 - Marcus Meissner <meissner@suse.com> |
47 Wed Mar 25 07:30:39 UTC 2020 - Marcus Meissner <meissner@suse.com> |
3 |
48 |
4 - mozilla-sandbox-fips.patch: allow /proc/sys/crypto/fips_enabled |
49 - mozilla-sandbox-fips.patch: allow /proc/sys/crypto/fips_enabled |
5 to be read, as openssl 1.1.1 FIPS aborts if it cannot access it |
50 to be read, as openssl 1.1.1 FIPS aborts if it cannot access it |