Package firefox-esr: Information

Source package: firefox-esr
Version: 115.10.0-alt1
Build time:  Apr 23, 2024, 07:08 PM in the task #345277
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox-esr.git?a=tree;hb=77e1e…
Home page: http://www.mozilla.org/projects/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox-esr (x86_64, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, i586, armh, aarch64)
firefox-esr-wayland (x86_64, i586, armh, aarch64)
Maintainer: Andrey Cherepanov
List of contributors:
Pavel Vasenkov
Andrey Cherepanov
Alexey Sheplyakov
Grigory Ustinov
Alexey Gladkov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
    1. libshell
    2. /dev/shm
    3. fontconfig-devel
    4. libstartup-notification-devel
    5. libstdc++-devel
    6. /proc
    7. alternatives
    8. autoconf_2.13
    9. autoconf_2.13
    10. browser-plugins-npapi-devel
    11. bzlib-devel
    12. chrpath
    13. clang15.0
    14. clang15.0-devel
    15. libvpx-devel
    16. glibc-kernheaders-generic
    17. libwireless-devel
    18. gst-plugins1.0-devel
    19. gstreamer1.0-devel
    20. libxkbcommon-devel
    21. lld15.0-devel
    22. llvm15.0-devel
    23. mozilla-common-devel
    24. nasm
    25. node
    26. libGL-devel
    27. pkgconfig(alsa)
    28. pkgconfig(aom)
    29. pkgconfig(bzip2)
    30. pkgconfig(cairo)
    31. pkgconfig(dav1d)
    32. pkgconfig(dbus-1)
    33. pkgconfig(dbus-glib-1)
    34. pkgconfig(dri)
    35. pkgconfig(fontconfig)
    36. pkgconfig(freetype2)
    37. pkgconfig(gio-2.0)
    38. pkgconfig(graphite2)
    39. pkgconfig(gtk+-2.0)
    40. pkgconfig(gtk+-3.0)
    41. pkgconfig(harfbuzz)
    42. pkgconfig(hunspell)
    43. pkgconfig(icu-i18n)
    44. pkgconfig(libcurl)
    45. pkgconfig(libdrm)
    46. pkgconfig(libevent)
    47. pkgconfig(libffi)
    48. pkgconfig(libjpeg)
    49. pkgconfig(libnotify)
    50. pkgconfig(libproxy-1.0)
    51. pkgconfig(libpulse)
    52. rpm-build-mozilla.org
    53. pkgconfig(libstartup-notification-1.0)
    54. pkgconfig(nspr) >= 4.35
    55. pkgconfig(nss) >= 3.86
    56. pkgconfig(opus)
    57. pkgconfig(pixman-1)
    58. pkgconfig(vpx)
    59. rpm-macros-alternatives
    60. pkgconfig(x11)
    61. pkgconfig(xcomposite)
    62. pkgconfig(xcursor)
    63. pkgconfig(xdamage)
    64. pkgconfig(xext)
    65. pkgconfig(xft)
    66. pkgconfig(xi)
    67. pkgconfig(xkbcommon)
    68. pkgconfig(xrandr)
    69. pkgconfig(xscrnsaver)
    70. pkgconfig(xt)
    71. pkgconfig(xtst)
    72. pkgconfig(zlib)
    73. python3(click)
    74. python3(curses)
    75. python3(hamcrest)
    76. libX11-devel
    77. python3(imp)
    78. libXScrnSaver-devel
    79. libXcomposite-devel
    80. libXcursor-devel
    81. libXdamage-devel
    82. libXext-devel
    83. libXft-devel
    84. libXi-devel
    85. libXt-devel
    86. libalsa-devel
    87. libaom-devel
    88. rust >= 1.65.0
    89. rust-cargo >= 1.65.0
    90. python3(pip)
    91. unzip
    92. xorg-cf-files
    93. yasm
    94. zip
    95. zlib-devel
    96. python3(setuptools)
    97. python3(sqlite3)
    98. python3-base
    99. libcairo-devel
    100. libcurl-devel
    101. libdav1d-devel
    102. libdbus-devel
    103. libdbus-glib-devel
    104. libdrm-devel
    105. libevent-devel
    106. libffi-devel
    107. libgio-devel
    108. libfreetype-devel
    109. libgtk+2-devel
    110. libgtk+3-devel
    111. libnotify-devel
    112. libnss-devel-static
    113. libpixman-devel
    114. libhunspell-devel
    115. libjpeg-devel
    116. libproxy-devel
    117. libpulseaudio-devel
    118. libopus-devel

Last changed

April 16, 2024 Pavel Vasenkov 115.10.0-alt1
- New ESR version.
- Security fixes
  + CVE-2024-3852 GetBoundName in the JIT returned the wrong object
  + CVE-2024-3854 Out-of-bounds-read after mis-optimized switch statement
  + CVE-2024-3857 Incorrect JITting of arguments led to use-after-free during garbage collection
  + CVE-2024-2609 Permission prompt input delay could expire when not in focus
  + CVE-2024-3859 Integer-overflow led to out-of-bounds-read in the OpenType sanitizer
  + CVE-2024-3861 Potential use-after-free due to AlignedBuffer self-move
  + CVE-2024-3863 Download Protections were bypassed by .xrm-ms files on Windows
  + CVE-2024-3302 Denial of Service using HTTP/2 CONTINUATION frames
  + CVE-2024-3864 Memory safety bug fixed in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10
April 3, 2024 Pavel Vasenkov 115.9.1-alt1
- New ESR version.
- Security fixes
  + CVE-2024-0743 Crash in NSS TLS method
  + CVE-2024-2605 Windows Error Reporter could be used as a Sandbox escape vector
  + CVE-2024-2607 JIT code failed to save return registers on Armv7-A
  + CVE-2024-2608 Integer overflow could have led to out of bounds write
  + CVE-2024-2616 Improve handling of out-of-memory conditions in ICU
  + CVE-2023-5388 NSS susceptible to timing attack against RSA decryption
  + CVE-2024-2610 Improper handling of html and body tags enabled CSP nonce leakage
  + CVE-2024-2611 Clickjacking vulnerability could have led to a user accidentally granting permissions
  + CVE-2024-2612 Self referencing object could have potentially led to a use-after-free
  + CVE-2024-2614 Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9
  + CVE-2024-29944 Privileged JavaScript Execution via Event Handlers
March 7, 2024 Andrey Cherepanov 115.8.0-alt2
- Use maximize icon for CSD restore button missing in some themes (ALT #49606).
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top