Package firefox: Information

  • Default inline alert: Version in the repository: 127.0-alt1

Source package: firefox
Version: 121.0-alt1
Latest version according to Repology
Build time:  Dec 21, 2023, 04:59 AM in the task #336902
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/f/firefox.git?a=tree;hb=2bfaa08f4…
Home page: https://www.mozilla.org/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, armh, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, armh, aarch64)
Maintainer: Alexey Gladkov
List of contributors:
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
ACL:
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ajrat Makhmutov
    1. browser-plugins-npapi-devel
    2. python3-base
    3. /dev/shm
    4. chrpath
    5. nasm
    6. python3(pip)
    7. /proc
    8. python3(click)
    9. glibc-kernheaders-generic
    10. clang17.0
    11. clang17.0-devel
    12. node
    13. gst-plugins1.0-devel
    14. python3(curses)
    15. gstreamer1.0-devel
    16. libshell
    17. python3(setuptools)
    18. rpm-build-firefox
    19. libstdc++-devel
    20. rpm-macros-alternatives
    21. alternatives
    22. python3(hamcrest)
    23. python3(sqlite3)
    24. rust >= 1.65.0
    25. rust-cargo >= 1.65.0
    26. pkgconfig(alsa)
    27. pkgconfig(aom)
    28. pkgconfig(bzip2)
    29. pkgconfig(cairo)
    30. pkgconfig(dav1d)
    31. pkgconfig(dbus-1)
    32. pkgconfig(dbus-glib-1)
    33. pkgconfig(dri)
    34. pkgconfig(fontconfig)
    35. pkgconfig(freetype2)
    36. pkgconfig(gio-2.0)
    37. unzip
    38. pkgconfig(graphite2)
    39. pkgconfig(gtk+-3.0)
    40. pkgconfig(harfbuzz)
    41. pkgconfig(hunspell)
    42. pkgconfig(icu-i18n)
    43. libwireless-devel
    44. pkgconfig(libcurl)
    45. pkgconfig(libdrm)
    46. pkgconfig(libevent)
    47. pkgconfig(libffi)
    48. pkgconfig(libjpeg)
    49. pkgconfig(libnotify)
    50. pkgconfig(libproxy-1.0)
    51. pkgconfig(libpulse)
    52. pkgconfig(libstartup-notification-1.0)
    53. pkgconfig(nspr) >= 4.35
    54. pkgconfig(nss) >= 3.96.1
    55. pkgconfig(opus)
    56. pkgconfig(pixman-1)
    57. pkgconfig(vpx)
    58. xorg-cf-files
    59. pkgconfig(x11)
    60. pkgconfig(xcomposite)
    61. pkgconfig(xcursor)
    62. pkgconfig(xdamage)
    63. pkgconfig(xext)
    64. pkgconfig(xft)
    65. yasm
    66. pkgconfig(xi)
    67. pkgconfig(xkbcommon)
    68. pkgconfig(xrandr)
    69. pkgconfig(xscrnsaver)
    70. pkgconfig(xt)
    71. pkgconfig(xtst)
    72. pkgconfig(zlib)
    73. zip
    74. lld17.0-devel
    75. llvm17.0-devel
    76. mozilla-common-devel
    77. libnss-devel-static

Last changed

Dec. 20, 2023 Alexey Gladkov 121.0-alt1
- New release (121.0).
- Security fixes:
  + CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver
  + CVE-2023-6135: NSS susceptible to "Minerva" attack
  + CVE-2023-6865: Potential exposure of uninitialized data in EncryptingOutputStream
  + CVE-2023-6857: Symlinks may resolve to smaller than expected buffers
  + CVE-2023-6858: Heap buffer overflow in nsTextFragment
  + CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer
  + CVE-2023-6866: TypedArrays lack sufficient exception handling
  + CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture validation
  + CVE-2023-6867: Clickjacking permission prompts using the popup transition
  + CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in headless mode
  + CVE-2023-6868: WebPush requests on Firefox for Android did not require VAPID key
  + CVE-2023-6869: Content can paint outside of sandboxed iframe
  + CVE-2023-6870: Android Toast notifications may obscure fullscreen event notifications
  + CVE-2023-6871: Lack of protocol handler warning in some instances
  + CVE-2023-6872: Browsing history leaked to syslogs via GNOME
  + CVE-2023-6863: Undefined behavior in ShutdownObserver()
  + CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6
  + CVE-2023-6873: Memory safety bugs fixed in Firefox 121
Dec. 1, 2023 Alexey Gladkov 120.0.1-alt1
- New release (120.0.1).
Nov. 21, 2023 Alexey Gladkov 120.0-alt1
- New release (120.0).
- Security fixes:
  + CVE-2023-6204: Out-of-bound memory access in WebGL2 blitFramebuffer
  + CVE-2023-6205: Use-after-free in MessagePort::Entangled
  + CVE-2023-6206: Clickjacking permission prompts using the fullscreen transition
  + CVE-2023-6207: Use-after-free in ReadableByteStreamQueueEntry::Buffer
  + CVE-2023-6208: Using Selection API would copy contents into X11 primary selection.
  + CVE-2023-6209: Incorrect parsing of relative URLs starting with "///"
  + CVE-2023-6210: Mixed-content resources not blocked in a javascript: pop-up
  + CVE-2023-6211: Clickjacking to load insecure pages in HTTPS-only mode
  + CVE-2023-6212: Memory safety bugs fixed in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5
  + CVE-2023-6213: Memory safety bugs fixed in Firefox 120
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top