Package firefox: Information
Default inline alert: Version in the repository: 126.0.1-alt1
Source package: firefox
Version: 121.0.1-alt1
Build time: Jan 10, 2024, 03:14 AM in the task #337929
Category: Networking/WWW
Report package bugHome page: https://www.mozilla.org/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, armh, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, armh, aarch64)
firefox (x86_64, armh, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, armh, aarch64)
Maintainer: Alexey Gladkov
List of contributors:
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Last changed
Jan. 10, 2024 Alexey Gladkov 121.0.1-alt1
- New release (121.0.1).
Dec. 20, 2023 Alexey Gladkov 121.0-alt1
- New release (121.0). - Security fixes: + CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver + CVE-2023-6135: NSS susceptible to "Minerva" attack + CVE-2023-6865: Potential exposure of uninitialized data in EncryptingOutputStream + CVE-2023-6857: Symlinks may resolve to smaller than expected buffers + CVE-2023-6858: Heap buffer overflow in nsTextFragment + CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer + CVE-2023-6866: TypedArrays lack sufficient exception handling + CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture validation + CVE-2023-6867: Clickjacking permission prompts using the popup transition + CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in headless mode + CVE-2023-6868: WebPush requests on Firefox for Android did not require VAPID key + CVE-2023-6869: Content can paint outside of sandboxed iframe + CVE-2023-6870: Android Toast notifications may obscure fullscreen event notifications + CVE-2023-6871: Lack of protocol handler warning in some instances + CVE-2023-6872: Browsing history leaked to syslogs via GNOME + CVE-2023-6863: Undefined behavior in ShutdownObserver() + CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6 + CVE-2023-6873: Memory safety bugs fixed in Firefox 121
Dec. 1, 2023 Alexey Gladkov 120.0.1-alt1
- New release (120.0.1).