Package firefox-esr: Information

Source package: firefox-esr
Version: 115.9.1-alt1
Build time:  Apr 9, 2024, 09:23 PM in the task #344254
Category: Networking/WWW
Report package bug
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)
Description: 
The Mozilla Firefox project is a redesign of Mozilla's browser component,
written using the XUL user interface language and designed to be
cross-platform.

List of rpms provided by this srpm:
firefox-esr (x86_64, i586, armh, aarch64)
firefox-esr-config-privacy (x86_64, i586, armh, aarch64)
firefox-esr-debuginfo (x86_64, i586, armh, aarch64)
firefox-esr-wayland (x86_64, i586, armh, aarch64)

Maintainer: Andrey Cherepanov


    1. /dev/shm
    2. /proc
    3. alternatives
    4. autoconf_2.13
    5. autoconf_2.13
    6. browser-plugins-npapi-devel
    7. bzlib-devel
    8. chrpath
    9. clang15.0
    10. clang15.0-devel
    11. fontconfig-devel
    12. libopus-devel
    13. libpixman-devel
    14. libproxy-devel
    15. libpulseaudio-devel
    16. libshell
    17. libstartup-notification-devel
    18. libstdc++-devel
    19. glibc-kernheaders-generic
    20. gst-plugins1.0-devel
    21. gstreamer1.0-devel
    22. libvpx-devel
    23. libGL-devel
    24. libwireless-devel
    25. libxkbcommon-devel
    26. lld15.0-devel
    27. llvm15.0-devel
    28. mozilla-common-devel
    29. nasm
    30. node
    31. pkgconfig(alsa)
    32. pkgconfig(aom)
    33. pkgconfig(bzip2)
    34. pkgconfig(cairo)
    35. pkgconfig(dav1d)
    36. pkgconfig(dbus-1)
    37. pkgconfig(dbus-glib-1)
    38. pkgconfig(dri)
    39. pkgconfig(fontconfig)
    40. pkgconfig(freetype2)
    41. pkgconfig(gio-2.0)
    42. pkgconfig(graphite2)
    43. pkgconfig(gtk+-2.0)
    44. pkgconfig(gtk+-3.0)
    45. pkgconfig(harfbuzz)
    46. pkgconfig(hunspell)
    47. pkgconfig(icu-i18n)
    48. pkgconfig(libcurl)
    49. pkgconfig(libdrm)
    50. pkgconfig(libevent)
    51. pkgconfig(libffi)
    52. pkgconfig(libjpeg)
    53. pkgconfig(libnotify)
    54. pkgconfig(libproxy-1.0)
    55. pkgconfig(libpulse)
    56. pkgconfig(libstartup-notification-1.0)
    57. pkgconfig(nspr) >= 4.35
    58. pkgconfig(nss) >= 3.86
    59. pkgconfig(opus)
    60. pkgconfig(pixman-1)
    61. pkgconfig(vpx)
    62. pkgconfig(x11)
    63. pkgconfig(xcomposite)
    64. pkgconfig(xcursor)
    65. pkgconfig(xdamage)
    66. pkgconfig(xext)
    67. pkgconfig(xft)
    68. pkgconfig(xi)
    69. pkgconfig(xkbcommon)
    70. pkgconfig(xrandr)
    71. pkgconfig(xscrnsaver)
    72. pkgconfig(xt)
    73. pkgconfig(xtst)
    74. pkgconfig(zlib)
    75. libX11-devel
    76. python3(click)
    77. libXScrnSaver-devel
    78. libXcomposite-devel
    79. libXcursor-devel
    80. libXdamage-devel
    81. python3(curses)
    82. libXext-devel
    83. libXft-devel
    84. libXi-devel
    85. libXt-devel
    86. libalsa-devel
    87. libaom-devel
    88. python3(hamcrest)
    89. python3(imp)
    90. python3(pip)
    91. libcairo-devel
    92. python3(setuptools)
    93. libcurl-devel
    94. libdav1d-devel
    95. libevent-devel
    96. python3(sqlite3)
    97. libdbus-devel
    98. libdbus-glib-devel
    99. libffi-devel
    100. libdrm-devel
    101. libgtk+2-devel
    102. libgtk+3-devel
    103. unzip
    104. libfreetype-devel
    105. libnotify-devel
    106. rpm-build-mozilla.org
    107. rust >= 1.65.0
    108. rust-cargo >= 1.65.0
    109. libhunspell-devel
    110. libnss-devel-static
    111. rpm-macros-alternatives
    112. python3-base
    113. xorg-cf-files
    114. libjpeg-devel
    115. yasm
    116. zip
    117. zlib-devel
    118. libgio-devel

Last changed


April 3, 2024 Pavel Vasenkov 115.9.1-alt1
- New ESR version.
- Security fixes
  + CVE-2024-0743 Crash in NSS TLS method
  + CVE-2024-2605 Windows Error Reporter could be used as a Sandbox escape vector
  + CVE-2024-2607 JIT code failed to save return registers on Armv7-A
  + CVE-2024-2608 Integer overflow could have led to out of bounds write
  + CVE-2024-2616 Improve handling of out-of-memory conditions in ICU
  + CVE-2023-5388 NSS susceptible to timing attack against RSA decryption
  + CVE-2024-2610 Improper handling of html and body tags enabled CSP nonce leakage
  + CVE-2024-2611 Clickjacking vulnerability could have led to a user accidentally granting permissions
  + CVE-2024-2612 Self referencing object could have potentially led to a use-after-free
  + CVE-2024-2614 Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9
  + CVE-2024-29944 Privileged JavaScript Execution via Event Handlers
March 7, 2024 Andrey Cherepanov 115.8.0-alt2
- Use maximize icon for CSD restore button missing in some themes (ALT #49606).
Feb. 21, 2024 Pavel Vasenkov 115.8.0-alt1
- New ESR version.
- Security fixes
  + CVE-2024-1546 Out-of-bounds memory read in networking channels
  + CVE-2024-1547 Alert dialog could have been spoofed on another site
  + CVE-2024-1548 Fullscreen Notification could have been hidden by select element
  + CVE-2024-1549 Custom cursor could obscure the permission dialog
  + CVE-2024-1550 Mouse cursor re-positioned unexpectedly could have led to unintended permission grants
  + CVE-2024-1551 Multipart HTTP Responses would accept the Set-Cookie header in response parts
  + CVE-2024-1552 Incorrect code generation on 32-bit ARM devices
  + CVE-2024-1553 Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8