Package firefox-config-privacy: Information
Default inline alert: Version in the repository: 126.0-alt1
Binary package: firefox-config-privacy
Version: 125.0.1-alt1
Architecture: noarch
Build time: Apr 23, 2024, 03:57 PM in the task #345346
Source package: firefox
Category: System/Configuration/Networking
Report package bugHome page: https://www.mozilla.org/firefox/
License: MPL-2.0
Summary: Firefox configuration with the paranoid privacy settings
Description:
Settings disable: * obsolete ssl protocols; * safebrowsing, trackingprotection and other requests to third-party services; * telemetry; * webrtc; * the social features; * dns and network predictors/prefetch; * and some more... Most likely you don't need to use this package.
Maintainer: Ajrat Makhmutov
List of contributors:
Ajrat Makhmutov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Ajrat Makhmutov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Last changed
April 17, 2024 Ajrat Makhmutov 125.0.1-alt1
- New version (125.0.1). - Update description (closes: 49990). - Enable VAAPI. - Security fixes: + CVE-2024-3852: GetBoundName in the JIT returned the wrong object + CVE-2024-3853: Use-after-free if garbage collection runs during realm initialization + CVE-2024-3854: Out-of-bounds-read after mis-optimized switch statement + CVE-2024-3855: Incorrect JIT optimization of MSubstr leads to out-of-bounds reads + CVE-2024-3856: Use-after-free in WASM garbage collection + CVE-2024-3857: Incorrect JITting of arguments led to use-after-free during garbage collection + CVE-2024-3858: Corrupt pointer dereference in js::CheckTracedThing<js::Shape> + CVE-2024-3859: Integer-overflow led to out-of-bounds-read in the OpenType sanitizer + CVE-2024-3860: Crash when tracing empty shape lists + CVE-2024-3861: Potential use-after-free due to AlignedBuffer self-move + CVE-2024-3862: Potential use of uninitialized memory in MarkStack assignment operator on self-assignment + CVE-2024-3863: Download Protections were bypassed by .xrm-ms files on Windows + CVE-2024-3302: Denial of Service using HTTP/2 CONTINUATION frames + CVE-2024-3864: Memory safety bug fixed in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10 + CVE-2024-3865: Memory safety bugs fixed in Firefox 125
April 3, 2024 Ajrat Makhmutov 124.0.2-alt1
- New release (124.0.2).
April 2, 2024 Ajrat Makhmutov 124.0.1-alt2
- Fix version detection (closes: 49859).