Package firefox: Information
Default inline alert: Version in the repository: 126.0-alt1
Source package: firefox
Version: 124.0.1-alt2
Build time: Apr 2, 2024, 06:32 PM in the task #344191
Category: Networking/WWW
Report package bugHome page: https://www.mozilla.org/firefox/
License: MPL-2.0
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Description:
The Mozilla Firefox project is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform.
List of rpms provided by this srpm:
firefox (x86_64, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, aarch64)
firefox (x86_64, aarch64)
firefox-config-privacy (noarch)
firefox-debuginfo (x86_64, aarch64)
Maintainer: Ajrat Makhmutov
List of contributors:
Ajrat Makhmutov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Ajrat Makhmutov
Alexey Gladkov
Sergey Bolshakov
Gleb Fotengauer-Malinovskiy
Ivan Zakharyaschev
Konstantin Lepikhov
Last changed
April 2, 2024 Ajrat Makhmutov 124.0.1-alt2
- Fix version detection (closes: 49859).
March 26, 2024 Ajrat Makhmutov 124.0.1-alt1
- New release (124.0.1). - Security fixes: + CVE-2024-29943: Out-of-bounds access via Range Analysis bypass + CVE-2024-29944: Privileged JavaScript Execution via Event Handlers
March 20, 2024 Alexey Gladkov 124.0-alt1
- New release (124.0). - Security fixes: + CVE-2024-2605: Windows Error Reporter could be used as a Sandbox escape vector + CVE-2024-2606: Mishandling of WASM register values + CVE-2024-2607: JIT code failed to save return registers on Armv7-A + CVE-2024-2608: Integer overflow could have led to out of bounds write + CVE-2023-5388: NSS susceptible to timing attack against RSA decryption + CVE-2024-2609: Permission prompt input delay could expire when not in focus + CVE-2024-2610: Improper handling of html and body tags enabled CSP nonce leakage + CVE-2024-2611: Clickjacking vulnerability could have led to a user accidentally granting permissions + CVE-2024-2612: Self referencing object could have potentially led to a use-after-free + CVE-2024-2613: Improper handling of QUIC ACK frame data could have led to OOM + CVE-2024-2614: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9 + CVE-2024-2615: Memory safety bugs fixed in Firefox 124