Overview Repositories Revisions Requests Users Attributes Meta

Revisions of MozillaFirefox

Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 693917 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 286) 
- Mozilla Firefox 66.0.3
  * Fixed: Address bar on tablets running Windows 10 now behaves
    correctly (bmo#1498973)
  * Fixed: Performance issues with some HTML5 games (bmo#1537609)
  * Fixed a bug with keypress events in IBM cloud applications
    (bmo#1538970)
  * Fix for keypress events in some Microsoft cloud applications
    (bmo#1539618)
  * Changed: Updated Baidu search plugin
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 690057 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 285) 
- Mozilla Firefox 66.0.2
  * Fixed Web compatibility issues with Office 365, iCloud and
    IBM WebMail caused by recent changes to the handling of
    keyboard events (bmo#1538966)
  * Crash fixes (bmo#1521370, bmo#1539118)

- Add patch to fix aarch64 build:
  * mozilla-fix-aarch64-libopus.patch (bmo#1539737)

- Mozilla Firefox 66.0.1
  MFSA 2019-09 (bsc#1130262)
  * CVE-2019-9810 (bmo#1537924)
    IonMonkey MArraySlice has incorrect alias information
  * CVE-2019-9813 (bmo#1538006)
    Ionmonkey type confusion with __proto__ mutations
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 686793 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 284) 
- Mozilla Firefox 66.0
  * Increased content processes to 8
  * Added capability to search through open tabs from the tab overflow menu
  * New backend for the storage.local WebExtensions API, providing
    I/O performance improvements when the extension updates a small
    subset of the stored data
  * WebExtension keyboard shortcuts can now be managed or overridden
    from about:addons
  * Improved scrolling behavior: Firefox will now attempt to keep content
    from jumping around while a page is loading by supporting scroll
    anchoring
  * New about:privatebrowsing with search
  * A certificate error page now notifies the user of the name of the
    certificate issuer that breaks HTTPs connections on intercepted
    connections to help troubleshooting possible anti-virus software
    issues.
  * Fixed an performance issue some Linux users experienced with the
    Downloads panel (bmo#1517101)
  * Firefox now blocks all autoplay media with sound by default. Users
    can add individual sites to an exceptions list or turn the blocking
    off.
  * System title bar is hidden by default to match Gnome guideline
  MFSA 2019-07 (bsc#1129821)
  * CVE-2019-9790 (bmo#1525145)
    Use-after-free when removing in-use DOM elements
  * CVE-2019-9791 (bmo#1530958)
    Type inference is incorrect for constructors entered through on-stack
    replacement with IonMonkey
  * CVE-2019-9792 (bmo#1532599)
    IonMonkey leaks JS_OPTIMIZED_OUT magic value to script
Stephan Kulow's avatar Stephan Kulow (coolo) accepted request 670835 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 281) 
Hope that the i586 build issue is fixed. It worked in my OBS project but not sure if it occasionally still could fail.

- Mozilla Firefox 65.0
  * Enhanced tracking protection
  * allow switching of UI locales within preferences
  * support for the WebP image format
  * "top"-like about:performance
  MFSA 2019-01 (bsc#1122983)
  * CVE-2018-18500 bmo#1510114
    Use-after-free parsing HTML5 stream
  * CVE-2018-18503 bmo#1509442
    Memory corruption with Audio Buffer
  * CVE-2018-18504 bmo#1496413
    Memory corruption and out-of-bounds read of texture client
  * CVE-2018-18505 bmo#1497749
    Privilege escalation through IPC channel messages
  * CVE-2018-18506 bmo#1503393
    Proxy Auto-Configuration file can define localhost access to be proxied
  * CVE-2018-18502 bmo#1499426 bmo#1480090 bmo#1472990 bmo#1514762
    bmo#1501482 bmo#1505887 bmo#1508102 bmo#1508618 bmo#1511580
    bmo#1493497 bmo#1510145 bmo#1516289 bmo#1506798 bmo#1512758
    Memory safety bugs fixed in Firefox 65
  * CVE-2018-18501 bmo#1512450 bmo#1517542 bmo#1513201 bmo#1460619
    bmo#1502871 bmo#1516738 bmo#1516514
    Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5
- requires
  NSS 3.41
  rust/carge 1.30
  rust-cbindgen 0.6.7
- rebased patches
- remove workaround for build memory consumption on i586; other
  mitigations meanwhile introduced (mainly parallelity) will be
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 651985 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 279) 
- Clean-up %arm build

- update to Firefox 63.0.3
  * Games using WebGL (created in Unity) get stuck after very short
    time of gameplay (bmo#1502748)
  * Slow page loading for some users with specific proxy configurations
    (bmo#1495024)
  * Disable HTTP response throttling by default for causing bugs with
    videos in background tabs (bmo#1503354)
  * Opening magnet links no longer works (bmo#1498934)
  * Crash fixes (bmo#1498510, bmo#1503424)
- removed mozilla-newer-cbindgen.patch; no longer needed

- update to Firefox 63.0.1
  * Snippets are not loaded due to missing element (bmo#1503047)
  * Print preview always shows 30& scale when it is actually
    Shrink To Fit (bmo#1501952)
  * Dialog displayed when closing multiple windows shows unreplaced
    %1$S placeholder in Japanese and potentially other locales
    (bmo#1500823)

- update to Firefox 63.0
  * WebExtensions now run in their own process on Linux
  * The Ctrl+Tab shortcut now displays thumbnail previews of your
    tabs and cycles through tabs in recently used order. This new
    default behavior is activated only in new profiles and can be
    changed in preferences.
  * Added support for Web Components custom elements and shadow DOM
  MFSA 2018-26 (bsc#1112852)
  * CVE-2018-12391 (bmo#1478843) (Android-only)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 637781 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 277) 
- Mozilla Firefox 62.0.2:
  MFSA 2018-22
  * CVE-2018-12385 (boo#1109363, bmo#1490585)
    Crash in TransportSecurityInfo due to cached data
  * Unvisited bookmarks can once again be autofilled in the address
    bar
  * Fix WebGL rendering issues
  * Fix fallback on startup when a language pack is missing
  * Avoid crash when sharing a profile with newer (as yet
    unreleased) versions of Firefox
  * Do not undo removal of search engines when using a language
    pack
  * Fixed rendering of some web sites
  * Restored compatibility with some sites using deprecated TLS
    settings
- disable rust debug symbols to fix build on %ix86
- update to Firefox 62.0
  * Firefox Home (the default New Tab) now allows users to display
    up to 4 rows of top sites, Pocket stories, and highlights
  * "Reopen in Container" tab menu option appears for users with
    Containers that lets them choose to reopen a tab in a different
    container
  * In advance of removing all trust for Symantec-issued certificates
    in Firefox 63, a preference was added that allows users to distrust
    certificates issued by Symantec. To use this preference, go to
    about:config in the address bar and set the preference
    "security.pki.distrust_ca_policy" to 2.
  * Support for CSS Shapes, allowing for richer web page layouts.
    This goes hand in hand with a brand new Shape Path Editor in the
    CSS inspector.
  * CSS Variable Fonts (OpenType Font Variations) support, which makes
    it possible to create beautiful typography with a single font file
  * Added Canadian English (en-CA) locale
  MFSA 2018-20 (bsc#1107343)
  * CVE-2018-12377 (bmo#1470260)
    Use-after-free in refresh driver timers
  * CVE-2018-12378 (bmo#1459383)
    Use-after-free in IndexedDB
  * CVE-2018-12379 (bmo#1473113) (updater is disabled for us)
    Out-of-bounds write with malicious MAR file
  * CVE-2017-16541 (bmo#1412081)
    Proxy bypass using automount and autofs
  * CVE-2018-12381 (bmo#1435319)
    Dragging and dropping Outlook email message results in page navigation
  * CVE-2018-12382 (bmo#1479311) (Android only)
    Addressbar spoofing with javascript URI on Firefox for Android
  * CVE-2018-12383 (bmo#1475775)
    Setting a master password post-Firefox 58 does not delete
    unencrypted previously stored passwords
  * CVE-2018-12375
    Memory safety bugs fixed in Firefox 62
  * CVE-2018-12376
    Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2
- requires NSS >= 3.38
- removed obsolete patch
  mozilla-bmo1464766.patch
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 628536 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 276) 
- update to Firefox 61.0.2
  * Improved website rendering with the Retained Display List feature
    enabled (bmo#1474402)
  * Fixed broken DevTools panels with certain extensions installed
    (bmo#1474379)
  * Fixed a crash for users with some accessibility tools enabled
    (bmo#1474007)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 612426 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 273) 
- fixed "open with" option under KDE (boo#1094747)
- workaround crash on startup on aarch64 (boo#1093059)
  (contributed by guillaume@Arm.com)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 611510 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 272) 
- Disable webrtc for aarch64 due to bmo#1434589
- Add patch to fix skia build on AArch64:
  * mozilla-fix-skia-aarch64.patch

- update to Firefox 60.0.1
  * Avoid overly long cycle collector pauses with some add-ons installed
    (bmo#1449033)
  * After unckecking the "Sponsored Stories" option, the New Tab page
    now immediately stops displaying "Sponsored content" cards (bmo#1458906)
  * On touchscreen devices, fixed momentum scrolling on non-zoomable pages
    (bmo#1457743)
  * Use the right default background when opening tabs or windows in
    high contrast mode (bmo#1458956)
  * Restored translations of the Preferences panels when using a
    language pack (bmo#1461590)

- parellelise locales building
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 605919 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 271) 
Final Firefox 60.0 (regular; non-ESR) for TW

- update to Firefox 60.0
  * Added a policy engine that allows customized Firefox deployments
    in enterprise environments, using Windows Group Policy or a
    cross-platform JSON file
  * Applied Quantum CSS to render browser UI
  * Added support for Web Authentication, allowing the use of USB
    tokens for authentication to web sites
  * Locale added: Occitan (oc)
  MFSA 2018-11 (bsc#1092548)
  * CVE-2018-5154 (bmo#1443092)
    Use-after-free with SVG animations and clip paths
  * CVE-2018-5155 (bmo#1448774)
    Use-after-free with SVG animations and text paths
  * CVE-2018-5157 (bmo#1449898)
    Same-origin bypass of PDF Viewer to view protected PDF files
  * CVE-2018-5158 (bmo#1452075)
    Malicious PDF can inject JavaScript into PDF Viewer
  * CVE-2018-5159 (bmo#1441941)
    Integer overflow and out-of-bounds write in Skia
  * CVE-2018-5160 (bmo#1436117)
    Uninitialized memory use by WebRTC encoder
  * CVE-2018-5152 (bmo#1415644, bmo#1427289)
    WebExtensions information leak through webRequest API
  * CVE-2018-5153 (bmo#1436809)
    Out-of-bounds read in mixed content websocket messages
  * CVE-2018-5163 (bmo#1426353)
    Replacing cached data in JavaScript Start-up Bytecode Cache
  * CVE-2018-5164 (bmo#1416045)
    CSP not applied to all multipart content sent with
    multipart/x-mixed-replace
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 603325 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 270) 
- do not try CSD on kwin (boo#1091592)
- fix build in openSUSE:Leap:42.3:Update, use gcc7

- Mozilla Firefox 59.0.3:
  * fixes for platforms other than GNU/Linux
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 588116 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 267) 
yet another small tweak to have really all fixes in place also for ARM (libtremor) which was left out from the upstream Firefox tag (and only applied to the Fennec one)

- update to Firefox 59.0.1 (bsc#1085671)
  MFSA 2018-08
  * CVE-2018-5146 (bmo#1446062)
    Vorbis audio processing out of bounds write
  * CVE-2018-5147 (bmo#1446365)
    Out of bounds memory write in libtremor
    (mozilla-bmo1446062.patch)

- Added patch:
  * mozilla-bmo1005535.patch:
    Enable skia_gpu on big endian platforms.

- update to Firefox 59.0
  * Performance enhancements
  * Drag-and-drop to rearrange Top Sites on the Firefox Home page
  * added features for Firefox Screenshots
  * Enhanced WebExtensions API
  * Improved RTC capabilities
  MFSA 2018-06 (bsc#1085130)
  * CVE-2018-5127 (bmo#1430557)
    Buffer overflow manipulating SVG animatedPathSegList
  * CVE-2018-5128 (bmo#1431336)
    Use-after-free manipulating editor selection ranges
  * CVE-2018-5129 (bmo#1428947)
    Out-of-bounds write with malformed IPC messages
  * CVE-2018-5130 (bmo#1433005)
    Mismatched RTP payload type can trigger memory corruption
  * CVE-2018-5131 (bmo#1440775)
    Fetch API improperly returns cached copies of no-store/no-cache resources
  * CVE-2018-5132 (bmo#1408194)
Displaying revisions 141 - 160 of 426
openSUSE Build Service is sponsored by
Places