Revisions of MozillaFirefox
Dominique Leuenberger (dimstar_suse)
accepted
request 705211
from
Wolfgang Rosenauer (wrosenauer)
(revision 289)
fixed a missing syntax error (missing closing bracket); no extra changelog addition since it's not yet accepted afaik - Mozilla Firefox 67.0 * Firefox 67 will be able to run different Firefox installs side by side https://blog.nightly.mozilla.org/2019/01/14/moving-to-a-profile-per-install-architecture/ * Tabs can now be pinned from the Page Actions menu in the address bar * Users can block known cryptominers and fingerprinters in the Custom settings or their Content Blocking preferences * The Import Data from Another Browser feature is now also available from the File menu * Firefox will now protect you against running older versions which can lead to data corruption and stability issues * Easier access to your list of saved logins from the main menu and login autocomplete * We’ve added a toolbar menu for your Firefox Account to provide more transparency for when you are synced, sharing data across devices and with Firefox. Personalize the appearance of the menu with your own avatar * Enable FIDO U2F API, and permit registrations for Google Accounts * Enabled AV1 support on Linux MFSA 2019-13 (boo#1135824) * CVE-2019-9815 (bmo#1546544) Disable hyperthreading on content JavaScript threads on macOS * CVE-2019-9816 (bmo#1536768) Type confusion with object groups and UnboxedObjects * CVE-2019-9817 (bmo#1540221) Stealing of cross-domain images using canvas * CVE-2019-9818 (bmo#1542581) (Windows only) Use-after-free in crash generation server * CVE-2019-9819 (bmo#1532553) Compartment mismatch with fetch API * CVE-2019-9820 (bmo#1536405)
Dominique Leuenberger (dimstar_suse)
accepted
request 702059
from
Wolfgang Rosenauer (wrosenauer)
(revision 288)
- Mozilla Firefox 66.0.5 * Fixed: Further improvements to re-enable web extensions which had been disabled for users with a master password set (bmo#1549249)
Dominique Leuenberger (dimstar_suse)
accepted
request 700898
from
Wolfgang Rosenauer (wrosenauer)
(revision 287)
- Mozilla Firefox 66.0.4 (boo#1134126) * fix extension certificate chain https://blog.mozilla.org/addons/2019/05/04/update-regarding-add-ons-in-firefox/
Dominique Leuenberger (dimstar_suse)
accepted
request 693917
from
Wolfgang Rosenauer (wrosenauer)
(revision 286)
- Mozilla Firefox 66.0.3 * Fixed: Address bar on tablets running Windows 10 now behaves correctly (bmo#1498973) * Fixed: Performance issues with some HTML5 games (bmo#1537609) * Fixed a bug with keypress events in IBM cloud applications (bmo#1538970) * Fix for keypress events in some Microsoft cloud applications (bmo#1539618) * Changed: Updated Baidu search plugin
Dominique Leuenberger (dimstar_suse)
accepted
request 690057
from
Wolfgang Rosenauer (wrosenauer)
(revision 285)
- Mozilla Firefox 66.0.2 * Fixed Web compatibility issues with Office 365, iCloud and IBM WebMail caused by recent changes to the handling of keyboard events (bmo#1538966) * Crash fixes (bmo#1521370, bmo#1539118) - Add patch to fix aarch64 build: * mozilla-fix-aarch64-libopus.patch (bmo#1539737) - Mozilla Firefox 66.0.1 MFSA 2019-09 (bsc#1130262) * CVE-2019-9810 (bmo#1537924) IonMonkey MArraySlice has incorrect alias information * CVE-2019-9813 (bmo#1538006) Ionmonkey type confusion with __proto__ mutations
Dominique Leuenberger (dimstar_suse)
accepted
request 686793
from
Wolfgang Rosenauer (wrosenauer)
(revision 284)
- Mozilla Firefox 66.0 * Increased content processes to 8 * Added capability to search through open tabs from the tab overflow menu * New backend for the storage.local WebExtensions API, providing I/O performance improvements when the extension updates a small subset of the stored data * WebExtension keyboard shortcuts can now be managed or overridden from about:addons * Improved scrolling behavior: Firefox will now attempt to keep content from jumping around while a page is loading by supporting scroll anchoring * New about:privatebrowsing with search * A certificate error page now notifies the user of the name of the certificate issuer that breaks HTTPs connections on intercepted connections to help troubleshooting possible anti-virus software issues. * Fixed an performance issue some Linux users experienced with the Downloads panel (bmo#1517101) * Firefox now blocks all autoplay media with sound by default. Users can add individual sites to an exceptions list or turn the blocking off. * System title bar is hidden by default to match Gnome guideline MFSA 2019-07 (bsc#1129821) * CVE-2019-9790 (bmo#1525145) Use-after-free when removing in-use DOM elements * CVE-2019-9791 (bmo#1530958) Type inference is incorrect for constructors entered through on-stack replacement with IonMonkey * CVE-2019-9792 (bmo#1532599) IonMonkey leaks JS_OPTIMIZED_OUT magic value to script
Dominique Leuenberger (dimstar_suse)
accepted
request 682354
from
Wolfgang Rosenauer (wrosenauer)
(revision 283)
Stephan Kulow (coolo)
accepted
request 670835
from
Wolfgang Rosenauer (wrosenauer)
(revision 281)
Hope that the i586 build issue is fixed. It worked in my OBS project but not sure if it occasionally still could fail. - Mozilla Firefox 65.0 * Enhanced tracking protection * allow switching of UI locales within preferences * support for the WebP image format * "top"-like about:performance MFSA 2019-01 (bsc#1122983) * CVE-2018-18500 bmo#1510114 Use-after-free parsing HTML5 stream * CVE-2018-18503 bmo#1509442 Memory corruption with Audio Buffer * CVE-2018-18504 bmo#1496413 Memory corruption and out-of-bounds read of texture client * CVE-2018-18505 bmo#1497749 Privilege escalation through IPC channel messages * CVE-2018-18506 bmo#1503393 Proxy Auto-Configuration file can define localhost access to be proxied * CVE-2018-18502 bmo#1499426 bmo#1480090 bmo#1472990 bmo#1514762 bmo#1501482 bmo#1505887 bmo#1508102 bmo#1508618 bmo#1511580 bmo#1493497 bmo#1510145 bmo#1516289 bmo#1506798 bmo#1512758 Memory safety bugs fixed in Firefox 65 * CVE-2018-18501 bmo#1512450 bmo#1517542 bmo#1513201 bmo#1460619 bmo#1502871 bmo#1516738 bmo#1516514 Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5 - requires NSS 3.41 rust/carge 1.30 rust-cbindgen 0.6.7 - rebased patches - remove workaround for build memory consumption on i586; other mitigations meanwhile introduced (mainly parallelity) will be
Dominique Leuenberger (dimstar_suse)
accepted
request 657819
from
Wolfgang Rosenauer (wrosenauer)
(revision 280)
Dominique Leuenberger (dimstar_suse)
accepted
request 651985
from
Wolfgang Rosenauer (wrosenauer)
(revision 279)
- Clean-up %arm build - update to Firefox 63.0.3 * Games using WebGL (created in Unity) get stuck after very short time of gameplay (bmo#1502748) * Slow page loading for some users with specific proxy configurations (bmo#1495024) * Disable HTTP response throttling by default for causing bugs with videos in background tabs (bmo#1503354) * Opening magnet links no longer works (bmo#1498934) * Crash fixes (bmo#1498510, bmo#1503424) - removed mozilla-newer-cbindgen.patch; no longer needed - update to Firefox 63.0.1 * Snippets are not loaded due to missing element (bmo#1503047) * Print preview always shows 30& scale when it is actually Shrink To Fit (bmo#1501952) * Dialog displayed when closing multiple windows shows unreplaced %1$S placeholder in Japanese and potentially other locales (bmo#1500823) - update to Firefox 63.0 * WebExtensions now run in their own process on Linux * The Ctrl+Tab shortcut now displays thumbnail previews of your tabs and cycles through tabs in recently used order. This new default behavior is activated only in new profiles and can be changed in preferences. * Added support for Web Components custom elements and shadow DOM MFSA 2018-26 (bsc#1112852) * CVE-2018-12391 (bmo#1478843) (Android-only)
Dominique Leuenberger (dimstar_suse)
accepted
request 639752
from
Wolfgang Rosenauer (wrosenauer)
(revision 278)
Dominique Leuenberger (dimstar_suse)
accepted
request 637781
from
Wolfgang Rosenauer (wrosenauer)
(revision 277)
- Mozilla Firefox 62.0.2: MFSA 2018-22 * CVE-2018-12385 (boo#1109363, bmo#1490585) Crash in TransportSecurityInfo due to cached data * Unvisited bookmarks can once again be autofilled in the address bar * Fix WebGL rendering issues * Fix fallback on startup when a language pack is missing * Avoid crash when sharing a profile with newer (as yet unreleased) versions of Firefox * Do not undo removal of search engines when using a language pack * Fixed rendering of some web sites * Restored compatibility with some sites using deprecated TLS settings - disable rust debug symbols to fix build on %ix86 - update to Firefox 62.0 * Firefox Home (the default New Tab) now allows users to display up to 4 rows of top sites, Pocket stories, and highlights * "Reopen in Container" tab menu option appears for users with Containers that lets them choose to reopen a tab in a different container * In advance of removing all trust for Symantec-issued certificates in Firefox 63, a preference was added that allows users to distrust certificates issued by Symantec. To use this preference, go to about:config in the address bar and set the preference "security.pki.distrust_ca_policy" to 2. * Support for CSS Shapes, allowing for richer web page layouts. This goes hand in hand with a brand new Shape Path Editor in the CSS inspector. * CSS Variable Fonts (OpenType Font Variations) support, which makes it possible to create beautiful typography with a single font file * Added Canadian English (en-CA) locale MFSA 2018-20 (bsc#1107343) * CVE-2018-12377 (bmo#1470260) Use-after-free in refresh driver timers * CVE-2018-12378 (bmo#1459383) Use-after-free in IndexedDB * CVE-2018-12379 (bmo#1473113) (updater is disabled for us) Out-of-bounds write with malicious MAR file * CVE-2017-16541 (bmo#1412081) Proxy bypass using automount and autofs * CVE-2018-12381 (bmo#1435319) Dragging and dropping Outlook email message results in page navigation * CVE-2018-12382 (bmo#1479311) (Android only) Addressbar spoofing with javascript URI on Firefox for Android * CVE-2018-12383 (bmo#1475775) Setting a master password post-Firefox 58 does not delete unencrypted previously stored passwords * CVE-2018-12375 Memory safety bugs fixed in Firefox 62 * CVE-2018-12376 Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2 - requires NSS >= 3.38 - removed obsolete patch mozilla-bmo1464766.patch
Dominique Leuenberger (dimstar_suse)
accepted
request 628536
from
Wolfgang Rosenauer (wrosenauer)
(revision 276)
- update to Firefox 61.0.2 * Improved website rendering with the Retained Display List feature enabled (bmo#1474402) * Fixed broken DevTools panels with certain extensions installed (bmo#1474379) * Fixed a crash for users with some accessibility tools enabled (bmo#1474007)
Dominique Leuenberger (dimstar_suse)
accepted
request 621751
from
Wolfgang Rosenauer (wrosenauer)
(revision 275)
Dominique Leuenberger (dimstar_suse)
accepted
request 619394
from
Wolfgang Rosenauer (wrosenauer)
(revision 274)
Dominique Leuenberger (dimstar_suse)
accepted
request 612426
from
Wolfgang Rosenauer (wrosenauer)
(revision 273)
- fixed "open with" option under KDE (boo#1094747) - workaround crash on startup on aarch64 (boo#1093059) (contributed by guillaume@Arm.com)
Dominique Leuenberger (dimstar_suse)
accepted
request 611510
from
Wolfgang Rosenauer (wrosenauer)
(revision 272)
- Disable webrtc for aarch64 due to bmo#1434589 - Add patch to fix skia build on AArch64: * mozilla-fix-skia-aarch64.patch - update to Firefox 60.0.1 * Avoid overly long cycle collector pauses with some add-ons installed (bmo#1449033) * After unckecking the "Sponsored Stories" option, the New Tab page now immediately stops displaying "Sponsored content" cards (bmo#1458906) * On touchscreen devices, fixed momentum scrolling on non-zoomable pages (bmo#1457743) * Use the right default background when opening tabs or windows in high contrast mode (bmo#1458956) * Restored translations of the Preferences panels when using a language pack (bmo#1461590) - parellelise locales building
Dominique Leuenberger (dimstar_suse)
accepted
request 605919
from
Wolfgang Rosenauer (wrosenauer)
(revision 271)
Final Firefox 60.0 (regular; non-ESR) for TW - update to Firefox 60.0 * Added a policy engine that allows customized Firefox deployments in enterprise environments, using Windows Group Policy or a cross-platform JSON file * Applied Quantum CSS to render browser UI * Added support for Web Authentication, allowing the use of USB tokens for authentication to web sites * Locale added: Occitan (oc) MFSA 2018-11 (bsc#1092548) * CVE-2018-5154 (bmo#1443092) Use-after-free with SVG animations and clip paths * CVE-2018-5155 (bmo#1448774) Use-after-free with SVG animations and text paths * CVE-2018-5157 (bmo#1449898) Same-origin bypass of PDF Viewer to view protected PDF files * CVE-2018-5158 (bmo#1452075) Malicious PDF can inject JavaScript into PDF Viewer * CVE-2018-5159 (bmo#1441941) Integer overflow and out-of-bounds write in Skia * CVE-2018-5160 (bmo#1436117) Uninitialized memory use by WebRTC encoder * CVE-2018-5152 (bmo#1415644, bmo#1427289) WebExtensions information leak through webRequest API * CVE-2018-5153 (bmo#1436809) Out-of-bounds read in mixed content websocket messages * CVE-2018-5163 (bmo#1426353) Replacing cached data in JavaScript Start-up Bytecode Cache * CVE-2018-5164 (bmo#1416045) CSP not applied to all multipart content sent with multipart/x-mixed-replace
Dominique Leuenberger (dimstar_suse)
accepted
request 603325
from
Wolfgang Rosenauer (wrosenauer)
(revision 270)
- do not try CSD on kwin (boo#1091592) - fix build in openSUSE:Leap:42.3:Update, use gcc7 - Mozilla Firefox 59.0.3: * fixes for platforms other than GNU/Linux
Displaying revisions 141 - 160 of 429