Mozilla Firefox Web Browser

Overview Repositories Revisions Requests Users Attributes Meta

Mozilla Firefox Web Browser

Linked against system libs. Pointed to shit into "${HOME}/.cache/mozilla/firefox" instead of /tmp. Mandatory extension signing is disabled. GPU acceleration is enabled by default.

Links to mozilla:Factory / MozillaFirefox
Has a link diff
Download package
Checkout Package
osc -A https://api.opensuse.org checkout home:X0F:HSF/MozillaFirefox && cd $_
Create Badge

Build Results
RPM Lint

Refresh

Source Files

Filename	Size	Changed
MozillaFirefox-rpmlintrc	0000000029 29 Bytes	over 15 years ago
MozillaFirefox.changes	0000192282 188 KB	almost 8 years ago
MozillaFirefox.desktop	0000000482 482 Bytes	over 8 years ago
MozillaFirefox.spec	0000024135 23.6 KB	almost 8 years ago
_constraints	0000000422 422 Bytes	over 8 years ago
_link	0000000123 123 Bytes	almost 8 years ago
compare-locales.tar.xz	0000028416 27.8 KB	almost 8 years ago
create-tar.sh	0000002202 2.15 KB	almost 8 years ago
find-external-requires.sh	0000000275 275 Bytes	almost 13 years ago
firefox-48.0-source.tar.xz	0198212460 189 MB	almost 8 years ago
firefox-900-libcubeb-with-jack-support_20160803.patch	0000193381 189 KB	almost 8 years ago
firefox-appdata.xml	0000002171 2.12 KB	almost 8 years ago
firefox-branded-icons.patch	0000002110 2.06 KB	almost 8 years ago
firefox-kde.patch	0000074292 72.6 KB	almost 8 years ago
firefox-mimeinfo.xml	0000000292 292 Bytes	over 16 years ago
firefox-no-default-ualocale.patch	0000001114 1.09 KB	almost 8 years ago
firefox.1	0000002724 2.66 KB	over 15 years ago
firefox.js	0000000048 48 Bytes	over 11 years ago
kde.js	0000000049 49 Bytes	over 14 years ago
l10n-48.0.tar.xz	0043323036 41.3 MB	almost 8 years ago
l10n_changesets.txt	0000001535 1.5 KB	almost 8 years ago
mozilla-aarch64-48bit-va.patch	0000006471 6.32 KB	almost 8 years ago
mozilla-binutils-visibility.patch	0000001342 1.31 KB	almost 8 years ago
mozilla-check_return.patch	0000001746 1.71 KB	about 8 years ago
mozilla-exclude-nametablecpp.patch	0000001340 1.31 KB	almost 8 years ago
mozilla-flex_buffer_overrun.patch	0000002907 2.84 KB	almost 8 years ago
mozilla-get-app-id	0000001123 1.1 KB	over 13 years ago
mozilla-gtk3_20.patch	0000083989 82 KB	almost 8 years ago
mozilla-kde.patch	0000134549 131 KB	almost 8 years ago
mozilla-language.patch	0000001763 1.72 KB	over 8 years ago
mozilla-no-stdcxx-check.patch	0000000981 981 Bytes	over 8 years ago
mozilla-nongnome-proxies.patch	0000001779 1.74 KB	over 10 years ago
mozilla-ntlm-full-path.patch	0000000948 948 Bytes	almost 9 years ago
mozilla-openaes-decl.patch	0000000907 907 Bytes	over 8 years ago
mozilla-preferences.patch	0000001728 1.69 KB	over 8 years ago
mozilla-reduce-files-per-UnifiedBindings.patch	0000001833 1.79 KB	about 8 years ago
mozilla-shared-nss-db.patch	0000004629 4.52 KB	almost 8 years ago
mozilla.sh.in	0000005003 4.89 KB	over 8 years ago
source-stamp.txt	0000000069 69 Bytes	almost 8 years ago
spellcheck.js	0000000060 60 Bytes	over 9 years ago

Revision 174 (latest revision is 780)

Sergey Kondakov (X0F) committed almost 8 years ago (revision 174)

- Fix for possible buffer overrun (bsc#990856)
  CVE-2016-6354 (bmo#1292534)
  [mozilla-flex_buffer_overrun.patch]

- Update mozilla-gtk3_20.patch to latest version from Fedora.

- update to Firefox 48.0 (boo#991809)
  * requires NSS 3.24
  * Process separation (e10s) is enabled for some of you
  * Add-ons that have not been verified and signed by Mozilla will not load
  * WebRTC embetterments
  * The media parser has been redeveloped using the Rust programming
    language
  * better Canvas performance with speedy Skia support
  security fixes:
  * MFSA 2016-62/CVE-2016-2835/CVE-2016-2836
    Miscellaneous memory safety hazards
  * MFSA 2016-63/CVE-2016-2830 (bmo#1255270)
    Favicon network connection can persist when page is closed
  * MFSA 2016-64/CVE-2016-2838 (bmo#1279814)
    Buffer overflow rendering SVG with bidirectional content
  * MFSA 2016-65/CVE-2016-2839 (bmo#1275339)
    Cairo rendering crash due to memory allocation issue with FFmpeg 0.10
  * MFSA 2016-66/CVE-2016-5251 (bmo#1255570)
    Location bar spoofing via data URLs with malformed/invalid mediatypes
  * MFSA 2016-67/CVE-2016-5252 (bmo#1268854)
    Stack underflow during 2D graphics rendering
  * MFSA 2016-68/CVE-2016-0718 (bmo#1236923)
    Out-of-bounds read during XML parsing in Expat library
  * MFSA 2016-69/CVE-2016-5253 (bmo#1246944)

Comments 5

Richard Brown (RBrownSUSE) - over 2 years ago

Hello - can you please consider dropping this package from your home project? build.opensuse.org only has 12 worker servers capable of building firefox, which takes a great deal of time every time it does. As your package builds against Tumbleweed, the presence of this package in your home project draws a disproprotionate amount of resources away from other people. This delays submissions, builds, and updates to all official openSUSE Projects (Tumbleweed, MicroOS, Leap, etc). Many Thanks for the consideration. - Rich

Sergey Kondakov (X0F) - over 2 years ago

Yeah ? Why don't you consider dropping yours instead ? I wasn't maintaining my fork for SEVEN years just for shits and giggles. And it wouldn't take that much resources if you would consider my suggestions more than 5 years ago for decreasing unnecessary rebuilds (why the hell it still trigger rebuilds of all dependant packages when OBS knows that there were no API change ?) and drove me off mailing lists, as with most of home-project users.

The reason for Mozilla projects' obscene build requirements is their rust dependency, obsession with bundling most dependencies and giant binary that balloons LTO requirements. If you would even had a glance at my fork, you would have seen that I already decreased build requirements several times over your official package. If OBS still uses it's top VMs and rebuilds it on every fart than you should direct your demands to its developers, if you still have any.

How about, instead of completely driving off people from SUSE altogether, after you personally already drove them off mailing lists and any inclination to volunteer in main repo maintenance, you would volunteer your paycheck on acquiring servers (Aliexpress has thousands if not millions of cheap 8-18 core Xeons, DDR3 ECC RAM and LGA2011 boards available, by the way) and actually steer some development in OBS'es build efficiency instead of smothering it just like you did with kiwi livecd toolkit & SUSE installer's fork-install capability which made mass-install of fixed-up SUSE images impractical thus cutting out more users ?

Richard Brown (RBrownSUSE) - over 2 years ago

https://en.opensuse.org/Terms_of_site#Rules_of_conduct

https://en.opensuse.org/Terms_of_site#Open_Build_Service_.28the_.E2.80.9CBuild_Service.E2.80.9D.29

Sergey Kondakov (X0F) - over 2 years ago

And what this supposed to mean ? A threat that if someone does not comply to your passive-aggressive insults & demands and will not be completely driven off by your attitude, you will forcibly kick them off the community until there is only King Brown and his yes-men left ?

Richard Brown (RBrownSUSE) - over 2 years ago

Threat? No, just a reminder of the terms and conditions you are held under while using this platform.

What you choose to do with that information is up to you.

You might also want to peruse https://en.opensuse.org/openSUSE:Build_Service_application_blacklist also

There appears to be a number of packages in home:X0F and it's subprojects which violate the rules, do you have approved exceptions to those rules with the OBS Legal Team? If not, would you like me to contact them on your behalf?

Places