Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
-Firefox was updated to 78.3.0 ESR (bsc#1176756, MFSA 2020-43)
- CVE-2020-15677: Download origin spoofing via redirect
- CVE-2020-15676: Fixed an XSS when pasting attacker-controlled data into a
contenteditable element
- CVE-2020-15678: When recursing through layers while scrolling, an iterator
may have become invalid, resulting in a potential use-after-free scenario
- CVE-2020-15673: Fixed memory safety bugs
- Enhance fix for wayland-detection (bsc#1174420)
- Attempt to fix langpack-parallelization by introducing separate
obj-dirs for each lang (bsc#1173986, bsc#1167976)
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Martin Sirringhaus (MSirringhaus)
Fixed bugs
bnc#1176756
VUL-0: CVE-2020-15675,CVE-2020-15677,CVE-2020-15676,CVE-2020-15678,CVE-2020-15673: MozillaFirefox: Update to 78.3.0 ESR / 81.0
bnc#1174420
Firefox 78 ESR menu is displaced when running Gnome on Wayland
bnc#1167976
Default install of Tumbleweed; Firefox starts out with Taiwanese bookmarks
bnc#1173986
MozillaFirefox - langpack build takes long time
