File mozjs78.changes of Package mozjs78.38323

-------------------------------------------------------------------
Thu Apr 10 19:43:30 UTC 2025 - Michael Gorse <mgorse@suse.com>

- Add libtheora-avoid-negative-shift.patch: avoid negative shift in
  huffdec.c (bsc#1234837 CVE-2024-56431).

-------------------------------------------------------------------
Thu Dec 05 15:06:01 UTC 2024 - Cliff Zhao <qzhao@suse.com>

- Add mozjs128-CVE-2024-50602-part02-5fb89e7b.patch:
  Backporting 5fb89e7b from upstream,
  lib: Be explicit about XML_PARSING in XML_StopParser.
  (CVE-2024-50602, bsc#1232599, bsc#1232602)

-------------------------------------------------------------------
Thu Dec 05 15:06:01 UTC 2024 - Cliff Zhao <qzhao@suse.com>

- Add mozjs128-CVE-2024-50602-part01-51c70190.patch:
  Backporting 51c70190 from upstream,
  * lib: Make XML_StopParser refuse to stop/suspend an unstarted parser.
  * lib: Be explicit about XML_PARSING in XML_StopParser.
  (CVE-2024-50602, bsc#1232599, bsc#1232602)

-------------------------------------------------------------------
Mon Sep 30 17:35:18 UTC 2024 - Cliff Zhao <qzhao@suse.com>

- Add mozjs78-CVE-2024-45492.patch:
  Backporting 9bf0f2c1 from libexpat upstream, Detect integer
  overflow in function nextScaffoldPart.
  (CVE-2024-45492, bsc#1230038)

-------------------------------------------------------------------
Mon Sep 30 17:25:22 UTC 2024 - Cliff Zhao <qzhao@suse.com>

- Add mozjs78-CVE-2024-45491.patch:
  Backporting 8e439a99 from libexpat upstream, Detect integer
  overflow in dtdCopy.
  (CVE-2024-45491, bsc#1230037)

-------------------------------------------------------------------
Mon Sep 30 17:15:45 UTC 2024 - Cliff Zhao <qzhao@suse.com>

- Add mozjs78-CVE-2024-45490-part01-5c1a3164.patch:
  Backporting 5c1a3164 from libexpat upstream, Reject negative len
  for XML_ParseBuffer.
  CVE-2024-45490's fixes including 3 parts: 5c1a3164 for libexpat
  sources; c12f039b for libexpat tests; 2db23301 for libexpat docs;
  Because mozjs only embeds libexpat sources, so unnecessary to
  port prart02 and part03.
  (CVE-2024-45490, bsc#1230036)

-------------------------------------------------------------------
Fri Feb 23 12:04:59 UTC 2024 - pgajdos@suse.com

- Use %patch -P N instead of deprecated %patchN.

-------------------------------------------------------------------
Mon Aug  7 10:02:30 UTC 2023 - Dominique Leuenberger <dimstar@opensuse.org>

- Add mozjs78-python-3.11.patch: Fix build with python 3.11.

-------------------------------------------------------------------
Thu Jul  7 07:07:46 UTC 2022 - Wolfgang Rosenauer <wr@rosenauer.org>

- added mozilla-python310.patch to build with Python 3.10

-------------------------------------------------------------------
Mon Dec  6 15:46:06 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 78.15.0esr.

-------------------------------------------------------------------
Mon Sep 27 10:13:20 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 78.14.0esr.

-------------------------------------------------------------------
Fri Aug 13 17:36:42 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 78.13.0esr.
  MFSA 2021-34 (bsc#1188891)
  * CVE-2021-29984 (bmo#1720031)
    Incorrect instruction reordering during JIT optimization

-------------------------------------------------------------------
Mon Jul 12 08:16:11 UTC 2021 - Yifan Jiang <yfjiang@suse.com>

- Update the icu-i18n BuildRequires to version 67.1.

-------------------------------------------------------------------
Wed Jun 23 16:45:54 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 78.11.0esr.

-------------------------------------------------------------------
Wed Mar 10 11:49:12 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org>

- Update to version 78.8.0esr:
  + Fix build with Rust 1.50.

-------------------------------------------------------------------
Tue Jan 26 13:45:31 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 78.7.0esr.

-------------------------------------------------------------------
Tue Jan 12 21:07:35 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 78.6.1esr.

-------------------------------------------------------------------
Thu Nov 26 09:30:05 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com>

- Update to version 78.5.0esr.

-------------------------------------------------------------------
Wed Oct 28 15:03:29 UTC 2020 - Andreas Schwab <schwab@suse.de>

- Remove unused and broken dependency on libatomic

-------------------------------------------------------------------
Sun Oct 18 12:17:11 UTC 2020 - Callum Farmer <callumjfarmer13@gmail.com>

- Replace armv7_disable_WASM_EMULATE_ARM_UNALIGNED_FP_ACCESS.patch
  with definitions_for_user_vfp.patch from Debian

-------------------------------------------------------------------
Sun Oct 18 09:07:36 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>

- version 78.4.0esr
- add source signature and keyring
- use ccache
- remove disable-optimize build flag

-------------------------------------------------------------------
Sun Oct 11 13:47:51 UTC 2020 - Callum Farmer <callumjfarmer13@gmail.com>

- LTO set in configure instead of CFLAGS
- Add Add-riscv64-support.patch: fixes riscv64 build
- Add icu to BuildRequires for BigEndian only
- Correct path to icupkg

-------------------------------------------------------------------
Thu Aug 20 07:19:30 UTC 2020 - Wolfgang Rosenauer <wr@rosenauer.org>

- initial mozjs78 package based on mozjs68