commit MozillaFirefox for openSUSE:Factory
Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at 2015-11-08 11:24:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old) and /work/SRC/openSUSE:Factory/.MozillaFirefox.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "MozillaFirefox" Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes 2015-10-24 10:24:06.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new/MozillaFirefox.changes 2015-11-08 11:24:41.000000000 +0100 @@ -1,0 +2,62 @@ +Sat Oct 31 19:50:03 UTC 2015 - wr@rosenauer.org + +- update to Firefox 42.0 (bnc#952810) + * Private Browsing with Tracking Protection blocks certain Web + elements that could be used to record your behavior across sites + * Control Center that contains site security and privacy controls + * Login Manager improvements + * WebRTC improvements + * Indicator added to tabs that play audio with one-click muting + * Media Source Extension for HTML5 video available for all sites + security fixes: + * MFSA 2015-116/CVE-2015-4513/CVE-2015-4514 + Miscellaneous memory safety hazards + * MFSA 2015-117/CVE-2015-4515 (bmo#1046421) + Information disclosure through NTLM authentication + * MFSA 2015-118/CVE-2015-4518 (bmo#1182778, bmo#1136692) + CSP bypass due to permissive Reader mode whitelist + * MFSA 2015-119/CVE-2015-7185 (bmo#1149000) (Android only) + Firefox for Android addressbar can be removed after fullscreen mode + * MFSA 2015-120/CVE-2015-7186 (bmo#1193027) (Android only) + Reading sensitive profile files through local HTML file on Android + * MFSA 2015-121/CVE-2015-7187 (bmo#1195735) + disabling scripts in Add-on SDK panels has no effect + * MFSA 2015-122/CVE-2015-7188 (bmo#1199430) + Trailing whitespace in IP address hostnames can bypass same-origin policy + * MFSA 2015-123/CVE-2015-7189 (bmo#1205900) + Buffer overflow during image interactions in canvas + * MFSA 2015-124/CVE-2015-7190 (bmo#1208520) (Android only) + Android intents can be used on Firefox for Android to open privileged files + * MFSA 2015-125/CVE-2015-7191 (bmo#1208956) (Android only) + XSS attack through intents on Firefox for Android + * MFSA 2015-126/CVE-2015-7192 (bmo#1210023) (OS X only) + Crash when accessing HTML tables with accessibility tools on OS X + * MFSA 2015-127/CVE-2015-7193 (bmo#1210302) + CORS preflight is bypassed when non-standard Content-Type headers + are received + * MFSA 2015-128/CVE-2015-7194 (bmo#1211262) + Memory corruption in libjar through zip files + * MFSA 2015-129/CVE-2015-7195 (bmo#1211871) + Certain escaped characters in host of Location-header are being + treated as non-escaped + * MFSA 2015-130/CVE-2015-7196 (bmo#1140616) + JavaScript garbage collection crash with Java applet + * MFSA 2015-131/CVE-2015-7198/CVE-2015-7199/CVE-2015-7200 + (bmo#1188010, bmo#1204061, bmo#1204155) + Vulnerabilities found through code inspection + * MFSA 2015-132/CVE-2015-7197 (bmo#1204269) + Mixed content WebSocket policy bypass through workers + * MFSA 2015-133/CVE-2015-7181/CVE-2015-7182/CVE-2015-7183 + (bmo#1202868, bmo#1205157) + NSS and NSPR memory corruption issues + (fixed in mozilla-nspr and mozilla-nss packages) +- requires NSPR >= 4.10.10 and NSS >= 3.19.4 +- removed obsolete patches + * mozilla-arm-disable-edsp.patch + * mozilla-icu-strncat.patch + * mozilla-skia-be-le.patch + * toolkit-download-folder.patch +- fixed build with enable-libproxy (bmo#1220399) + * mozilla-libproxy.patch + +------------------------------------------------------------------- Old: ---- firefox-41.0.2-source.tar.xz l10n-41.0.2.tar.xz mozilla-arm-disable-edsp.patch mozilla-icu-strncat.patch mozilla-skia-be-le.patch toolkit-download-folder.patch New: ---- firefox-42.0-source.tar.xz l10n-42.0.tar.xz mozilla-libproxy.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.dX8VNr/_old 2015-11-08 11:24:57.000000000 +0100 +++ /var/tmp/diff_new_pack.dX8VNr/_new 2015-11-08 11:24:57.000000000 +0100 @@ -18,10 +18,10 @@ # changed with every update -%define major 41 -%define mainver %major.0.2 +%define major 42 +%define mainver %major.0 %define update_channel release -%define releasedate 2015101500 +%define releasedate 2015103000 # general build definitions %if "%{update_channel}" != "aurora" @@ -76,8 +76,8 @@ BuildRequires: libnotify-devel BuildRequires: libproxy-devel BuildRequires: makeinfo -BuildRequires: mozilla-nspr-devel >= 4.10.8 -BuildRequires: mozilla-nss-devel >= 3.19.2 +BuildRequires: mozilla-nspr-devel >= 4.10.10 +BuildRequires: mozilla-nss-devel >= 3.19.4 BuildRequires: nss-shared-helper-devel BuildRequires: python-devel BuildRequires: startup-notification-devel @@ -137,20 +137,17 @@ Source15: firefox-appdata.xml Source16: MozillaFirefox.changes # Gecko/Toolkit -Patch1: toolkit-download-folder.patch -Patch2: mozilla-nongnome-proxies.patch -Patch4: mozilla-shared-nss-db.patch -Patch5: mozilla-kde.patch -Patch6: mozilla-preferences.patch -Patch7: mozilla-language.patch -Patch8: mozilla-ntlm-full-path.patch -Patch9: mozilla-repo.patch -Patch10: mozilla-icu-strncat.patch -Patch11: mozilla-arm-disable-edsp.patch -Patch12: mozilla-openaes-decl.patch -Patch14: mozilla-skia-be-le.patch -Patch15: mozilla-bmo1005535.patch -Patch16: mozilla-no-stdcxx-check.patch +Patch1: mozilla-nongnome-proxies.patch +Patch2: mozilla-shared-nss-db.patch +Patch3: mozilla-kde.patch +Patch4: mozilla-preferences.patch +Patch5: mozilla-language.patch +Patch6: mozilla-ntlm-full-path.patch +Patch7: mozilla-repo.patch +Patch8: mozilla-openaes-decl.patch +Patch9: mozilla-bmo1005535.patch +Patch10: mozilla-no-stdcxx-check.patch +Patch11: mozilla-libproxy.patch # Firefox/browser Patch101: firefox-kde.patch Patch102: firefox-no-default-ualocale.patch @@ -252,18 +249,15 @@ cd $RPM_BUILD_DIR/mozilla %patch1 -p1 %patch2 -p1 +%patch3 -p1 %patch4 -p1 %patch5 -p1 %patch6 -p1 %patch7 -p1 %patch8 -p1 -%patch9 -p1 +#%patch9 -p1 %patch10 -p1 %patch11 -p1 -%patch12 -p1 -%patch14 -p1 -%patch15 -p1 -%patch16 -p1 # Firefox %patch101 -p1 %patch102 -p1 ++++++ compare-locales.tar.xz ++++++ ++++++ create-tar.sh ++++++ --- /var/tmp/diff_new_pack.dX8VNr/_old 2015-11-08 11:24:58.000000000 +0100 +++ /var/tmp/diff_new_pack.dX8VNr/_new 2015-11-08 11:24:58.000000000 +0100 @@ -2,8 +2,8 @@ CHANNEL="release" BRANCH="releases/mozilla-$CHANNEL" -RELEASE_TAG="FIREFOX_41_0_2_RELEASE" -VERSION="41.0.2" +RELEASE_TAG="FIREFOX_42_0_RELEASE" +VERSION="42.0" # mozilla if [ -d mozilla ]; then ++++++ firefox-41.0.2-source.tar.xz -> firefox-42.0-source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/firefox-41.0.2-source.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new/firefox-42.0-source.tar.xz differ: char 26, line 1 ++++++ firefox-kde.patch ++++++ --- /var/tmp/diff_new_pack.dX8VNr/_old 2015-11-08 11:24:58.000000000 +0100 +++ /var/tmp/diff_new_pack.dX8VNr/_new 2015-11-08 11:24:58.000000000 +0100 @@ -1,11 +1,11 @@ # HG changeset patch -# Parent 8d1e0e3997402b94742eded6477abed4b559f373 +# Parent 95b421ca30846be2b5d7230d72263e6dff042d0b diff --git a/browser/base/content/browser-kde.xul b/browser/base/content/browser-kde.xul new file mode 100644 --- /dev/null +++ b/browser/base/content/browser-kde.xul -@@ -0,0 +1,1264 @@ +@@ -0,0 +1,1234 @@ +#filter substitution +<?xml version="1.0"?> +# -*- Mode: HTML -*- @@ -66,6 +66,7 @@ + screenX="4" screenY="4" + fullscreenbutton="true" + sizemode="normal" ++ retargetdocumentfocus="urlbar" + persist="screenX screenY width height sizemode"> + +# All JS files which are not content (only) dependent that browser.xul @@ -153,7 +154,14 @@ + <panel type="autocomplete" id="PopupSearchAutoComplete" noautofocus="true" hidden="true"/> + + <!-- for url bar autocomplete --> -+ <panel type="autocomplete-richlistbox" id="PopupAutoCompleteRichResult" noautofocus="true" hidden="true"/> ++ <panel type="autocomplete-richlistbox" id="PopupAutoCompleteRichResult" noautofocus="true" hidden="true"> ++#ifdef NIGHTLY_BUILD ++ <hbox id="urlbar-search-footer" flex="1" align="stretch" pack="end"> ++ ++ </hbox> ++#endif ++ </panel> + + Reply
participants (1)
-
root@hilbert.suse.de