Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at 2024-08-13 13:21:48 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old) and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.7232 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "MozillaFirefox" Tue Aug 13 13:21:48 2024 rev:434 rq:1193124 version:129.0 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes 2024-07-31 13:28:44.214430980 +0200 +++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.7232/MozillaFirefox.changes 2024-08-13 13:21:49.282689918 +0200 @@ -0,0 +1,45 @@ +------------------------------------------------------------------- +Thu Aug 8 06:06:13 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org> + +- Mozilla Firefox 129.0 + https://www.mozilla.org/en-US/firefox/129.0/releasenotes + MFSA 2024-33 (bsc#1228648)) + * CVE-2024-7518 (bmo#1875354) + Fullscreen notification dialog can be obscured by document content + * CVE-2024-7519 (bmo#1902307) + Out of bounds memory access in graphics shared memory handling + * CVE-2024-7520 (bmo#1903041) + Type confusion in WebAssembly + * CVE-2024-7521 (bmo#1904644) + Incomplete WebAssembly exception handing + * CVE-2024-7522 (bmo#1906727) + Out of bounds read in editor component + * CVE-2024-7523 (bmo#1908344) + Document content could partially obscure security prompts + * CVE-2024-7524 (bmo#1909241) + CSP strict-dynamic bypass using web-compatibility shims + * CVE-2024-7525 (bmo#1909298) + Missing permission check when creating a StreamFilter + * CVE-2024-7526 (bmo#1910306) + Uninitialized memory used by WebGL + * CVE-2024-7527 (bmo#1871303) + Use-after-free in JavaScript garbage collection + * CVE-2024-7528 (bmo#1895951) + Use-after-free in IndexedDB + * CVE-2024-7529 (bmo#1903187) + Document content could partially obscure security prompts + * CVE-2024-7530 (bmo#1904011) + Use-after-free in JavaScript code coverage collection + * CVE-2024-7531 (bmo#1905691) + PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel + Sandy Bridge machines +- removed obsolete patches + mozilla-bmo1905018.patch + mozilla-bmo1504834-part3.patch + mozilla-bmo1512162.patch + mozilla-bmo1822730.patch + mozilla-fix-aarch64-libopus.patch + mozilla-partial-revert-1768632.patch +- requires NSS 3.102.1 +- extended mozilla-silence-no-return-type.patch + Old: ---- firefox-128.0.3.source.tar.xz firefox-128.0.3.source.tar.xz.asc l10n-128.0.3.tar.xz mozilla-bmo1504834-part3.patch mozilla-bmo1512162.patch mozilla-bmo1822730.patch mozilla-bmo1905018.patch mozilla-fix-aarch64-libopus.patch mozilla-partial-revert-1768632.patch New: ---- firefox-129.0.source.tar.xz firefox-129.0.source.tar.xz.asc l10n-129.0.tar.xz BETA DEBUG BEGIN: Old: mozilla-bmo1905018.patch mozilla-bmo1504834-part3.patch mozilla-bmo1512162.patch Old: mozilla-bmo1504834-part3.patch mozilla-bmo1512162.patch mozilla-bmo1822730.patch Old: mozilla-bmo1512162.patch mozilla-bmo1822730.patch mozilla-fix-aarch64-libopus.patch Old:- removed obsolete patches mozilla-bmo1905018.patch mozilla-bmo1504834-part3.patch Old: mozilla-bmo1822730.patch mozilla-fix-aarch64-libopus.patch mozilla-partial-revert-1768632.patch Old: mozilla-fix-aarch64-libopus.patch mozilla-partial-revert-1768632.patch - requires NSS 3.102.1 BETA DEBUG END: ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.xBEImT/_old 2024-08-13 13:22:05.787377589 +0200 +++ /var/tmp/diff_new_pack.xBEImT/_new 2024-08-13 13:22:05.791377756 +0200 @@ -28,9 +28,9 @@ # orig_suffix b3 # major 69 # mainver %%major.99 -%define major 128 -%define mainver %major.0.3 -%define orig_version 128.0.3 +%define major 129 +%define mainver %major.0 +%define orig_version 129.0 %define orig_suffix %{nil} %define update_channel release %define branding 1 @@ -114,7 +114,7 @@ BuildRequires: libproxy-devel BuildRequires: makeinfo BuildRequires: mozilla-nspr-devel >= 4.35 -BuildRequires: mozilla-nss-devel >= 3.101.1 +BuildRequires: mozilla-nss-devel >= 3.102.1 BuildRequires: nasm >= 2.14 BuildRequires: nodejs >= 12.22.12 %if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000 @@ -211,13 +211,10 @@ Patch2: mozilla-kde.patch Patch3: mozilla-ntlm-full-path.patch Patch4: mozilla-aarch64-startup-crash.patch -Patch5: mozilla-fix-aarch64-libopus.patch Patch6: mozilla-s390-context.patch Patch7: mozilla-pgo.patch Patch8: mozilla-reduce-rust-debuginfo.patch Patch10: mozilla-bmo1504834-part1.patch -Patch11: mozilla-bmo1504834-part3.patch -Patch12: mozilla-bmo1512162.patch Patch14: mozilla-bmo849632.patch Patch15: mozilla-bmo998749.patch Patch17: mozilla-libavcodec58_91.patch @@ -225,12 +222,9 @@ Patch19: mozilla-bmo531915.patch Patch20: one_swizzle_to_rule_them_all.patch Patch21: svg-rendering.patch -Patch22: mozilla-partial-revert-1768632.patch Patch23: mozilla-rust-disable-future-incompat.patch -Patch24: mozilla-bmo1822730.patch Patch25: mozilla-bmo1898476.patch Patch26: mozilla-bmo1907511.patch -Patch27: mozilla-bmo1905018.patch # Firefox/browser Patch101: firefox-kde.patch Patch102: firefox-branded-icons.patch ++++++ firefox-128.0.3.source.tar.xz -> firefox-129.0.source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/firefox-128.0.3.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.7232/firefox-129.0.source.tar.xz differ: char 15, line 1 ++++++ firefox-branded-icons.patch ++++++ --- /var/tmp/diff_new_pack.xBEImT/_old 2024-08-13 13:22:05.967385089 +0200 +++ /var/tmp/diff_new_pack.xBEImT/_new 2024-08-13 13:22:05.967385089 +0200 @@ -1,6 +1,6 @@ # HG changeset patch # Parent e0751ad74e835e80041a61ea00c2a63bf6fbe2de -# Parent ebf6598a9309200fcea0cedb08e39161b82a73f9 +# Parent ad547c5985d362e88a47ccbba0cc5fa07bd24e8b diff --git a/browser/branding/branding-common.mozbuild b/browser/branding/branding-common.mozbuild --- a/browser/branding/branding-common.mozbuild @@ -24,11 +24,11 @@ diff --git a/browser/installer/package-manifest.in b/browser/installer/package-manifest.in --- a/browser/installer/package-manifest.in +++ b/browser/installer/package-manifest.in -@@ -216,20 +216,23 @@ +@@ -208,20 +208,23 @@ + ; [Browser Chrome Files] + @RESPATH@/browser/chrome.manifest @RESPATH@/browser/chrome/browser@JAREXT@ @RESPATH@/browser/chrome/browser.manifest - @RESPATH@/chrome/pdfjs.manifest - @RESPATH@/chrome/pdfjs/* @RESPATH@/chrome/toolkit@JAREXT@ @RESPATH@/chrome/toolkit.manifest #ifdef MOZ_GTK ++++++ l10n-128.0.3.tar.xz -> l10n-129.0.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/l10n-128.0.3.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.7232/l10n-129.0.tar.xz differ: char 13, line 1 ++++++ mozilla-kde.patch ++++++ --- /var/tmp/diff_new_pack.xBEImT/_old 2024-08-13 13:22:06.115391255 +0200 +++ /var/tmp/diff_new_pack.xBEImT/_new 2024-08-13 13:22:06.119391422 +0200 @@ -71,7 +71,7 @@ diff --git a/modules/libpref/moz.build b/modules/libpref/moz.build --- a/modules/libpref/moz.build +++ b/modules/libpref/moz.build -@@ -121,16 +121,20 @@ EXPORTS.mozilla += [ +@@ -122,16 +122,20 @@ EXPORTS.mozilla += [ ] EXPORTS.mozilla += sorted(["!" + g for g in gen_h]) @@ -1303,7 +1303,7 @@ GtkFileChooserAction action = GetGtkFileChooserAction(mMode); const gchar* accept_button; -@@ -707,16 +734,215 @@ void nsFilePicker::Done(void* file_choos +@@ -697,16 +724,215 @@ void nsFilePicker::Done(void* file_choos mCallback->Done(result); mCallback = nullptr; } else { @@ -1522,7 +1522,7 @@ diff --git a/widget/gtk/nsFilePicker.h b/widget/gtk/nsFilePicker.h --- a/widget/gtk/nsFilePicker.h +++ b/widget/gtk/nsFilePicker.h -@@ -71,16 +71,22 @@ class nsFilePicker : public nsBaseFilePi +@@ -70,16 +70,22 @@ class nsFilePicker : public nsBaseFilePi nsString mDefaultExtension; nsTArray<nsCString> mFilters; @@ -1699,7 +1699,7 @@ diff --git a/xpcom/io/nsLocalFileUnix.cpp b/xpcom/io/nsLocalFileUnix.cpp --- a/xpcom/io/nsLocalFileUnix.cpp +++ b/xpcom/io/nsLocalFileUnix.cpp -@@ -46,16 +46,17 @@ +@@ -47,16 +47,17 @@ #include "nsString.h" #include "nsIDirectoryEnumerator.h" #include "nsSimpleEnumerator.h" @@ -1709,15 +1709,15 @@ #ifdef MOZ_WIDGET_GTK # include "nsIGIOService.h" +# include "nsKDEUtils.h" + # ifdef MOZ_ENABLE_DBUS + # include "mozilla/widget/AsyncDBus.h" + # include "mozilla/WidgetUtilsGtk.h" + # include <map> + # endif #endif #ifdef MOZ_WIDGET_COCOA - # include <Carbon/Carbon.h> - # include "CocoaFileUtils.h" - # include "prmem.h" - # include "plbase64.h" - -@@ -2205,20 +2206,28 @@ nsLocalFile::SetPersistentDescriptor(con +@@ -2366,20 +2367,28 @@ nsLocalFile::SetPersistentDescriptor(con NS_IMETHODIMP nsLocalFile::Reveal() { @@ -1748,7 +1748,7 @@ ::CFRelease(url); return rv; } -@@ -2230,16 +2239,23 @@ nsLocalFile::Reveal() { +@@ -2391,16 +2400,23 @@ nsLocalFile::Reveal() { NS_IMETHODIMP nsLocalFile::Launch() { ++++++ mozilla-silence-no-return-type.patch ++++++ ++++ 1154 lines (skipped) ++++ between /work/SRC/openSUSE:Factory/MozillaFirefox/mozilla-silence-no-return-type.patch ++++ and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.7232/mozilla-silence-no-return-type.patch ++++++ tar_stamps ++++++ --- /var/tmp/diff_new_pack.xBEImT/_old 2024-08-13 13:22:06.231396089 +0200 +++ /var/tmp/diff_new_pack.xBEImT/_new 2024-08-13 13:22:06.235396255 +0200 @@ -1,11 +1,11 @@ PRODUCT="firefox" CHANNEL="release" -VERSION="128.0.3" +VERSION="129.0" VERSION_SUFFIX="" -PREV_VERSION="128.0" +PREV_VERSION="128.0.3" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release" -RELEASE_TAG="38b9888273f81488e7b45457790717820815e1d2" -RELEASE_TIMESTAMP="20240725162350" +RELEASE_TAG="2d113ed75bf04980277ea9af4cd1da31e1d31a01" +RELEASE_TIMESTAMP="20240801122119"