6 Jan
2020
6 Jan
'20
17:12
Hi,
as an heads up, FF ignores MOZ_PLUGIN_PATH now, resulting in dysfunctional plug-ins. Wolfgang is innocent of course, upstream intentionally broke it:
https://bugzilla.mozilla.org/show_bug.cgi?id=1602308
Dirty quick fix for Flash:
ln -s ../../browser-plugins/libfreshwrapper-flashplayer.so /usr/lib64/mozilla/plugins
Cheers, Pete
Am Mittwoch, 1. Januar 2020, 05:03:05 CET schrieb Dominique Leuenberger:
MozillaFirefox (70.0.1 -> 71.0)
- Mozilla Firefox 71.0
MFSA 2019-36
- Improvements to Lockwise, our integrated password manager
- More information about Enhanced Tracking Protection in action
- Native MP3 decoding on Windows, Linux, and macOS
- Configuration page (about:config) reimplemented in HTML
- New kiosk mode functionality, which allows maximum screen space for customer-facing displays
- CVE-2019-11756 (bmo#1508776) Use-after-free of SFTKSession object
- CVE-2019-17008 (bmo#1546331) Use-after-free in worker destruction
- CVE-2019-13722 (bmo#1580156) (Windows only) Stack corruption due to incorrect number of arguments in WebRTC code
- CVE-2019-17014 (bmo#1322864) Dragging and dropping a cross-origin resource, incorrectly loaded as an image, could result in information disclosure
- CVE-2019-17010 (bmo#1581084) Use-after-free when performing device orientation checks
- CVE-2019-17005 (bmo#1584170) Buffer overflow in plain text serializer
- CVE-2019-17011 (bmo#1591334) Use-after-free when retrieving a document in antitracking
- CVE-2019-17012 (bmo#1449736, bmo#1533957, bmo#1560667, bmo#1567209 bmo#1580288, bmo#1585760, bmo#1592502) Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3
- CVE-2019-17013 (bmo#1298509, bmo#1472328, bmo#1577439, bmo#1577937 bmo#1580320, bmo#1584195, bmo#1585106, bmo#1586293, bmo#1593865 bmo#1594181) Memory safety bugs fixed in Firefox 71
- requires NSPR >= 4.23 NSS >= 3.47.1 rust/cargo >= 1.37
- reactivate webrtc for platforms where it was disabled
- updated create-tar.sh to cover buildid and origin repo information
- removed obsolete patches mozilla-bmo1511604.patch mozilla-openaes-decl.patch
- changed locale building procedure
- removed obsolete compare-locales.tar.xz
- added mozilla-bmo1601707.patch to fix gcc/LTO builds (bmo#1601707, boo#1158466)
- added mozilla-bmo849632.patch to fix big endian issues in skia used for WebGL
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org
To contact the owner, e-mail: opensuse-factory+owner@opensuse.org