Sigurnosni nedostatak programskog paketa firefox

Preporuke

by - 21. lipnja 2019.0

Detalji os-a: WN7
Važnost: IMP
Operativni sustavi: L
Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2019-2cac67b3bc
2019-06-19 22:44:22.999109
——————————————————————————–

Name : firefox
Product : Fedora 30
Version : 67.0.3
Release : 1.fc30
URL : https://www.mozilla.org/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.

——————————————————————————–
Update Information:

– New upstream version (67.0.3) – Fixed CVE-2019-11707: Type confusion in
Array.pop
——————————————————————————–
ChangeLog:

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-2cac67b3bc’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2019-9d9ad2999e
2019-06-21 00:23:50.574236
——————————————————————————–

Name : firefox
Product : Fedora 29
Version : 67.0.3
Release : 1.fc29
URL : https://www.mozilla.org/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.

——————————————————————————–
Update Information:

– New upstream version (67.0.3) – Fixed CVE-2019-11707: Type confusion in
Array.pop —- – New upstream version (67.0.2) – Release notes are available
at https://www.mozilla.org/en-US/firefox/67.0.2/releasenotes/
——————————————————————————–
ChangeLog:

* Tue Jun 18 2019 Martin Stransky <stransky@redhat.com> – 67.0.3-1
– Updated to 67.0.3
* Tue Jun 11 2019 Martin Stransky <stransky@redhat.com> – 67.0.2-1
– Updated to 67.0.2 Build 2
* Thu May 23 2019 Martin Stransky <stransky@redhat.com> – 67.0-4
– Added wayland buffer optimization (mozilla#1553747).
* Fri May 17 2019 Martin Stransky <stransky@redhat.com> – 67.0-3
– Use %lang() in regular builds.
– Updated to 67.0 Build 2
* Thu May 16 2019 Jan Horak <jhorak@redhat.com> – 67.0-2
– Removed %lang() prefix from langpacks file list due to flatpak
* Wed May 15 2019 Martin Stransky <stransky@redhat.com> – 67.0-1
– Updated to 67.0
* Wed May 8 2019 Martin Stransky <stransky@redhat.com> – 66.0.5-1
– Updated to 66.0.5
* Sun May 5 2019 Martin Stransky <stransky@redhat.com> – 66.0.4-1
– Updated to 66.0.4
* Thu May 2 2019 Martin Stransky <stransky@redhat.com> – 66.0.3-2
– Removed fix for mozbz#526293 as it’s broken and does not
bring any new functionality.
* Thu Apr 11 2019 Martin Stransky <stransky@redhat.com> – 66.0.3-1
– Updated to 66.0.3 (Build 1)
* Mon Apr 1 2019 Martin Stransky <stransky@redhat.com> – 66.0.2-1
– Updated to 66.0.2 (Build 1)
– Added fixes for mozbz#1526243, mozbz#1540145
* Thu Mar 28 2019 Martin Stransky <stransky@redhat.com> – 66.0.1-4
– Added fix for mozbz#1539471 – wayland popups/tooltips
* Wed Mar 27 2019 Martin Stransky <stransky@redhat.com> – 66.0.1-3
– Added fix for mozbz#526293 – show remote locations at
file chooser dialog
* Fri Mar 22 2019 Martin Stransky <stransky@redhat.com> – 66.0.1-1
– Updated to 66.0.1 (Build 1)
* Thu Mar 21 2019 Martin Stransky <stransky@redhat.com> – 66.0-10.test
– Test module build, use flatpak global define
– Added fix for F31 (mozbz#1533969)
* Thu Mar 21 2019 Martin Stransky <stransky@redhat.com> – 66.0-9
– Release build
* Thu Mar 21 2019 Martin Stransky <stransky@redhat.com> – 66.0-8.test
– Added module specific build config
– Fixed mozbz#1423598 for multi-monitor setup
* Wed Mar 20 2019 Martin Stransky <stransky@redhat.com> – 66.0-7.test
– Switched to test builds
– Updated mozbz#1468911 patch
* Mon Mar 18 2019 Martin Stransky <stransky@redhat.com> – 66.0-6
– Build release candidate
– Disabled default Wayland backend for Fedora 30
* Mon Mar 18 2019 Martin Stransky <stransky@redhat.com> – 66.0-5
– Added fix for mozbz#1468911
* Mon Mar 18 2019 Martin Stransky <stransky@redhat.com> – 66.0-4
– Release build
* Fri Mar 15 2019 Martin Stransky <stransky@redhat.com> – 66.0-3
– Updated to 66.0 (Build 3)
– Re-enable s390x arches
– Fixed Wayland specific bugs mozbz#1535567, mozbz#1431399
* Tue Mar 12 2019 Martin Stransky <stransky@redhat.com> – 66.0-1
– Updated to 66.0 (Build 1)
* Fri Mar 1 2019 Martin Stransky <stransky@redhat.com> – 65.0.2-1
– Updated to 65.0.2
– Disabled PGO+LTO for Fedora 30
– Disabled Mozilla Crashreporter to get Wayland crashes by ABRT
– Disabled s390x builds due to
https://pagure.io/fedora-infrastructure/issue/7581
* Thu Feb 28 2019 Martin Stransky <stransky@redhat.com> – 65.0.1-2
– Enable ARBT for Fedora 29 and later to catch wayland crashes.
– Disable system libvpx for Fedora 30 and later.
* Wed Feb 20 2019 Martin Stransky <stransky@redhat.com> – 65.0.1-1
– Disabled s390x/f28 builds due to
https://pagure.io/fedora-infrastructure/issue/7581
* Fri Feb 15 2019 Jan Horak <jhorak@redhat.com> – 65.0.1-1
– Update to 65.0.1
* Mon Feb 4 2019 Martin Stransky <stransky@redhat.com> – 65.0-4
– Added fix for mozbz#1522780
* Thu Jan 31 2019 Fedora Release Engineering <releng@fedoraproject.org> – 65.0-3
– Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Thu Jan 31 2019 Jan Grulich <jgrulich@redhat.com> – 65.0-2
– Re-enable PipeWire support
* Mon Jan 28 2019 Martin Stransky <stransky@redhat.com> – 65.0-1
– Update to 65.0 build 2
* Wed Jan 16 2019 Martin Stransky <stransky@redhat.com> – 64.0.2-2
– Rebuild
* Thu Jan 10 2019 Jan Horak <jhorak@redhat.com> – 64.0.2-1
– Update to 64.0.2
* Mon Jan 7 2019 Jan Horak <jhorak@redhat.com> – 64.0-7
– Pipewire patch rebased (thanks to Tomas Popela)
– Enabled PGO on some arches.
* Fri Jan 4 2019 Carmen Bianca Bakker <carmenbianca@fedoraproject.org> – 64.0-6
– Changed locale detector to handle Esperanto (rhbz#1656900)
* Fri Dec 21 2018 Martin Stransky <stransky@redhat.com> – 64.0-5
– Test PGO build.
* Wed Dec 12 2018 Martin Stransky <stransky@redhat.com> – 64.0-4
– Use gcc on all platforms for official release.
* Wed Dec 12 2018 Martin Stransky <stransky@redhat.com> – 64.0-3
– Updated PGO build setup.
* Tue Dec 4 2018 Martin Stransky <stransky@redhat.com> – 64.0-2
– Updated to Firefox 64 (Build 3)
– Built with Clang on some arches.
* Mon Nov 26 2018 Martin Stransky <stransky@redhat.com> – 63.0.3-3
– [Wayland] Fixed issues with Sway compositor and wl_keyboard setup
(mozbz#1507475).
* Wed Nov 21 2018 Martin Stransky <stransky@redhat.com> – 63.0.3-2
– [Wayland] Fixed mozbz#1507475 – crash when display changes
(rhbz#1646151).
* Thu Nov 15 2018 Martin Stransky <stransky@redhat.com> – 63.0.3-1
– Updated to latest upstream (63.0.3)
* Tue Nov 13 2018 Martin Stransky <stransky@redhat.com> – 63.0.1-6
– Added an option to build with clang/llvm.
– Fixed debug builds.
– Fixed warnings at Wayland clipboard code.
* Tue Nov 6 2018 Martin Stransky <stransky@redhat.com> – 63.0.1-5
– Added fix for mozbz#1502457- disable Contextual Feature
Recommender/shield studies by default.
* Mon Nov 5 2018 Martin Stransky <stransky@redhat.com> – 63.0.1-4
– Added clipboard fix (mozbz#1504689)
* Fri Nov 2 2018 Dan Horak <dhorak@redhat.com> – 63.0.1-3
– Added fixes for ppc64le
* Thu Nov 1 2018 Martin Stransky <stransky@redhat.com> – 63.0.1-2
– Fixed typo on man page (rhbz#1643766)
* Thu Nov 1 2018 Martin Stransky <stransky@redhat.com> – 63.0.1-1
– Updated to latest upstream (63.0.1 build 4)
* Tue Oct 23 2018 Martin Stransky <stransky@redhat.com> – 63.0-2
– Updated to latest upstream (63.0 build 2)
* Thu Oct 18 2018 Martin Stransky <stransky@redhat.com> – 63.0-1
– Updated to latest upstream (63.0)
– Updated PipeWire patch
* Tue Oct 9 2018 Martin Stransky <stransky@redhat.com> – 62.0.3-4
– Added fix for mozbz#1447775 – wrong dropspace sizing.
* Tue Oct 9 2018 Martin Stransky <stransky@redhat.com> – 62.0.3-3
– Added fix for mozbz#1493081 – popups incorrectly placed and sized.
* Mon Oct 8 2018 Martin Stransky <stransky@redhat.com> – 62.0.3-2
– Added pipewire patch (mozbz#1496359)
– Added Wayland patches from Firefox 63
– Enable Wayland backed by default on Fedora 30
——————————————————————————–
References:

[ 1 ] Bug #1716984 – Firefox 67.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1716984
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-9d9ad2999e’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Autor	Josip Papratovic
Cert id	NCERT-REF-2019-06-0001-ADV
Cve	CERT-CVE-DUMMY
ID izvornika	CERT-ORIGID-DUMMY
Proizvod	CERT-DUMMY-PRODUCT
Izvor	Adobe

Sigurnosni nedostatak programskog paketa firefox

Archives

More in Preporuke

Sigurnosni nedostaci programske biblioteke libvirt