This package provides debug sources for package MozillaFirefox. Debug sources are useful when developing applications that use this package or when debugging this package.
Homepage | http://www.mozilla.org/ |
---|
74.0

68.6.0


68.5.0

68.4.2

68.4.1

68.3.0

68.2.0


68.1.0


60.8.0


60.7.2



60.7.0


60.6.3



60.6.2


60.6.1



60.5.1


60.5.0


60.4.0


60.3.0


60.2.2


60.2.1


60.2.0


60.1.0


60.0.2


60.0.1


60.0


52.8.0

52.7.3

52.7.2

52.7

52.6

52.5.3

52.5.2

52.5.0

52.4.0

52.3.0

52.2

Distribution | Version | Since | Package | Installed | Packager | |
---|---|---|---|---|---|---|
![]() | rpm | 60.0-lp150.2.2 | 2019-01-17 | 32.6 MiB | 209 MiB | https://bugs.opensuse.org |
![]() | rpm | 68.2.0-lp150.3.71.1 | 2019-11-09 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.1.0-lp150.3.66.1 | 2019-10-06 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.8.0-lp150.3.62.1 | 2019-07-20 | 32.5 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.7.2-lp150.3.59.1 | 2019-06-23 | 32.5 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.7.0-lp150.3.54.5 | 2019-06-17 | 32.5 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.3-lp150.3.51.2 | 2019-06-17 | 32.5 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.2-lp150.3.48.1 | 2019-06-17 | 32.5 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.1-lp150.3.45.1 | 2019-03-29 | 32.5 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.5.1-lp150.3.39.2 | 2019-02-26 | 32.5 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.5.0-lp150.3.36.1 | 2019-02-04 | 32.6 MiB | 207 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.4.0-lp150.3.30.1 | 2019-01-18 | 32.6 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.3.0-lp150.3.27.2 | 2019-01-18 | 32.7 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.2-lp150.3.23.1 | 2019-01-18 | 32.7 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.1-lp150.3.20.1 | 2019-01-18 | 32.7 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.1-lp150.3.17.1 | 2019-01-18 | 32.7 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.0-lp150.3.14.1 | 2019-01-18 | 32.7 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.1.0-lp150.3.11.1 | 2019-01-18 | 32.7 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.0.2-lp150.3.6.1 | 2019-01-18 | 32.6 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.0.1-lp150.3.3.2 | 2019-01-18 | 32.6 MiB | 209 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.1-lp151.1.3 | 2019-04-09 | 32.5 MiB | 207 MiB | https://bugs.opensuse.org |
![]() | rpm | 68.6.0-lp151.2.36.1 | Mar 25 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.6.0-lp151.2.33.1 | Mar 14 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.5.0-lp151.2.30.1 | 2020-02-18 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.4.2-lp151.2.27.1 | 2020-02-05 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.4.1-lp151.2.24.1 | 2020-01-15 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.3.0-lp151.2.21.1 | 2020-01-09 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.2.0-lp151.2.18.2 | 2019-11-09 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.1.0-lp151.2.14.1 | 2019-10-05 | 34.6 MiB | 222 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.8.0-lp151.2.10.1 | 2019-07-21 | 30.5 MiB | 193 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.7.2-lp151.2.7.1 | 2019-06-24 | 30.4 MiB | 193 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.3-lp151.2.3.6 | 2019-06-17 | 30.4 MiB | 193 MiB | http://bugs.opensuse.org |
![]() | rpm | 68.6.0-lp152.1.3 | Mar 23 | 34.6 MiB | 222 MiB | https://bugs.opensuse.org |
![]() | rpm | 52.2-58.2 | 2019-01-17 | 35.5 MiB | 270 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.7.2-150.1 | 2019-06-23 | 39.8 MiB | 298 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.7.0-145.2 | 2019-06-17 | 39.8 MiB | 297 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.3-142.1 | 2019-06-17 | 39.7 MiB | 297 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.2-138.1 | 2019-06-17 | 39.7 MiB | 297 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.6.1-135.1 | 2019-03-27 | 39.7 MiB | 297 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.5.1-131.1 | 2019-02-19 | 39.8 MiB | 297 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.5.0-128.1 | 2019-02-04 | 39.7 MiB | 297 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.4.0-125.1 | 2019-01-18 | 39.9 MiB | 300 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.3.0-122.2 | 2019-01-18 | 39.8 MiB | 300 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.2-118.1 | 2019-01-18 | 39.8 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.1-115.1 | 2019-01-18 | 39.8 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.1-112.1 | 2019-01-18 | 39.8 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.2.0-109.1 | 2019-01-18 | 39.8 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.1.0-106.1 | 2019-01-18 | 39.8 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.0.2-101.1 | 2019-01-18 | 39.7 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.0.1-98.2 | 2019-01-18 | 39.7 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 60.0-95.1 | 2019-01-18 | 39.7 MiB | 299 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.8.0-89.1 | 2019-01-18 | 35.8 MiB | 272 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.7.3-86.1 | 2019-01-18 | 35.8 MiB | 272 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.7.2-81.1 | 2019-01-18 | 35.8 MiB | 272 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.7-78.1 | 2019-01-18 | 35.7 MiB | 272 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.6-75.1 | 2019-01-18 | 35.7 MiB | 271 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.5.3-72.1 | 2019-01-18 | 35.7 MiB | 271 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.5.2-69.1 | 2019-01-18 | 35.7 MiB | 271 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.5.0-66.1 | 2019-01-18 | 35.7 MiB | 271 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.4.0-63.2 | 2019-01-18 | 35.6 MiB | 271 MiB | http://bugs.opensuse.org |
![]() | rpm | 52.3.0-60.1 | 2019-01-18 | 35.6 MiB | 271 MiB | http://bugs.opensuse.org |
![]() | rpm | 74.0-1.1 | Mar 20 | 36.1 MiB | 233 MiB | https://bugs.opensuse.org |
Latest updates

OpenSUSE Leap 15.1 debug/update/oss: Updated from 68.6.0-lp151.2.33.1 to 68.6.0-lp151.2.36.1
Mar 25
- Added patch: firefox-fips.patch (bsc#1167231)
- FIPS: MozillaFirefox: allow /proc/sys/crypto/fips_enabled

OpenSUSE Leap 15.2 debug/oss: Updated from 68.6.0-lp152.1.1 to 68.6.0-lp152.1.3
Mar 23
- Firefox Extended Support Release 68.6.0 ESR
- Fixed: Various stability and security fixes
- CVE-2020-6805 (bmo#1610880)
Use-after-free when removing data about origins - CVE-2020-6806 (bmo#1612308)
BodyStream::OnInputStreamReady was missing protections against state confusion - CVE-2020-6807 (bmo#1614971)
Use-after-free in cubeb during stream destruction - CVE-2020-6811 (bmo#1607742)
Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection - CVE-2019-20503 (bmo#1613765)
Out of bounds reads in sctp_load_addresses_from_init - CVE-2020-6812 (bmo#1616661)
The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission - CVE-2020-6814 (bmo#1592078, bmo#1604847, bmo#1608256,
bmo#1612636, bmo#1614339)
Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6

OpenSUSE Tumbleweed debug/oss: Updated from 73.0.1-2.2 to 74.0-1.1
Mar 20
- Mozilla Firefox 74.0
MFSA 2020-08 (bsc#1166238)
- CVE-2020-6805 (bmo#1610880)
Use-after-free when removing data about origins - CVE-2020-6806 (bmo#1612308)
BodyStream::OnInputStreamReady was missing protections against state confusion - CVE-2020-6807 (bmo#1614971)
Use-after-free in cubeb during stream destruction - CVE-2020-6808 (bmo#1247968)
URL Spoofing via javascript: URL - CVE-2020-6809 (bmo#1420296)
Web Extensions with the all-urls permission could access local files - CVE-2020-6810 (bmo#1432856)
Focusing a popup while in fullscreen could have obscured the fullscreen notification - CVE-2020-6811 (bmo#1607742)
Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection - CVE-2019-20503 (bmo#1613765)
Out of bounds reads in sctp_load_addresses_from_init - CVE-2020-6812 (bmo#1616661)
The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission - CVE-2020-6813 (bmo#1605814)
@import statements in CSS could bypass the Content Security Policy nonce feature - CVE-2020-6814 (bmo#1592078,bmo#1604847,bmo#1608256,bmo#1612636, bmo#1614339)
Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6 - CVE-2020-6815 (bmo#1181957,bmo#1557732,bmo#1557739,bmo#1611457, bmo#1612431)
Memory and script safety bugs fixed in Firefox 74
- CVE-2020-6805 (bmo#1610880)
- requires
- NSPR 4.25
- NSS 3.50
- rust-cbindgen 0.13.0
- removed obsolete patches
mozilla-bmo1610814.patch
mozilla-cubeb-noreturn.patch - add mozilla-bmo1609538.patch to fix wayland issues with mutter 3.36 (bmo#1609538, boo#1166471)

OpenSUSE Leap 15.2 debug/oss: Updated from 68.5.0-lp152.1.2 to 68.6.0-lp152.1.1
Mar 19
- Firefox Extended Support Release 68.6.0 ESR
- Fixed: Various stability and security fixes
- CVE-2020-6805 (bmo#1610880)
Use-after-free when removing data about origins - CVE-2020-6806 (bmo#1612308)
BodyStream::OnInputStreamReady was missing protections against state confusion - CVE-2020-6807 (bmo#1614971)
Use-after-free in cubeb during stream destruction - CVE-2020-6811 (bmo#1607742)
Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection - CVE-2019-20503 (bmo#1613765)
Out of bounds reads in sctp_load_addresses_from_init - CVE-2020-6812 (bmo#1616661)
The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission - CVE-2020-6814 (bmo#1592078, bmo#1604847, bmo#1608256,
bmo#1612636, bmo#1614339)
Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6

OpenSUSE Leap 15.2 debug/oss: Updated from 68.5.0-lp152.1.1 to 68.5.0-lp152.1.2
Mar 15
- Firefox Extended Support Release 68.5.0 ESR
- Fixed: Various stability and security fixes
- Mozilla Firefox ESR68.5
MFSA 2020-06 (bsc#1163368)- CVE-2020-6796 (bmo#1610426)
Missing bounds check on shared memory read in the parent process - CVE-2020-6797 (bmo#1596668)
Extensions granted downloads.open permission could open arbitrary applications on Mac OSX - CVE-2020-6798 (bmo#1602944)
Incorrect parsing of template tag could result in JavaScript injection - CVE-2020-6799 (bmo#1606596)
Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader - CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,
bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5
- CVE-2020-6796 (bmo#1610426)

OpenSUSE Leap 15.1 debug/update/oss: Updated from 68.5.0-lp151.2.30.1 to 68.6.0-lp151.2.33.1
Mar 14
- Firefox Extended Support Release 68.6.0 ESR
- Fixed: Various stability and security fixes
- CVE-2020-6805 (bmo#1610880)
Use-after-free when removing data about origins - CVE-2020-6806 (bmo#1612308)
BodyStream::OnInputStreamReady was missing protections against state confusion - CVE-2020-6807 (bmo#1614971)
Use-after-free in cubeb during stream destruction - CVE-2020-6811 (bmo#1607742)
Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection - CVE-2019-20503 (bmo#1613765)
Out of bounds reads in sctp_load_addresses_from_init - CVE-2020-6812 (bmo#1616661)
The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission - CVE-2020-6814 (bmo#1592078, bmo#1604847, bmo#1608256,
bmo#1612636, bmo#1614339)
Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6

OpenSUSE Tumbleweed debug/oss: Updated from 73.0.1-2.1 to 73.0.1-2.2
Mar 06
- big endian fixes

OpenSUSE Tumbleweed debug/oss: Updated from 73.0.1-1.1 to 73.0.1-2.1
2020-03-02
- big endian fixes

OpenSUSE Tumbleweed debug/oss: Updated from 73.0-1.1 to 73.0.1-1.1
2020-02-27
- Mozilla Firefox 73.0.1
- Resolved problems connecting to the RBC Royal Bank website (bmo#1613943)
- Fixed Firefox unexpectedly exiting when leaving Print Preview mode (bmo#1611133)
- Fixed crashes when playing encrypted content on some Linux systems (bmo#1614535)
- start in wayland mode when running under wayland session

OpenSUSE Leap 15.2 debug/oss: Updated from 68.4.1-lp152.1.2 to 68.5.0-lp152.1.1
2020-02-24
- Firefox Extended Support Release 68.5.0 ESR
- Fixed: Various stability and security fixes
- Mozilla Firefox ESR68.5
MFSA 2020-06 (bsc#1163368)- CVE-2020-6796 (bmo#1610426)
Missing bounds check on shared memory read in the parent process - CVE-2020-6797 (bmo#1596668)
Extensions granted downloads.open permission could open arbitrary applications on Mac OSX - CVE-2020-6798 (bmo#1602944)
Incorrect parsing of template tag could result in JavaScript injection - CVE-2020-6799 (bmo#1606596)
Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader - CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,
bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5
- CVE-2020-6796 (bmo#1610426)

OpenSUSE Leap 15.1 debug/update/oss: Updated from 68.4.2-lp151.2.27.1 to 68.5.0-lp151.2.30.1
2020-02-18
- Firefox Extended Support Release 68.5.0 ESR
- Fixed: Various stability and security fixes
- Mozilla Firefox ESR68.5
MFSA 2020-06 (bsc#1163368)- CVE-2020-6796 (bmo#1610426)
Missing bounds check on shared memory read in the parent process - CVE-2020-6797 (bmo#1596668)
Extensions granted downloads.open permission could open arbitrary applications on Mac OSX - CVE-2020-6798 (bmo#1602944)
Incorrect parsing of template tag could result in JavaScript injection - CVE-2020-6799 (bmo#1606596)
Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader - CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,
bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5
- CVE-2020-6796 (bmo#1610426)

OpenSUSE Tumbleweed debug/oss: Updated from 72.0.2-2.1 to 73.0-1.1
2020-02-15
- Mozilla Firefox 73.0
- Added support for setting a default zoom level applicable for all web content
- High-contrast mode has been updated to allow background images
- Improved audio quality when playing back audio at a faster or slower speed
- Added NextDNS as alternative option for DNS over HTTPS
- CVE-2020-6796 (bmo#1610426)
Missing bounds check on shared memory read in the parent process - CVE-2020-6797 (bmo#1596668) (MacOS X only)
Extensions granted downloads.open permission could open arbitrary applications on Mac OSX - CVE-2020-6798 (bmo#1602944)
Incorrect parsing of template tag could result in JavaScript injection - CVE-2020-6799 (bmo#1606596) (Windows only)
Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader - CVE-2020-6800 (bmo#1595786,bmo#1596706,bmo#1598543,bmo#1604851, bmo#1608580,bmo#1608785,bmo#1605777)
Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 - CVE-2020-6801 (bmo#1601024,bmo#1601712,bmo#1604836,bmo#1606492) Memory safety bugs fixed in Firefox 73
- updated requirements
- rust >= 1.39
- NSS >= 3.49.2
- rust-cbindgen >= 0.12.0
- rebased patches
- removed obsolete patch
- mozilla-bmo1601707.patch
- switched to cairo-gtk3-wayland build
(to fully enable wayland MOZ_ENABLE_WAYLAND=1 needs to be set) - disabled elfhack due to failing packager
https://github.com/openSUSE/firefox-maintenance/issues/28 - disabled PGO due to build failure
https://github.com/openSUSE/firefox-maintenance/issues/29

OpenSUSE Tumbleweed debug/oss: Updated from 72.0.2-1.1 to 72.0.2-2.1
2020-02-09
- Use a symbolic icon from branding internals
- Pixmaps no longer required for the desktops

OpenSUSE Leap 15.1 debug/update/oss: Updated from 68.4.1-lp151.2.24.1 to 68.4.2-lp151.2.27.1
2020-02-05
- Firefox Extended Support Release 68.4.2 ESR
- Fixed: Fixed various issues opening files with spaces in their path (bmo#1601905, bmo#1602726)

OpenSUSE Leap 15.2 debug/oss: Updated from 68.3.0-lp152.1.2 to 68.4.1-lp152.1.2
2020-02-04
- Firefox Extended Support Release 68.4.1 ESR
- Fixed: Security fix
- CVE-2019-17026 (bmo#1607443)
IonMonkey type confusion with StoreElementHole and FallibleStoreElement

OpenSUSE Tumbleweed debug/oss: Updated from 72.0.1-1.3 to 72.0.2-1.1
2020-01-26
- Mozilla Firefox 72.0.2
- Various stability fixes
- Fixed issues opening files with spaces in their path (bmo#1601905)
- Fixed a hang opening about:logins when a master password is set (bmo#1606992)
- Fixed a web compatibility issue with CSS Shadow Parts which shipped in Firefox 72 (bmo#1604989)
- Fixed inconsistent playback performance for fullscreen 1080p videos on some systems (bmo#1608485)

OpenSUSE Tumbleweed debug/oss: Updated from 72.0.1-1.2 to 72.0.1-1.3
2020-01-25
- Mozilla Firefox 72.0.1
MFSA 2020-03 (bsc#1160498)- CVE-2019-17026 (bmo#1607443)
IonMonkey type confusion with StoreElementHole and FallibleStoreElement
- CVE-2019-17026 (bmo#1607443)
- Mozilla Firefox 72.0
- block fingerprinting scripts by default
- new notification pop-ups
- Picture-in-picture video
- CVE-2019-17016 (bmo#1599181)
Bypass of @namespace CSS sanitization during pasting - CVE-2019-17017 (bmo#1603055)
Type Confusion in XPCVariant.cpp - CVE-2019-17020 (bmo#1597645)
Content Security Policy not applied to XSL stylesheets applied to XML documents - CVE-2019-17022 (bmo#1602843)
CSS sanitization does not escape HTML tags - CVE-2019-17023 (bmo#1590001) (fixed in NSS FIXME)
NSS may negotiate TLS 1.2 or below after a TLS 1.3 HelloRetryRequest had been sent - CVE-2019-17024 (bmo#1507180,bmo#1595470,bmo#1598605,bmo#1601826) Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4
- CVE-2019-17025 (bmo#1328295,bmo#1328300,bmo#1590447,bmo#1590965 bmo#1595692,bmo#1597321,bmo#1597481)
Memory safety bugs fixed in Firefox 72
- update create-tar.sh to skip compare-locales
- requires NSPR 4.24 and NSS 3.48
- removed usage of browser-plugins convention for NPAPI plugins from start wrapper and changed the RPM macro to the
/usr/$LIB/mozilla/plugins location (boo#1160302)

OpenSUSE Tumbleweed debug/oss: Updated from 72.0.1-1.1 to 72.0.1-1.2
2020-01-24
- Mozilla Firefox 72.0.1
MFSA 2020-03 (bsc#1160498)- CVE-2019-17026 (bmo#1607443)
IonMonkey type confusion with StoreElementHole and FallibleStoreElement
- CVE-2019-17026 (bmo#1607443)
- Mozilla Firefox 72.0
- block fingerprinting scripts by default
- new notification pop-ups
- Picture-in-picture video
- CVE-2019-17016 (bmo#1599181)
Bypass of @namespace CSS sanitization during pasting - CVE-2019-17017 (bmo#1603055)
Type Confusion in XPCVariant.cpp - CVE-2019-17020 (bmo#1597645)
Content Security Policy not applied to XSL stylesheets applied to XML documents - CVE-2019-17022 (bmo#1602843)
CSS sanitization does not escape HTML tags - CVE-2019-17023 (bmo#1590001) (fixed in NSS FIXME)
NSS may negotiate TLS 1.2 or below after a TLS 1.3 HelloRetryRequest had been sent - CVE-2019-17024 (bmo#1507180,bmo#1595470,bmo#1598605,bmo#1601826) Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4
- CVE-2019-17025 (bmo#1328295,bmo#1328300,bmo#1590447,bmo#1590965 bmo#1595692,bmo#1597321,bmo#1597481)
Memory safety bugs fixed in Firefox 72
- update create-tar.sh to skip compare-locales
- requires NSPR 4.24 and NSS 3.48
- removed usage of browser-plugins convention for NPAPI plugins from start wrapper and changed the RPM macro to the
/usr/$LIB/mozilla/plugins location (boo#1160302)

OpenSUSE Leap 15.2 debug/oss: Updated from 68.3.0-lp152.1.1 to 68.3.0-lp152.1.2
2020-01-17
- Firefox Extended Support Release 68.3.0 ESR
- Changed: Updates to improve performance and stability
- CVE-2019-17008 (bmo#1546331)
Use-after-free in worker destruction - CVE-2019-13722 (bmo#1580156)
Stack corruption due to incorrect number of arguments in WebRTC code - CVE-2019-11745 (bmo#1586176)
Out of bounds write in NSS when encrypting with a block cipher - CVE-2019-17009 (bmo#1510494)
Updater temporary files accessible to unprivileged processes - CVE-2019-17010 (bmo#1581084)
Use-after-free when performing device orientation checks - CVE-2019-17005 (bmo#1584170)
Buffer overflow in plain text serializer - CVE-2019-17011 (bmo#1591334)
Use-after-free when retrieving a document in antitracking - CVE-2019-17012 (bmo#1449736, bmo#1533957, bmo#1560667, bmo#1567209, bmo#1580288, bmo#1585760, bmo#1592502) Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3

OpenSUSE Leap 15.1 debug/update/oss: Updated from 68.3.0-lp151.2.21.1 to 68.4.1-lp151.2.24.1
2020-01-15
- Firefox Extended Support Release 68.4.1 ESR
- Fixed: Security fix
- CVE-2019-17026 (bmo#1607443)
IonMonkey type confusion with StoreElementHole and FallibleStoreElement
Related packages
MozillaFirefox - Mozilla Firefox Web Browser