Bug 39343

Summary: Старая версия Firefox в p9 для aarch64
Product: Branch p9 Reporter: Сергей Бессонов <s>
Component: firefoxAssignee: qa-team <qa-team>
Status: CLOSED FIXED QA Contact: qa-p9 <qa-p9>
Severity: normal    
Priority: P5 CC: antohami
Version: не указана   
Hardware: all   
OS: Linux   

Description Сергей Бессонов 2020-11-25 14:28:42 MSK 
В p9 для архитектуры aarch64 firefox до сих пор имеет версию 72. В сизифе уже 82.

Просьба портировать, а то сайты уже ругаются на старинную версию.
Comment 1 Andrey Cherepanov 2020-11-25 14:51:09 MSK 
Используйте актуальный firefox-esr. Сборка именно firefox будет сильно позже.
Comment 2 Сергей Бессонов 2020-11-25 15:14:37 MSK 
Используем. Но firefox-esr тоже 78 версии и на него уже вконтактик ругается.
Comment 3 Andrey Cherepanov 2020-11-25 15:33:51 MSK 
(Ответ для Aceler на комментарий #2)
> Используем. Но firefox-esr тоже 78 версии и на него уже вконтактик ругается.
Отправил промежуточную версию:

262506 BUILDING #1 [locked] p9 rust.git=1.45.1-alt0.1.p9 firefox.git=80.0.1-alt0.1.p9
Comment 4 Repository Robot 2021-01-26 19:10:36 MSK 
firefox-82.0.3-alt0.1.p9 -> p9:

 Sun Jan 03 2021 Andrey Cherepanov <cas@altlinux> 82.0.3-alt0.1.p9
 - Backport new version to p9 branch (ALT #39343).
 - Build with bundled nspr and nss.
 Tue Nov 10 2020 Alexey Gladkov <legion@altlinux.ru> 82.0.3-alt1
 - New release (82.0.3).
 - Security fixes:
   + CVE-2020-26950: Write side effects in MCallGetProperty opcode not accounted for
 Wed Oct 28 2020 Alexey Gladkov <legion@altlinux.ru> 82.0.1-alt1
 - New release (82.0.1).
 Thu Oct 22 2020 Alexey Gladkov <legion@altlinux.ru> 82.0-alt1
 - New release (82.0).
 - Security fixes:
   + CVE-2020-15969: Use-after-free in usersctp
   + CVE-2020-15254: Undefined behavior in bounded channel of crossbeam rust crate
   + CVE-2020-15680: Presence of external protocol handlers could be determined through image tags
   + CVE-2020-15681: Multiple WASM threads may have overwritten each others' stub table entries
   + CVE-2020-15682: The domain associated with the prompt to open an external protocol could be spoofed to display the incorrect origin
   + CVE-2020-15683: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4
   + CVE-2020-15684: Memory safety bugs fixed in Firefox 82
 Wed Oct 14 2020 Alexey Gladkov <legion@altlinux.ru> 81.0.2-alt1
 - New release (81.0.2).
 Sun Oct 04 2020 Alexey Gladkov <legion@altlinux.ru> 81.0.1-alt1
 - New release (81.0.1).
 Sun Sep 27 2020 Alexey Gladkov <legion@altlinux.ru> 81.0-alt1
 - New release (81.0).
 - Build on all architectures.
 - Security fixes:
   + CVE-2020-15675: Use-After-Free in WebGL
   + CVE-2020-15677: Download origin spoofing via redirect
   + CVE-2020-15676: XSS when pasting attacker-controlled data into a contenteditable element
   + CVE-2020-15678: When recursing through layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free scenario
   + CVE-2020-15673: Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3
   + CVE-2020-15674: Memory safety bugs fixed in Firefox 81