#39343 – Старая версия Firefox в p9 для aarch64

Bug 39343 - Старая версия Firefox в p9 для aarch64

Summary: Старая версия Firefox в p9 для aarch64

Status:	CLOSED FIXED

Alias:	None

Product:	Branch p9
Classification:	Distributions
Component:	firefox (show other bugs)
Version:	не указана
Hardware:	all Linux

Importance:	P5 normal
Assignee:	qa-team@altlinux.org
QA Contact:	qa-p9@altlinux.org

URL:
Keywords:

Depends on:
Blocks:

Reported:	2020-11-25 14:28 MSK by Сергей Бессонов
Modified:	2021-01-26 19:10 MSK (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Сергей Бессонов 2020-11-25 14:28:42 MSK

В p9 для архитектуры aarch64 firefox до сих пор имеет версию 72. В сизифе уже 82.

Просьба портировать, а то сайты уже ругаются на старинную версию.

Comment 1 Andrey Cherepanov 2020-11-25 14:51:09 MSK

Используйте актуальный firefox-esr. Сборка именно firefox будет сильно позже.

Comment 2 Сергей Бессонов 2020-11-25 15:14:37 MSK

Используем. Но firefox-esr тоже 78 версии и на него уже вконтактик ругается.

Comment 3 Andrey Cherepanov 2020-11-25 15:33:51 MSK

(Ответ для Aceler на комментарий #2)
> Используем. Но firefox-esr тоже 78 версии и на него уже вконтактик ругается.
Отправил промежуточную версию:

262506 BUILDING #1 [locked] p9 rust.git=1.45.1-alt0.1.p9 firefox.git=80.0.1-alt0.1.p9

Comment 4 Repository Robot 2021-01-26 19:10:36 MSK

firefox-82.0.3-alt0.1.p9 -> p9:

 Sun Jan 03 2021 Andrey Cherepanov <cas@altlinux> 82.0.3-alt0.1.p9
 - Backport new version to p9 branch (ALT #39343).
 - Build with bundled nspr and nss.
 Tue Nov 10 2020 Alexey Gladkov <legion@altlinux.ru> 82.0.3-alt1
 - New release (82.0.3).
 - Security fixes:
   + CVE-2020-26950: Write side effects in MCallGetProperty opcode not accounted for
 Wed Oct 28 2020 Alexey Gladkov <legion@altlinux.ru> 82.0.1-alt1
 - New release (82.0.1).
 Thu Oct 22 2020 Alexey Gladkov <legion@altlinux.ru> 82.0-alt1
 - New release (82.0).
 - Security fixes:
   + CVE-2020-15969: Use-after-free in usersctp
   + CVE-2020-15254: Undefined behavior in bounded channel of crossbeam rust crate
   + CVE-2020-15680: Presence of external protocol handlers could be determined through image tags
   + CVE-2020-15681: Multiple WASM threads may have overwritten each others' stub table entries
   + CVE-2020-15682: The domain associated with the prompt to open an external protocol could be spoofed to display the incorrect origin
   + CVE-2020-15683: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4
   + CVE-2020-15684: Memory safety bugs fixed in Firefox 82
 Wed Oct 14 2020 Alexey Gladkov <legion@altlinux.ru> 81.0.2-alt1
 - New release (81.0.2).
 Sun Oct 04 2020 Alexey Gladkov <legion@altlinux.ru> 81.0.1-alt1
 - New release (81.0.1).
 Sun Sep 27 2020 Alexey Gladkov <legion@altlinux.ru> 81.0-alt1
 - New release (81.0).
 - Build on all architectures.
 - Security fixes:
   + CVE-2020-15675: Use-After-Free in WebGL
   + CVE-2020-15677: Download origin spoofing via redirect
   + CVE-2020-15676: XSS when pasting attacker-controlled data into a contenteditable element
   + CVE-2020-15678: When recursing through layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free scenario
   + CVE-2020-15673: Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3
   + CVE-2020-15674: Memory safety bugs fixed in Firefox 81