Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package MozillaFirefox for openSUSE:Factory
checked in at 2021-01-29 14:55:31
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old)
and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.28504 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox"
Fri Jan 29 14:55:31 2021 rev:327 rq:867008 version:85.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes
2021-01-14 15:03:55.630646450 +0100
+++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.28504/MozillaFirefox.changes
2021-01-29 14:55:48.209395196 +0100
@@ -1,0 +2,49 @@
+Sun Jan 24 11:53:58 UTC 2021 - Wolfgang Rosenauer <w...@rosenauer.org>
+
+- Mozilla Firefox 85.0
+ * Adobe Flash is completely history
+ * supercookie protection
+ * new bookmark handling and features
+ MFSA 2021-03 (bsc#1181414)
+ * CVE-2021-23953 (bmo#1683940)
+ Cross-origin information leakage via redirected PDF requests
+ * CVE-2021-23954 (bmo#1684020)
+ Type confusion when using logical assignment operators in
+ JavaScript switch statements
+ * CVE-2021-23955 (bmo#1684837)
+ Clickjacking across tabs through misusing requestPointerLock
+ * CVE-2021-23956 (bmo#1338637)
+ File picker dialog could have been used to disclose a
+ complete directory
+ * CVE-2021-23957 (bmo#1584582)
+ Iframe sandbox could have been bypassed on Android via the
+ intent URL scheme
+ * CVE-2021-23958 (bmo#1642747)
+ Screen sharing permission leaked across tabs
+ * CVE-2021-23959 (bmo#1659035)
+ Cross-Site Scripting in error pages on Firefox for Android
+ * CVE-2021-23960 (bmo#1675755)
+ Use-after-poison for incorrectly redeclared JavaScript
+ variables during GC
+ * CVE-2021-23961 (bmo#1677940)
+ More internal network hosts could have been probed by a
+ malicious webpage
+ * CVE-2021-23962 (bmo#1677194)
+ Use-after-poison in
+ <code>nsTreeBodyFrame::RowCountChanged</code>
+ * CVE-2021-23963 (bmo#1680793)
+ Permission prompt inaccessible after asking for additional
+ permissions
+ * CVE-2021-23964 (bmo#1662507, bmo#1666285, bmo#1673526, bmo#1674278,
+ bmo#1674835, bmo#1675097, bmo#1675844, bmo#1675868, bmo#1677590,
+ bmo#1677888, bmo#1680410, bmo#1681268, bmo#1682068, bmo#1682938,
+ bmo#1683736, bmo#1685260, bmo#1685925)
+ Memory safety bugs fixed in Firefox 85 and Firefox ESR 78.7
+ * CVE-2021-23965 (bmo#1670378, bmo#1673555, bmo#1676812, bmo#1678582,
+ bmo#1684497)
+ Memory safety bugs fixed in Firefox 85
+- requires NSS 3.60.1
+- requires rust 1.47
+- remove obsolete mozilla-pipewire-0-3.patch
+
+-------------------------------------------------------------------
Old:
----
firefox-84.0.2.source.tar.xz
firefox-84.0.2.source.tar.xz.asc
l10n-84.0.2.tar.xz
mozilla-pipewire-0-3.patch
New:
----
firefox-85.0.source.tar.xz
firefox-85.0.source.tar.xz.asc
l10n-85.0.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ MozillaFirefox.spec ++++++
--- /var/tmp/diff_new_pack.LA1wer/_old 2021-01-29 14:56:20.841443207 +0100
+++ /var/tmp/diff_new_pack.LA1wer/_new 2021-01-29 14:56:20.841443207 +0100
@@ -2,7 +2,7 @@
# spec file for package MozillaFirefox
#
# Copyright (c) 2021 SUSE LLC
-# 2006-2020 Wolfgang Rosenauer <w...@rosenauer.org>
+# 2006-2021 Wolfgang Rosenauer <w...@rosenauer.org>
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -29,9 +29,9 @@
# orig_suffix b3
# major 69
# mainver %major.99
-%define major 84
-%define mainver %major.0.2
-%define orig_version 84.0.2
+%define major 85
+%define mainver %major.0
+%define orig_version 85.0
%define orig_suffix %{nil}
%define update_channel release
%define branding 1
@@ -92,7 +92,7 @@
%else
BuildRequires: gcc-c++
%endif
-BuildRequires: cargo >= 1.44
+BuildRequires: cargo >= 1.47
BuildRequires: ccache
BuildRequires: libXcomposite-devel
BuildRequires: libcurl-devel
@@ -101,7 +101,7 @@
BuildRequires: libproxy-devel
BuildRequires: makeinfo
BuildRequires: mozilla-nspr-devel >= 4.29
-BuildRequires: mozilla-nss-devel >= 3.59.1
+BuildRequires: mozilla-nss-devel >= 3.60.1
BuildRequires: nasm >= 2.14
BuildRequires: nodejs10 >= 10.22.1
%if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000
@@ -111,7 +111,7 @@
BuildRequires: python3 >= 3.5
BuildRequires: python3-devel
%endif
-BuildRequires: rust >= 1.44
+BuildRequires: rust >= 1.47
BuildRequires: rust-cbindgen >= 0.15.0
BuildRequires: unzip
BuildRequires: update-desktop-files
@@ -207,7 +207,6 @@
Patch20: mozilla-fix-top-level-asm.patch
Patch21: mozilla-bmo1504834-part4.patch
Patch22: mozilla-bmo849632.patch
-Patch23: mozilla-pipewire-0-3.patch
Patch24: mozilla-bmo1602730.patch
Patch25: mozilla-bmo998749.patch
Patch26: mozilla-bmo1626236.patch
@@ -347,9 +346,6 @@
%patch20 -p1
%patch21 -p1
%patch22 -p1
-%if %{with_pipewire0_3}
-%patch23 -p1
-%endif
%patch24 -p1
%patch25 -p1
%patch26 -p1
++++++ firefox-84.0.2.source.tar.xz -> firefox-85.0.source.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaFirefox/firefox-84.0.2.source.tar.xz
/work/SRC/openSUSE:Factory/.MozillaFirefox.new.28504/firefox-85.0.source.tar.xz
differ: char 15, line 1
++++++ l10n-84.0.2.tar.xz -> l10n-85.0.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaFirefox/l10n-84.0.2.tar.xz
/work/SRC/openSUSE:Factory/.MozillaFirefox.new.28504/l10n-85.0.tar.xz differ:
char 26, line 1
++++++ mozilla-fix-top-level-asm.patch ++++++
--- /var/tmp/diff_new_pack.LA1wer/_old 2021-01-29 14:56:21.141443648 +0100
+++ /var/tmp/diff_new_pack.LA1wer/_new 2021-01-29 14:56:21.141443648 +0100
@@ -49,7 +49,7 @@
]
if CONFIG["CC_TYPE"] in ("clang", "gcc"):
- CXXFLAGS += ["-Wno-shadow"]
+ CXXFLAGS += ["-Wno-shadow", "-Wno-error=stack-protector"]
SOURCES["../chromium/sandbox/linux/services/syscall_wrappers.cc"].flags
+= [
"-Wno-empty-body",
]
++++++ mozilla-pgo.patch ++++++
--- /var/tmp/diff_new_pack.LA1wer/_old 2021-01-29 14:56:21.165443683 +0100
+++ /var/tmp/diff_new_pack.LA1wer/_new 2021-01-29 14:56:21.169443689 +0100
@@ -1,11 +1,11 @@
# HG changeset patch
# User Wolfgang Rosenauer <w...@rosenauer.org>
-# Parent 431962e810598b34327620fb99e06768e9a29c38
+# Parent 41df71ef2798d6bd6a67cfc4c4f26b8d41b8ccca
diff --git a/build/moz.configure/lto-pgo.configure
b/build/moz.configure/lto-pgo.configure
--- a/build/moz.configure/lto-pgo.configure
+++ b/build/moz.configure/lto-pgo.configure
-@@ -223,23 +223,23 @@ def lto(value, c_compiler, ld64_known_go
+@@ -235,23 +235,23 @@ def lto(
"configure."
)
@@ -32,25 +32,6 @@
# choose a poor default. Rust compilation by default uses the
# pentium4 CPU on x86:
#
-@@ -263,17 +263,17 @@ def lto(value, c_compiler, ld64_known_go
- ldflags.append("-mllvm:-mcpu=x86-64")
- # We do not need special flags for arm64. Hooray for fixed-length
- # instruction sets.
- else:
- num_cores = multiprocessing.cpu_count()
- if len(value) and value[0].lower() == "full":
- cflags.append("-flto")
- else:
-- cflags.append("-flto=thin")
-+ cflags.append("-flto")
- cflags.append("-flifetime-dse=1")
-
- ldflags.append("-flto=%s" % num_cores)
- ldflags.append("-flifetime-dse=1")
-
- # Tell LTO not to inline functions above a certain size, to mitigate
- # binary size growth while still getting good performance.
- # (For hot functions, PGO will put a multiplier on this limit.)
diff --git a/build/pgo/profileserver.py b/build/pgo/profileserver.py
--- a/build/pgo/profileserver.py
+++ b/build/pgo/profileserver.py
@@ -173,35 +154,10 @@
CXXFLAGS += ["-Wno-error=shadow"]
+
+CXXFLAGS += ['-fno-devirtualize']
-diff --git a/python/mozbuild/mozbuild/build_commands.py
b/python/mozbuild/mozbuild/build_commands.py
---- a/python/mozbuild/mozbuild/build_commands.py
-+++ b/python/mozbuild/mozbuild/build_commands.py
-@@ -121,19 +121,18 @@ class Build(MachCommandBase):
- silent=not verbose,
- ensure_exit_code=False,
- append_env=append_env,
- )
- if status != 0:
- return status
-
- pgo_env = os.environ.copy()
-- pgo_env["LLVM_PROFDATA"] = instr.config_environment.substs.get(
-- "LLVM_PROFDATA"
-- )
-+ if instr.config_environment.substs.get('CC_TYPE') != 'gcc':
-+ pgo_env["LLVM_PROFDATA"] =
instr.config_environment.substs.get("LLVM_PROFDATA")
- pgo_env["JARLOG_FILE"] = mozpath.join(orig_topobjdir,
"jarlog/en-US.log")
- pgo_cmd = [
- instr.virtualenv_manager.python_path,
- mozpath.join(self.topsrcdir, "build/pgo/profileserver.py"),
- ]
- subprocess.check_call(
- pgo_cmd, cwd=instr.topobjdir,
env=ensure_subprocess_env(pgo_env)
- )
diff --git a/toolkit/components/terminator/nsTerminator.cpp
b/toolkit/components/terminator/nsTerminator.cpp
--- a/toolkit/components/terminator/nsTerminator.cpp
+++ b/toolkit/components/terminator/nsTerminator.cpp
-@@ -413,16 +413,21 @@ void nsTerminator::StartWatchdog() {
+@@ -425,16 +425,21 @@ void nsTerminator::StartWatchdog() {
// Defend against overflow
crashAfterMS = INT32_MAX;
} else {
++++++ mozilla-reduce-rust-debuginfo.patch ++++++
--- /var/tmp/diff_new_pack.LA1wer/_old 2021-01-29 14:56:21.173443695 +0100
+++ /var/tmp/diff_new_pack.LA1wer/_new 2021-01-29 14:56:21.177443701 +0100
@@ -3,7 +3,7 @@
# Date 1560754926 -7200
# Mon Jun 17 09:02:06 2019 +0200
# Node ID 428161c3b9599083e1b8710eda1760f1f707ab11
-# Parent f5e9431a99bb1d122ccd76411f08ac6f3236c19f
+# Parent 2a004fe4d56123f6e73a9436d1a290bbfc5e0b6b
#Description: reduce the rust debuginfo level on selected architectures where
# compiling with debuginfo=2 causes the OOM killer to interrupt the build on
# launchpad builders. Initially this was only on 32 bit architectures, but with
@@ -12,20 +12,19 @@
diff --git a/build/moz.configure/toolchain.configure
b/build/moz.configure/toolchain.configure
--- a/build/moz.configure/toolchain.configure
+++ b/build/moz.configure/toolchain.configure
-@@ -2138,19 +2138,19 @@ imply_option("RUSTC_OPT_LEVEL", "2", whe
- def rustc_opt_level(opt_level_option, moz_optimize):
- if opt_level_option:
- return opt_level_option[0]
- else:
- return "1" if moz_optimize.optimize else "0"
+@@ -2145,18 +2145,19 @@ def rustc_opt_level(opt_level_option, mo
@depends(
-- rustc_opt_level, debug_rust, "--enable-debug-symbols",
"--enable-frame-pointers"
-+ rustc_opt_level, debug_rust, "--enable-debug-symbols",
"--enable-frame-pointers", host
+ rustc_opt_level,
+ debug_rust,
+ target,
+ "--enable-debug-symbols",
+ "--enable-frame-pointers",
++ host,
)
--def rust_compile_flags(opt_level, debug_rust, debug_symbols, frame_pointers):
-+def rust_compile_flags(opt_level, debug_rust, debug_symbols, frame_pointers,
host):
+-def rust_compile_flags(opt_level, debug_rust, target, debug_symbols,
frame_pointers):
++def rust_compile_flags(opt_level, debug_rust, target, debug_symbols,
frame_pointers, host):
# Cargo currently supports only two interesting profiles for building:
# development and release. Those map (roughly) to --enable-debug and
# --disable-debug in Gecko, respectively.
@@ -34,7 +33,7 @@
# optimization level. Since Cargo only supports 2 profiles, we're in
# a bit of a bind.
#
-@@ -2163,16 +2163,18 @@ def rust_compile_flags(opt_level, debug_
+@@ -2169,16 +2170,18 @@ def rust_compile_flags(opt_level, debug_
# opt-level=0 implies -C debug-assertions, which may not be desired
# unless Rust debugging is enabled.
++++++ tar_stamps ++++++
--- /var/tmp/diff_new_pack.LA1wer/_old 2021-01-29 14:56:21.241443795 +0100
+++ /var/tmp/diff_new_pack.LA1wer/_new 2021-01-29 14:56:21.241443795 +0100
@@ -1,11 +1,11 @@
PRODUCT="firefox"
CHANNEL="release"
-VERSION="84.0.2"
+VERSION="85.0"
VERSION_SUFFIX=""
-PREV_VERSION="84.0.1"
+PREV_VERSION="84.0.2"
PREV_VERSION_SUFFIX=""
#SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release";
-RELEASE_TAG="7e22d68e1ebfc0839092237feeefad46cfbd8651"
-RELEASE_TIMESTAMP="20210105180113"
+RELEASE_TAG="cd908cffd02e1563b2218d985873f958a2e2c55d"
+RELEASE_TIMESTAMP="20210118153634"
