Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at 2025-05-02 14:55:53 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old) and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.30101 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox" Fri May 2 14:55:53 2025 rev:454 rq:1273825 version:138.0 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes 2025-04-20 19:48:25.824046246 +0200 +++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.30101/MozillaFirefox.changes 2025-05-02 14:56:01.141303067 +0200 @@ -1,0 +2,35 @@ +Tue Apr 29 20:49:17 UTC 2025 - Wolfgang Rosenauer <w...@rosenauer.org> + +- Mozilla Firefox 138.0 + https://www.mozilla.org/en-US/firefox/138.0/releasenotes/ + MFSA 2025-28 (bsc#1241621) + * CVE-2025-2817 (bmo#1917536) + Privilege escalation in Firefox Updater + * CVE-2025-4082 (bmo#1937097) + WebGL shader attribute memory corruption in Firefox for macOS + * CVE-2025-4083 (bmo#1958350) + Process isolation bypass using "javascript:" URI links in + cross-origin frames + * CVE-2025-4085 (bmo#1915280) + Potential information leakage and privilege escalation in + UITour actor + * CVE-2025-4086 (bmo#1945705) + Specially crafted filename could be used to obscure download + type + * CVE-2025-4087 (bmo#1952465) + Unsafe attribute access during XPath parsing + * CVE-2025-4088 (bmo#1953521) + Cross-site request forgery via storage access API redirects + * CVE-2025-4089 (bmo#1949994, bmo#1956698, bmo#1960198) + Potential local code execution in "copy as cURL" command + * CVE-2025-4090 (bmo#1929478) + Leaked library paths in Firefox for Android + * CVE-2025-4091 (bmo#1951161, bmo#1952105) + Memory safety bugs fixed in Firefox 138, Thunderbird 138, + Firefox ESR 128.10, and Thunderbird 128.10 + * CVE-2025-4092 (bmo#1924108, bmo#1950780, bmo#1959367) + Memory safety bugs fixed in Firefox 138 and Thunderbird 138 +- requires NSS 3.110 +- rebased patches + +------------------------------------------------------------------- Old: ---- firefox-137.0.2.source.tar.xz firefox-137.0.2.source.tar.xz.asc l10n-137.0.2.tar.xz New: ---- firefox-138.0.source.tar.xz firefox-138.0.source.tar.xz.asc l10n-138.0.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.rR6lDj/_old 2025-05-02 14:56:17.690001633 +0200 +++ /var/tmp/diff_new_pack.rR6lDj/_new 2025-05-02 14:56:17.694001802 +0200 @@ -28,9 +28,9 @@ # orig_suffix b3 # major 69 # mainver %%major.99 -%define major 137 -%define mainver %major.0.2 -%define orig_version 137.0.2 +%define major 138 +%define mainver %major.0 +%define orig_version 138.0 %define orig_suffix %{nil} %define update_channel release %define branding 1 @@ -114,7 +114,7 @@ BuildRequires: libproxy-devel BuildRequires: makeinfo BuildRequires: mozilla-nspr-devel >= 4.36 -BuildRequires: mozilla-nss-devel >= 3.109 +BuildRequires: mozilla-nss-devel >= 3.110 BuildRequires: nasm >= 2.14 BuildRequires: nodejs >= 12.22.12 %if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000 @@ -716,7 +716,6 @@ %dir %{progdir}/browser/ %dir %{progdir}/browser/chrome/ %{progdir}/browser/defaults -%{progdir}/browser/features/ %{progdir}/browser/chrome/icons %{progdir}/browser/omni.ja %dir %{progdir}/distribution/ ++++++ firefox-137.0.2.source.tar.xz -> firefox-138.0.source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/firefox-137.0.2.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.30101/firefox-138.0.source.tar.xz differ: char 15, line 1 ++++++ firefox-branded-icons.patch ++++++ --- /var/tmp/diff_new_pack.rR6lDj/_old 2025-05-02 14:56:17.866009063 +0200 +++ /var/tmp/diff_new_pack.rR6lDj/_new 2025-05-02 14:56:17.870009232 +0200 @@ -1,6 +1,6 @@ # HG changeset patch # Parent e0751ad74e835e80041a61ea00c2a63bf6fbe2de -# Parent ad547c5985d362e88a47ccbba0cc5fa07bd24e8b +# Parent 9309f1ac14b7173985576932c01874184be1dcf9 diff --git a/browser/branding/branding-common.mozbuild b/browser/branding/branding-common.mozbuild --- a/browser/branding/branding-common.mozbuild @@ -24,7 +24,7 @@ diff --git a/browser/installer/package-manifest.in b/browser/installer/package-manifest.in --- a/browser/installer/package-manifest.in +++ b/browser/installer/package-manifest.in -@@ -208,20 +208,23 @@ +@@ -221,20 +221,23 @@ ; [Browser Chrome Files] @RESPATH@/browser/chrome.manifest @RESPATH@/browser/chrome/browser@JAREXT@ @@ -41,11 +41,11 @@ @RESPATH@/browser/chrome/icons/default/default128.png +@RESPATH@/browser/chrome/icons/default/default256.png #endif - @RESPATH@/browser/features/* ; [DevTools Startup Files] @RESPATH@/browser/chrome/devtools-startup@JAREXT@ @RESPATH@/browser/chrome/devtools-startup.manifest ; DevTools + @RESPATH@/browser/chrome/devtools@JAREXT@ ++++++ l10n-137.0.2.tar.xz -> l10n-138.0.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/l10n-137.0.2.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.30101/l10n-138.0.tar.xz differ: char 15, line 1 ++++++ mozilla-silence-no-return-type.patch ++++++ --- /var/tmp/diff_new_pack.rR6lDj/_old 2025-05-02 14:56:18.026015818 +0200 +++ /var/tmp/diff_new_pack.rR6lDj/_new 2025-05-02 14:56:18.030015986 +0200 @@ -1,5 +1,5 @@ # HG changeset patch -# Parent 51c04f4ff9825942da48a84dcc04e34a212316ee +# Parent 9ffe1fea48c514ef323c1e238a516ed01f78362b diff --git a/gfx/skia/skia/include/codec/SkEncodedOrigin.h b/gfx/skia/skia/include/codec/SkEncodedOrigin.h --- a/gfx/skia/skia/include/codec/SkEncodedOrigin.h @@ -308,25 +308,25 @@ } FractionPrecision Precision::constructFraction(int32_t minFrac, int32_t maxFrac) { - FractionSignificantSettings settings; + FractionSignificantSettings settings{}; settings.fMinFrac = static_cast<digits_t>(minFrac); settings.fMaxFrac = static_cast<digits_t>(maxFrac); settings.fMinSig = -1; settings.fMaxSig = -1; + settings.fPriority = UNUM_ROUNDING_PRIORITY_RELAXED; - PrecisionUnion union_; + PrecisionUnion union_{}; union_.fracSig = settings; return {RND_FRACTION, union_}; } Precision Precision::constructSignificant(int32_t minSig, int32_t maxSig) { - FractionSignificantSettings settings; + FractionSignificantSettings settings{}; settings.fMinFrac = -1; settings.fMaxFrac = -1; settings.fMinSig = static_cast<digits_t>(minSig); settings.fMaxSig = static_cast<digits_t>(maxSig); + settings.fPriority = UNUM_ROUNDING_PRIORITY_RELAXED; - PrecisionUnion union_; + PrecisionUnion union_{}; union_.fracSig = settings; return {RND_SIGNIFICANT, union_}; } @@ -720,7 +720,7 @@ const StreamConfig& input_config, const StreamConfig& output_config) { AudioFormatValidity input_validity = ValidateAudioFormat(input_config); -@@ -2061,16 +2062,17 @@ void AudioProcessingImpl::InitializeNois +@@ -2062,16 +2063,17 @@ void AudioProcessingImpl::InitializeNois case NoiseSuppresionConfig::kModerate: return NsConfig::SuppressionLevel::k12dB; case NoiseSuppresionConfig::kHigh: @@ -1103,14 +1103,14 @@ diff --git a/third_party/libwebrtc/video/config/encoder_stream_factory.cc b/third_party/libwebrtc/video/config/encoder_stream_factory.cc --- a/third_party/libwebrtc/video/config/encoder_stream_factory.cc +++ b/third_party/libwebrtc/video/config/encoder_stream_factory.cc -@@ -105,16 +105,17 @@ int GetDefaultMaxQp(webrtc::VideoCodecTy - case webrtc::kVideoCodecH265: +@@ -106,16 +106,17 @@ int GetDefaultMaxQp(webrtc::VideoCodecTy return kDefaultVideoMaxQpH26x; case webrtc::kVideoCodecVP8: case webrtc::kVideoCodecVP9: - case webrtc::kVideoCodecAV1: case webrtc::kVideoCodecGeneric: return kDefaultVideoMaxQpVpx; + case webrtc::kVideoCodecAV1: + return kDefaultVideoMaxQpAv1; } + return kDefaultVideoMaxQpVpx; // fake return for hopefully not reached } @@ -1121,25 +1121,4 @@ int NormalizeSimulcastSize(const FieldTrialsView& field_trials, int size, size_t simulcast_layers) { -diff --git a/third_party/libwebrtc/video/config/simulcast.cc b/third_party/libwebrtc/video/config/simulcast.cc ---- a/third_party/libwebrtc/video/config/simulcast.cc -+++ b/third_party/libwebrtc/video/config/simulcast.cc -@@ -192,16 +192,17 @@ int GetDefaultSimulcastTemporalLayers(we - case webrtc::kVideoCodecGeneric: - return kDefaultNumTemporalLayers; - // For codec type that has no software fallback, defaults to L1T1 for - // initial simulcast setup, as this is the only scalability mode secure to - // be supported. - case webrtc::kVideoCodecH265: - return 1; - } -+ return 1; - } - - std::vector<SimulcastFormat> GetSimulcastFormats( - bool enable_lowres_bitrate_interpolation, - webrtc::VideoCodecType codec) { - std::vector<SimulcastFormat> formats; - switch (codec) { - case webrtc::kVideoCodecVP8: ++++++ tar_stamps ++++++ --- /var/tmp/diff_new_pack.rR6lDj/_old 2025-05-02 14:56:18.082018181 +0200 +++ /var/tmp/diff_new_pack.rR6lDj/_new 2025-05-02 14:56:18.086018350 +0200 @@ -1,11 +1,11 @@ PRODUCT="firefox" CHANNEL="release" -VERSION="137.0.2" +VERSION="138.0" VERSION_SUFFIX="" -PREV_VERSION="137.0" +PREV_VERSION="137.0.2" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"; -RELEASE_TAG="5d1d0e27dc3a99271b76833be3d9a4a12e709281" -RELEASE_TIMESTAMP="20250414091429" +RELEASE_TAG="c3bba5162c988aa7e1791df8827c1a1575eddcc1" +RELEASE_TIMESTAMP="20250421163656"
