Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at 2022-01-13 00:22:14 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old) and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1892 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox" Thu Jan 13 00:22:14 2022 rev:354 rq:945699 version:96.0 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes 2021-12-30 15:55:43.856668902 +0100 +++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1892/MozillaFirefox.changes 2022-01-13 00:22:37.467941210 +0100 @@ -1,0 +2,58 @@ +Sat Jan 8 10:32:46 UTC 2022 - Wolfgang Rosenauer <w...@rosenauer.org> + +- Mozilla Firefox 96.0 + * https://www.mozilla.org/en-US/firefox/96.0/releasenotes + MFSA 2022-01 (bsc#1194547) + * CVE-2022-22746 (bmo#1735071) + Calling into reportValidity could have lead to fullscreen + window spoof + * CVE-2022-22743 (bmo#1739220) + Browser window spoof using fullscreen mode + * CVE-2022-22742 (bmo#1739923) + Out-of-bounds memory access when inserting text in edit mode + * CVE-2022-22741 (bmo#1740389) + Browser window spoof using fullscreen mode + * CVE-2022-22740 (bmo#1742334) + Use-after-free of ChannelEventQueue::mOwner + * CVE-2022-22738 (bmo#1742382) + Heap-buffer-overflow in blendGaussianBlur + * CVE-2022-22737 (bmo#1745874) + Race condition when playing audio files + * CVE-2021-4140 (bmo#1746720) + Iframe sandbox bypass with XSLT + * CVE-2022-22750 (bmo#1566608) + IPC passing of resource handles could have lead to sandbox + bypass + * CVE-2022-22749 (bmo#1705094) + Lack of URL restrictions when scanning QR codes + * CVE-2022-22748 (bmo#1705211) + Spoofed origin on external protocol launch dialog + * CVE-2022-22745 (bmo#1735856) + Leaking cross-origin URLs through securitypolicyviolation + event + * CVE-2022-22744 (bmo#1737252) + The 'Copy as curl' feature in DevTools did not fully escape + website-controlled data, potentially leading to command + injection + * CVE-2022-22747 (bmo#1735028) + Crash when handling empty pkcs7 sequence + * CVE-2022-22736 (bmo#1742692) + Potential local privilege escalation when loading modules + from the install directory. + * CVE-2022-22739 (bmo#1744158) + Missing throttling on external protocol launch dialog + * CVE-2022-22751 (bmo#1664149, bmo#1737816, bmo#1739366, + bmo#1740274, bmo#1740797, bmo#1741201, bmo#1741869, + bmo#1743221, bmo#1743515, bmo#1745373, bmo#1746011) + Memory safety bugs fixed in Firefox 96 and Firefox ESR 91.5 + * CVE-2022-22752 (bmo#1740534, bmo#1741210, bmo#1742770) + Memory safety bugs fixed in Firefox 96 +- removed obsolete patches + * mozilla-bmo1745560.patch + * mozilla-bmo1744896.patch + * mozilla-sandbox-fips.patch +- requires + NSPR >= 4.33 + NSS >= 3.73.1 + +------------------------------------------------------------------- Old: ---- firefox-95.0.2.source.tar.xz firefox-95.0.2.source.tar.xz.asc l10n-95.0.2.tar.xz mozilla-bmo1744896.patch mozilla-bmo1745560.patch mozilla-sandbox-fips.patch New: ---- firefox-96.0.source.tar.xz firefox-96.0.source.tar.xz.asc l10n-96.0.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.doWkoq/_old 2022-01-13 00:22:52.223951831 +0100 +++ /var/tmp/diff_new_pack.doWkoq/_new 2022-01-13 00:22:52.227951834 +0100 @@ -1,7 +1,7 @@ # # spec file # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # 2006-2021 Wolfgang Rosenauer <w...@rosenauer.org> # # All modifications and additions to the file contributed by third parties @@ -28,9 +28,9 @@ # orig_suffix b3 # major 69 # mainver %major.99 -%define major 95 -%define mainver %major.0.2 -%define orig_version 95.0.2 +%define major 96 +%define mainver %major.0 +%define orig_version 96.0 %define orig_suffix %{nil} %define update_channel release %define branding 1 @@ -116,8 +116,8 @@ BuildRequires: libiw-devel BuildRequires: libproxy-devel BuildRequires: makeinfo -BuildRequires: mozilla-nspr-devel >= 4.32 -BuildRequires: mozilla-nss-devel >= 3.71 +BuildRequires: mozilla-nspr-devel >= 4.33 +BuildRequires: mozilla-nss-devel >= 3.73.1 BuildRequires: nasm >= 2.14 BuildRequires: nodejs >= 10.22.1 %if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000 @@ -203,28 +203,25 @@ Patch2: mozilla-kde.patch Patch3: mozilla-ntlm-full-path.patch Patch4: mozilla-aarch64-startup-crash.patch -Patch6: mozilla-sandbox-fips.patch -Patch7: mozilla-fix-aarch64-libopus.patch -Patch9: mozilla-s390-context.patch -Patch10: mozilla-pgo.patch -Patch11: mozilla-reduce-rust-debuginfo.patch -Patch13: mozilla-bmo1005535.patch -Patch14: mozilla-bmo1568145.patch -Patch15: mozilla-bmo1504834-part1.patch -Patch16: mozilla-bmo1504834-part2.patch -Patch17: mozilla-bmo1504834-part3.patch -Patch19: mozilla-bmo1512162.patch -Patch20: mozilla-fix-top-level-asm.patch -Patch21: mozilla-bmo1504834-part4.patch -Patch22: mozilla-bmo849632.patch -Patch25: mozilla-bmo998749.patch -Patch26: mozilla-bmo1626236.patch -Patch27: mozilla-s390x-skia-gradient.patch -Patch28: mozilla-libavcodec58_91.patch -Patch29: mozilla-silence-no-return-type.patch -Patch31: mozilla-bmo531915.patch -Patch32: mozilla-bmo1745560.patch -Patch33: mozilla-bmo1744896.patch +Patch5: mozilla-fix-aarch64-libopus.patch +Patch6: mozilla-s390-context.patch +Patch7: mozilla-pgo.patch +Patch8: mozilla-reduce-rust-debuginfo.patch +Patch9: mozilla-bmo1005535.patch +Patch10: mozilla-bmo1568145.patch +Patch11: mozilla-bmo1504834-part1.patch +Patch12: mozilla-bmo1504834-part2.patch +Patch13: mozilla-bmo1504834-part3.patch +Patch14: mozilla-bmo1512162.patch +Patch15: mozilla-fix-top-level-asm.patch +Patch16: mozilla-bmo1504834-part4.patch +Patch17: mozilla-bmo849632.patch +Patch18: mozilla-bmo998749.patch +Patch19: mozilla-bmo1626236.patch +Patch20: mozilla-s390x-skia-gradient.patch +Patch21: mozilla-libavcodec58_91.patch +Patch22: mozilla-silence-no-return-type.patch +Patch23: mozilla-bmo531915.patch # Firefox/browser Patch101: firefox-kde.patch Patch102: firefox-branded-icons.patch @@ -333,28 +330,25 @@ %patch2 -p1 %patch3 -p1 %patch4 -p1 +%patch5 -p1 %patch6 -p1 %patch7 -p1 +%patch8 -p1 %patch9 -p1 %patch10 -p1 %patch11 -p1 +%patch12 -p1 %patch13 -p1 %patch14 -p1 %patch15 -p1 %patch16 -p1 %patch17 -p1 +%patch18 -p1 %patch19 -p1 %patch20 -p1 %patch21 -p1 %patch22 -p1 -%patch25 -p1 -%patch26 -p1 -%patch27 -p1 -%patch28 -p1 -%patch29 -p1 -%patch31 -p1 -%patch32 -p1 -%patch33 -p1 +%patch23 -p1 # Firefox %patch101 -p1 %patch102 -p1 ++++++ firefox-95.0.2.source.tar.xz -> firefox-96.0.source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/firefox-95.0.2.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1892/firefox-96.0.source.tar.xz differ: char 15, line 1 ++++++ l10n-95.0.2.tar.xz -> l10n-96.0.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/l10n-95.0.2.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1892/l10n-96.0.tar.xz differ: char 26, line 1 ++++++ mozilla-fix-top-level-asm.patch ++++++ --- /var/tmp/diff_new_pack.doWkoq/_old 2022-01-13 00:22:52.435951984 +0100 +++ /var/tmp/diff_new_pack.doWkoq/_new 2022-01-13 00:22:52.439951986 +0100 @@ -49,7 +49,7 @@ ] if CONFIG["CC_TYPE"] in ("clang", "gcc"): - CXXFLAGS += ["-Wno-shadow", "-Wno-error=stack-protector"] + CXXFLAGS += ["-Wno-error=stack-protector"] SOURCES["../chromium/sandbox/linux/services/syscall_wrappers.cc"].flags += [ "-Wno-empty-body", ] ++++++ mozilla-kde.patch ++++++ --- /var/tmp/diff_new_pack.doWkoq/_old 2022-01-13 00:22:52.455951998 +0100 +++ /var/tmp/diff_new_pack.doWkoq/_new 2022-01-13 00:22:52.455951998 +0100 @@ -3,7 +3,7 @@ # Date 1559294891 -7200 # Fri May 31 11:28:11 2019 +0200 # Node ID c2aa7198fb925e7fde96abf65b6f68b9b755f112 -# Parent d065e5213c971b1f80d4a13458c412a3a25f7c1c +# Parent 9db1669be16001a48b62d147070fb75f60bac251 Description: Add KDE integration to Firefox (toolkit parts) Author: Wolfgang Rosenauer <wolfg...@rosenauer.org> Author: Lubos Lunak <lu...@suse.com> @@ -81,7 +81,7 @@ diff --git a/modules/libpref/moz.build b/modules/libpref/moz.build --- a/modules/libpref/moz.build +++ b/modules/libpref/moz.build -@@ -118,16 +118,20 @@ EXPORTS.mozilla += [ +@@ -119,16 +119,20 @@ EXPORTS.mozilla += [ ] EXPORTS.mozilla += sorted(["!" + g for g in gen_h]) @@ -808,12 +808,12 @@ diff --git a/uriloader/exthandler/moz.build b/uriloader/exthandler/moz.build --- a/uriloader/exthandler/moz.build +++ b/uriloader/exthandler/moz.build -@@ -80,17 +80,19 @@ else: +@@ -78,17 +78,19 @@ elif CONFIG["MOZ_WIDGET_TOOLKIT"] == "ui + else: + # These files can't be built in unified mode because they redefine LOG. SOURCES += [ osdir + "/nsOSHelperAppService.cpp", ] - if CONFIG["CC_TYPE"] in ("clang", "gcc"): - CXXFLAGS += ["-Wno-error=shadow"] if CONFIG["MOZ_WIDGET_TOOLKIT"] == "gtk": UNIFIED_SOURCES += [ @@ -828,7 +828,7 @@ ] elif CONFIG["MOZ_WIDGET_TOOLKIT"] == "windows": UNIFIED_SOURCES += [ -@@ -128,16 +130,17 @@ include("/ipc/chromium/chromium-config.m +@@ -126,16 +128,17 @@ include("/ipc/chromium/chromium-config.m FINAL_LIBRARY = "xul" LOCAL_INCLUDES += [ @@ -1260,7 +1260,7 @@ diff --git a/widget/gtk/moz.build b/widget/gtk/moz.build --- a/widget/gtk/moz.build +++ b/widget/gtk/moz.build -@@ -136,16 +136,17 @@ FINAL_LIBRARY = "xul" +@@ -135,16 +135,17 @@ FINAL_LIBRARY = "xul" LOCAL_INCLUDES += [ "/layout/base", ++++++ mozilla-pgo.patch ++++++ --- /var/tmp/diff_new_pack.doWkoq/_old 2022-01-13 00:22:52.467952007 +0100 +++ /var/tmp/diff_new_pack.doWkoq/_new 2022-01-13 00:22:52.471952010 +0100 @@ -1,6 +1,6 @@ # HG changeset patch # User Wolfgang Rosenauer <w...@rosenauer.org> -# Parent 066aba2f6d1fbc0fe31d1864d539714041404fe6 +# Parent ebd7e379c85889b6f8dba0542479110ab1f6b059 diff --git a/build/moz.configure/lto-pgo.configure b/build/moz.configure/lto-pgo.configure --- a/build/moz.configure/lto-pgo.configure @@ -152,15 +152,15 @@ diff --git a/extensions/spellcheck/src/moz.build b/extensions/spellcheck/src/moz.build --- a/extensions/spellcheck/src/moz.build +++ b/extensions/spellcheck/src/moz.build -@@ -26,8 +26,10 @@ LOCAL_INCLUDES += [ +@@ -23,8 +23,10 @@ LOCAL_INCLUDES += [ + "../hunspell/glue", + "../hunspell/src", + "/dom/base", ] EXPORTS.mozilla += [ "mozInlineSpellChecker.h", "mozSpellChecker.h", ] - - if CONFIG["CC_TYPE"] in ("clang", "gcc"): - CXXFLAGS += ["-Wno-error=shadow"] + +CXXFLAGS += ['-fno-devirtualize'] diff --git a/toolkit/components/terminator/nsTerminator.cpp b/toolkit/components/terminator/nsTerminator.cpp ++++++ tar_stamps ++++++ --- /var/tmp/diff_new_pack.doWkoq/_old 2022-01-13 00:22:52.523952047 +0100 +++ /var/tmp/diff_new_pack.doWkoq/_new 2022-01-13 00:22:52.527952050 +0100 @@ -1,11 +1,11 @@ PRODUCT="firefox" CHANNEL="release" -VERSION="95.0.2" +VERSION="96.0" VERSION_SUFFIX="" -PREV_VERSION="95.0.1" +PREV_VERSION="95.0.2" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"; -RELEASE_TAG="1ff2cec0bb36e389df1a209a9f882b443ed48495" -RELEASE_TIMESTAMP="20211218203254" +RELEASE_TAG="fc698f2bd31f78fb8586e62c7b660a08d6971b92" +RELEASE_TIMESTAMP="20220106144528"
