Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package MozillaFirefox for openSUSE:Factory
checked in at 2022-05-21 19:05:45
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old)
and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1538 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox"
Sat May 21 19:05:45 2022 rev:366 rq:978314 version:100.0.2
Changes:
--------
--- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes
2022-05-06 18:58:45.085318022 +0200
+++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1538/MozillaFirefox.changes
2022-05-21 19:05:53.967274081 +0200
@@ -1,0 +2,20 @@
+Fri May 20 15:03:50 UTC 2022 - Wolfgang Rosenauer <w...@rosenauer.org>
+
+- Mozilla Firefox 100.0.2
+ MFSA 2022-19 (bsc#1199768)
+ * CVE-2022-1802 (bmo#1770137)
+ Prototype pollution in Top-Level Await implementation
+ * CVE-2022-1529 (bmo#1770048)
+ Untrusted input used in JavaScript object indexing, leading
+ to prototype pollution
+
+-------------------------------------------------------------------
+Wed May 18 20:27:49 UTC 2022 - Andreas Stieger <andreas.stie...@gmx.de>
+
+- Mozilla Firefox 100.0.1:
+ * Fixed: Fixed an issue with subtitles in Picture-in-Picture
+ mode while using Netflix (bmo#1768818)
+ * Fixed: Fixed an issue where some commands were unavailable in
+ the Picture-in-Picture window (bmo#1768201)
+
+-------------------------------------------------------------------
Old:
----
firefox-100.0.source.tar.xz
firefox-100.0.source.tar.xz.asc
l10n-100.0.tar.xz
New:
----
firefox-100.0.2.source.tar.xz
firefox-100.0.2.source.tar.xz.asc
l10n-100.0.2.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ MozillaFirefox.spec ++++++
--- /var/tmp/diff_new_pack.aiMQcD/_old 2022-05-21 19:06:15.075304665 +0200
+++ /var/tmp/diff_new_pack.aiMQcD/_new 2022-05-21 19:06:15.079304671 +0200
@@ -29,8 +29,8 @@
# major 69
# mainver %major.99
%define major 100
-%define mainver %major.0
-%define orig_version 100.0
+%define mainver %major.0.2
+%define orig_version 100.0.2
%define orig_suffix %{nil}
%define update_channel release
%define branding 1
++++++ create-tar.sh ++++++
--- /var/tmp/diff_new_pack.aiMQcD/_old 2022-05-21 19:06:15.199304845 +0200
+++ /var/tmp/diff_new_pack.aiMQcD/_new 2022-05-21 19:06:15.203304851 +0200
@@ -37,7 +37,6 @@
fi
SOURCE_TARBALL="$PRODUCT-$VERSION$VERSION_SUFFIX.source.tar.xz"
-PREV_SOURCE_TARBALL="$PRODUCT-$PREV_VERSION$PREV_VERSION_SUFFIX.source.tar.xz"
FTP_URL="https://ftp.mozilla.org/pub/$PRODUCT/releases/$VERSION$VERSION_SUFFIX/source";
FTP_CANDIDATES_BASE_URL="https://ftp.mozilla.org/pub/$PRODUCT/candidates";
# Make first letter of PRODCUT upper case
@@ -146,48 +145,22 @@
fi
}
-function locales_parse_file() {
- FILE="$1"
- cat "$FILE" | python -c "import json; import sys; \
- print('\n'.join(['{} {}'.format(key, value['revision']) \
- for key, value in sorted(json.load(sys.stdin).items())]));"
-}
-
-function locales_parse_url() {
+function locales_parse() {
URL="$1"
curl -s "$URL" | python -c "import json; import sys; \
print('\n'.join(['{} {}'.format(key, value['changeset']) \
for key, value in
sorted(json.load(sys.stdin)['locales'].items())]));"
}
-function extract_locales_file() {
- # still need to extract the locale information from the archive
- echo "extract locale changesets"
- tar -xf $SOURCE_TARBALL $LOCALE_FILE
-}
-
function locales_unchanged() {
BUILD_ID="$1"
PREV_BUILD_ID=$(get_build_number "$PREV_VERSION$PREV_VERSION_SUFFIX")
# If no json-file for one of the versions can be found, we say "they changed"
prev_url=$(locales_get "$PREV_VERSION$PREV_VERSION_SUFFIX" "$PREV_BUILD_ID")
|| return 1
- prev_content=$(locales_parse_url "$prev_url") || exit 1
+ curr_url=$(locales_get "$VERSION$VERSION_SUFFIX" "$BUILD_ID") ||
return 1
- curr_url=$(locales_get "$VERSION$VERSION_SUFFIX" "$BUILD_ID")
- if [ $? -ne 0 ]; then
- # We did not find a locales file upstream on the servers
- if [ -e $SOURCE_TARBALL ]; then
- # We can find out what the locales are, by extracting the json-file
from the tar-ball
- # instead of getting it from the server
- extract_locales_file || return 1
- curr_content=$(locales_parse_file "$LOCALE_FILE") || exit 1
- else
- # We can't know what the locales are in the current version
- return 1
- fi
- else
- curr_content=$(locales_parse_url "$curr_url") || exit 1
- fi
+ prev_content=$(locales_parse "$prev_url") || exit 1
+ curr_content=$(locales_parse "$curr_url") || exit 1
diff -y --suppress-common-lines -d <(echo "$prev_content") <(echo
"$curr_content")
}
@@ -238,7 +211,9 @@
# we might have an upstream archive already and can skip the checkout
if [ -e $SOURCE_TARBALL ]; then
if [ -z ${SKIP_LOCALES+x} ] && [ $LOCALES_CHANGED -ne 0 ]; then
- extract_locales_file
+ # still need to extract the locale information from the archive
+ echo "extract locale changesets"
+ tar -xf $SOURCE_TARBALL $LOCALE_FILE
fi
get_source_stamp "$BUILD_ID"
else
@@ -354,11 +329,3 @@
mv "l10n-$PREV_VERSION$PREV_VERSION_SUFFIX.tar.xz"
"l10n-$VERSION$VERSION_SUFFIX.tar.xz"
fi
-if [ -e $PREV_SOURCE_TARBALL ]; then
- echo ""
- echo "Deleting old sources tarball $PREV_SOURCE_TARBALL"
- $(ask_cont_abort_question "Is this ok?") || exit 0
- rm "$PREV_SOURCE_TARBALL"
- rm "$PREV_SOURCE_TARBALL.asc"
-fi
-
++++++ firefox-100.0.source.tar.xz -> firefox-100.0.2.source.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaFirefox/firefox-100.0.source.tar.xz
/work/SRC/openSUSE:Factory/.MozillaFirefox.new.1538/firefox-100.0.2.source.tar.xz
differ: char 15, line 1
++++++ l10n-100.0.tar.xz -> l10n-100.0.2.tar.xz ++++++
++++++ tar_stamps ++++++
--- /var/tmp/diff_new_pack.aiMQcD/_old 2022-05-21 19:06:15.515305303 +0200
+++ /var/tmp/diff_new_pack.aiMQcD/_new 2022-05-21 19:06:15.519305309 +0200
@@ -1,11 +1,11 @@
PRODUCT="firefox"
CHANNEL="release"
-VERSION="100.0"
+VERSION="100.0.2"
VERSION_SUFFIX=""
-PREV_VERSION="99.0.1"
+PREV_VERSION="100.0.1"
PREV_VERSION_SUFFIX=""
#SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release";
-RELEASE_TAG="1c7f7adc90e2b4c8d64548938bb1499033c5be8f"
-RELEASE_TIMESTAMP="20220428192727"
+RELEASE_TAG="7ce9f0fe6cb4c4a2eb518c0add727a60d5672542"
+RELEASE_TIMESTAMP="20220519220738"
