commit mozjs115 for openSUSE:Factory

Source-Sync Wed, 06 Sep 2023 10:01:35 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package mozjs115 for openSUSE:Factory 
checked in at 2023-09-06 18:57:30
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/mozjs115 (Old)
 and      /work/SRC/openSUSE:Factory/.mozjs115.new.1766 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "mozjs115"

Wed Sep  6 18:57:30 2023 rev:2 rq:1109056 version:115.2.0

Changes:
--------
--- /work/SRC/openSUSE:Factory/mozjs115/mozjs115.changes        2023-08-14 
22:36:34.208725311 +0200
+++ /work/SRC/openSUSE:Factory/.mozjs115.new.1766/mozjs115.changes      
2023-09-06 19:01:14.938094453 +0200
@@ -1,0 +2,30 @@
+Tue Sep  5 09:40:20 UTC 2023 - BjÃ¸rn Lie <bjorn....@gmail.com>
+
+- Update to version 115.2.0:
+  + Various security fixes and other quality improvements.
+  + CVE-2023-4573: Memory corruption in IPC CanvasTranslator
+  + CVE-2023-4574: Memory corruption in IPC
+    ColorPickerShownCallback
+  + CVE-2023-4575: Memory corruption in IPC FilePickerShownCallback
+  + CVE-2023-4576: Integer Overflow in
+    RecordedSourceSurfaceCreation
+  + CVE-2023-4577: Memory corruption in JIT UpdateRegExpStatics
+  + CVE-2023-4051: Full screen notification obscured by file open
+    dialog
+  + CVE-2023-4578: Error reporting methods in SpiderMonkey could
+    have triggered an Out of Memory Exception
+  + CVE-2023-4053: Full screen notification obscured by external
+    program
+  + CVE-2023-4580: Push notifications saved to disk unencrypted
+  + CVE-2023-4581: XLL file extensions were downloadable without
+    warnings
+  + CVE-2023-4582: Buffer Overflow in WebGL glGetProgramiv
+  + CVE-2023-4583: Browsing Context potentially not cleared when
+    closing Private Window
+  + CVE-2023-4584: Memory safety bugs fixed in Firefox 117, Firefox
+    ESR 102.15, Firefox ESR 115.2, Thunderbird 102.15, and
+    Thunderbird 115.2
+  + CVE-2023-4585: Memory safety bugs fixed in Firefox 117, Firefox
+    ESR 115.2, and Thunderbird 115.2
+
+-------------------------------------------------------------------

Old:
----
  firefox-115.1.0esr.source.tar.xz
  firefox-115.1.0esr.source.tar.xz.asc

New:
----
  firefox-115.2.0esr.source.tar.xz
  firefox-115.2.0esr.source.tar.xz.asc

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ mozjs115.spec ++++++
--- /var/tmp/diff_new_pack.x3o47X/_old  2023-09-06 19:01:21.926343570 +0200
+++ /var/tmp/diff_new_pack.x3o47X/_new  2023-09-06 19:01:21.934343855 +0200
@@ -41,7 +41,7 @@
 %global big_endian 1
 %endif
 Name:           mozjs%{major}
-Version:        115.1.0
+Version:        115.2.0
 Release:        1%{?dist}
 Summary:        SpiderMonkey JavaScript library
 License:        MPL-2.0

++++++ firefox-115.1.0esr.source.tar.xz -> firefox-115.2.0esr.source.tar.xz 
++++++
/work/SRC/openSUSE:Factory/mozjs115/firefox-115.1.0esr.source.tar.xz 
/work/SRC/openSUSE:Factory/.mozjs115.new.1766/firefox-115.2.0esr.source.tar.xz 
differ: char 15, line 1

commit mozjs115 for openSUSE:Factory

Reply via email to