Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at 2017-12-12 21:20:59 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old) and /work/SRC/openSUSE:Factory/.MozillaFirefox.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox" Tue Dec 12 21:20:59 2017 rev:262 rq:555866 version:57.0.1 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes 2017-12-08 21:45:44.675311231 +0100 +++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new/MozillaFirefox.changes 2017-12-12 21:21:06.499818584 +0100 @@ -1,0 +2,12 @@ +Fri Dec 8 15:52:17 UTC 2017 - [email protected] + +- Explicitly buildrequires python2-xml: The build system relies on + it. We wrongly relied on other packages pulling it in for us. + +------------------------------------------------------------------- +Thu Dec 7 11:12:31 UTC 2017 - [email protected] + +- Escape the usage of %{VERSION} when calling out to rpm. + RPM 4.14 has %{VERSION} defined as 'the main packages version'. + +------------------------------------------------------------------- @@ -4,0 +17,4 @@ + * CVE-2017-7843: Web worker in Private Browsing mode can write + IndexedDB data (bsc#1072034, bmo#1410106) + * CVE-2017-7844: Visited history information leak through SVG + image (bsc#1072036, bmo#1420001) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.reFTXz/_old 2017-12-12 21:21:13.903461179 +0100 +++ /var/tmp/diff_new_pack.reFTXz/_new 2017-12-12 21:21:13.911460793 +0100 @@ -75,6 +75,7 @@ BuildRequires: mozilla-nspr-devel >= 4.17 BuildRequires: mozilla-nss-devel >= 3.33 BuildRequires: python-devel +BuildRequires: python2-xml BuildRequires: rust >= 1.19 BuildRequires: rust-std BuildRequires: startup-notification-devel @@ -166,8 +167,8 @@ %if %branding Requires: %{name}-branding > 44.0 %endif -Requires: mozilla-nspr >= %(rpm -q --queryformat '%{VERSION}' mozilla-nspr) -Requires: mozilla-nss >= %(rpm -q --queryformat '%{VERSION}' mozilla-nss) +Requires: mozilla-nspr >= %(rpm -q --queryformat '%%{VERSION}' mozilla-nspr) +Requires: mozilla-nss >= %(rpm -q --queryformat '%%{VERSION}' mozilla-nss) Recommends: libcanberra0 Recommends: libpulse0 # addon leads to startup crash (bnc#908892)
