commit mozjs68 for openSUSE:Factory

root Thu, 16 Apr 2020 14:03:23 -0700

Hello community,

here is the log from the commit of package mozjs68 for openSUSE:Factory checked 
in at 2020-04-16 23:02:20
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/mozjs68 (Old)
 and      /work/SRC/openSUSE:Factory/.mozjs68.new.2738 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "mozjs68"

Thu Apr 16 23:02:20 2020 rev:2 rq:794321 version:68.7.0

Changes:
--------
--- /work/SRC/openSUSE:Factory/mozjs68/mozjs68.changes  2020-04-15 
19:54:28.681598533 +0200
+++ /work/SRC/openSUSE:Factory/.mozjs68.new.2738/mozjs68.changes        
2020-04-16 23:02:40.279646546 +0200
@@ -1,0 +2,24 @@
+Wed Apr  8 19:06:06 UTC 2020 - Bjørn Lie <bjorn....@gmail.com>
+
+- Update to version 68.7.0esr:
+  * CVE-2020-6828: Preference overwrite via crafted Intent from
+    malicious Android application.
+  * CVE-2020-6827: Custom Tabs in Firefox for Android could have
+    the URI spoofed.
+  * CVE-2020-6821: Uninitialized memory could be read when using
+    the WebGL copyTexSubImage method.
+  * CVE-2020-6822: Out of bounds write in GMPDecodeData when
+    processing large images.
+  * CVE-2020-6825: Memory safety bugs fixed in Firefox 75 and
+    Firefox ESR 68.7.
+
+-------------------------------------------------------------------
+Mon Apr  6 15:20:37 UTC 2020 - Bjørn Lie <bjorn....@gmail.com>
+
+- Update to version 68.6.1esr:
+  + MFSA 2020-11:
+    - CVE-2020-6819: Use-after-free while running the nsDocShell
+      destructor
+    - CVE-2020-6820: Use-after-free when handling a ReadableStream
+
+-------------------------------------------------------------------

Old:
----
  firefox-68.6.0esr.source.tar.xz

New:
----
  firefox-68.7.0esr.source.tar.xz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ mozjs68.spec ++++++
--- /var/tmp/diff_new_pack.yun2i2/_old  2020-04-16 23:02:45.439650434 +0200
+++ /var/tmp/diff_new_pack.yun2i2/_new  2020-04-16 23:02:45.439650434 +0200
@@ -2,7 +2,6 @@
 # spec file for package mozjs68
 #
 # Copyright (c) 2020 SUSE LLC
-# Copyright (c) 2018 Luciano Santos <luc1...@linuxmail.org>.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +18,7 @@
 
 %global major   68
 Name:           mozjs%{major}
-Version:        68.6.0
+Version:        68.7.0
 Release:        0
 Summary:        MozJS, or SpiderMonkey, is Mozilla's JavaScript engine written 
in C and C++
 License:        MPL-2.0

++++++ firefox-68.6.0esr.source.tar.xz -> firefox-68.7.0esr.source.tar.xz ++++++
/work/SRC/openSUSE:Factory/mozjs68/firefox-68.6.0esr.source.tar.xz 
/work/SRC/openSUSE:Factory/.mozjs68.new.2738/firefox-68.7.0esr.source.tar.xz 
differ: char 15, line 1

commit mozjs68 for openSUSE:Factory

Reply via email to