Re: [blfs-book] [BLFS Trac] #14564: firefox-78.7.0

2021-02-05 Thread BLFS Trac via blfs-book 
#14564: firefox-78.7.0
-+-
 Reporter:  ken@…|   Owner:  ken@…
 Type:  enhancement  |  Status:  closed
 Priority:  high |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:  fixed
 Keywords:   |
-+-

Comment (by ken@…):

 Replying to [comment:3 ken@…]:
 > Security fixes listed at [https://www.mozilla.org/en-
 US/security/advisories/mfsa2021-04/]
 > Some are rated 'high', the JS78 fix appears to be the "use after poison"
 fix which is rated moderate.

 I'm now generally regarding crashes as High severity even when NVD, and in
 this case upstream, mark them as Moderate or Low.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14564: firefox-78.7.0

2021-01-26 Thread BLFS Trac via blfs-book 
#14564: firefox-78.7.0
-+-
 Reporter:  ken@…|   Owner:  ken@…
 Type:  enhancement  |  Status:  closed
 Priority:  high |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:  fixed
 Keywords:   |
-+-
Changes (by ken@…):

 * priority:  normal => high
 * status:  assigned => closed
 * resolution:   => fixed


Comment:

 Security fixes listed at [https://www.mozilla.org/en-
 US/security/advisories/mfsa2021-04/]
 Some are rated 'high', the JS78 fix appears to be the "use after poison"
 fix which is rated moderate.

 Fixed in r24138.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14564: firefox-78.7.0

2021-01-25 Thread BLFS Trac via blfs-book 
#14564: firefox-78.7.0
-+---
 Reporter:  ken@…|   Owner:  ken@…
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by ken@…):

 r24138, still waiting for the release notes.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14564: firefox-78.7.0

2021-01-25 Thread BLFS Trac via blfs-book 
#14564: firefox-78.7.0
-+---
 Reporter:  ken@…|   Owner:  ken@…
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by ken@…):

 * owner:  blfs-book => ken@…
 * status:  new => assigned


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #14564: firefox-78.7.0

2021-01-25 Thread BLFS Trac via blfs-book 
#14564: firefox-78.7.0
-+---
 Reporter:  ken@…|  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  10.1
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 Now available.

 It looks to me as if both the JS78 part and firefox itself contain
 security fixes in this version.

 When I was looking at thunderbird in Arch's AUR I noticed that ./mach
 build was preceded by ./mach configure. Doing that separates the
 configuration (everything up to 'reticulating splines' which is where the
 generated (Python) 'config.status' reads all the moz.build files and
 invokes the build back-end generator). It seems to me that since these
 stages can be separated, that is a more educational way to go.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page