Next | Query returned 700 messages, browsing 1 to 10 | Previous

History of commit frequency

CVS Commit History:


   2019-07-22 00:26:08 by Thomas Klausner | Files touched by this commit (1256)
Log message:
*: recursive bump for gdk-pixbuf2-2.38.1
   2019-07-12 05:52:13 by David H. Gutteridge | Files touched by this commit (1)
Log message:
firefox: note new cbindgen and NSS minimum dependencies

cbindgen is now >= 0.8.7 and NSS is now >= 3.44.1.
   2019-07-12 03:17:33 by David H. Gutteridge | Files touched by this commit (1)
Log message:
firefox: note Rust dependency is now >= 1.34.0
   2019-07-11 13:32:40 by Ryo ONODERA | Files touched by this commit (16) | Package updated
Log message:
Update to 68.0

Changelog:

New
    Dark mode in reader view expands so that windows are also dark on the \ 
controls, sidebars and toolbars.

    Improved extension security and discovery:
        New reporting feature in about:addons allows you to report security and \ 
performance issues with extensions and themes.
        Redesigned extensions dashboard in about:addons provides easy access to \ 
information about your extensions, including data and settings access required \ 
by each extension.
        Find high quality, secure extensions via the Recommended Extensions \ 
program in about:addons, which now displays user count and ratings for each \ 
extension. "Recommended” badges for these extensions also appear on AMO. \ 
More extensions will be added over time.

    Cryptomining and fingerprinting protections are added to strict content \ 
blocking settings in Privacy & Security preferences.

    WebRender will roll out to Windows 10 users with AMD graphics cards.

    Windows Background Intelligent Transfer Service (BITS) update download \ 
support, which allows Firefox update downloads to continue when Firefox is \ 
closed.

Fixed

    Various security fixes

    Local files can no longer access other files in the same directory.

Security fixes:
#CVE-2019-9811: Sandbox escape via installation of malicious language pack
#CVE-2019-11711: Script injection within domain through inner window reuse
#CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by \ 
following 308 redirects
#CVE-2019-11713: Use-after-free with HTTP/2 cached stream
#CVE-2019-11714: NeckoChild can trigger crash when accessed off of main thread
#CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a \ 
segmentation fault
#CVE-2019-11715: HTML parsing error can contribute to content XSS
#CVE-2019-11716: globalThis not enumerable until accessed
#CVE-2019-11717: Caret character improperly escaped in origins
#CVE-2019-11718: Activity Stream writes unsanitized content to innerHTML
#CVE-2019-11719: Out-of-bounds read when importing curve25519 private key
#CVE-2019-11720: Character encoding XSS vulnerability
#CVE-2019-11721: Domain spoofing through unicode latin 'kra' character
#CVE-2019-11730: Same-origin policy treats all files in a directory as having \ 
the same-origin
#CVE-2019-11723: Cookie leakage during add-on fetching across private browsing \ 
boundaries
#CVE-2019-11724: Retired site input.mozilla.org has remote troubleshooting \ 
permissions
#CVE-2019-11725: Websocket resources bypass safebrowsing protections
#CVE-2019-11727: PKCS#1 v1.5 signatures can be used for TLS 1.3
#CVE-2019-11728: Port scanning through Alt-Svc header
#CVE-2019-11710: Memory safety bugs fixed in Firefox 68
#CVE-2019-11709: Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8
   2019-06-21 18:35:32 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
Update to 67.0.4

Changelog:
#CVE-2019-11708: sandbox escape using Prompt:Open
   2019-06-19 14:24:06 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
Update to 67.0.3

Changelog:
Security fix:
#CVE-2019-11707: Type confusion in Array.pop
   2019-06-14 14:20:42 by Nia Alarie | Files touched by this commit (2)
Log message:
firefox*: Reduce SUN_BUFFER_FRAMES back down to 32.

This was a precaution but actually seems to introduce frame drops
at the default audio latency.
   2019-06-14 00:05:24 by Nia Alarie | Files touched by this commit (7) | Package updated
Log message:
firefox: Add sun audio backend and make it a default where supported.

This replaces the OSS backend with something that passes the unit tests,
supports additional channels, and supports recording. It will be included
with future versions of Firefox.

Tested with:

* YouTube audio-video sync test
* about:support device detection
* WebRTC microphone recording (using an USB microphone)

Note: you can select an audio backend using the about:config variable
media.cubeb.backend. This can be set to options such as sun/pulse/oss.

Let me know if you still need to use the oss backend. It's very
incomplete, buggy, and FreeBSD has already removed it - ideally we
should eventually.

Bump PKGREVISION.
   2019-06-12 20:33:27 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
Update to 67.0.2

Changelog:
Fixed
    Fix JavaScript error ("TypeError: data is null in PrivacyFilter.jsm")
    in console which may significantly degrade sessionstore
    reliability and performance (bug 1553413)

    Proxy authentication dialog box repeatedly pops up asking to
    authenticate after upgrading to Firefox 67 (bug 1548804)

    Pearson MyCloud breaks if FIDO U2F is not Chrome's implementation
    (bug 1551282)

    Starting in safe mode on Linux or macOS causes Firefox to think
    on the subsequent launch that the profile is too recent to be
    used with this version of Firefox (bug 1556612)

    Linux distribution users can't easily install/use additional/different
    languages using the built-in preferences UI (bug 1554744)

    Developer tools users can't copy the href/src content from
    various HTML tags via the context menu in the Inspector markup
    view (bug 1552275)

    Custom home page is broken with clearing data on shutdown
    settings applied (bug 1554167)

    Performance-regression for eclipse RAP based applications (bug
    1555962)

    macOS 10.15 crash fix (bug 1556076)

    Can't start two downloads in parallel via <a download> anymore
    (bug 1542912)
   2019-06-09 05:44:50 by David H. Gutteridge | Files touched by this commit (1)
Log message:
firefox: correct some non-default debug settings

Next | Query returned 700 messages, browsing 1 to 10 | Previous