Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at 2021-12-12 00:56:09 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old) and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.2520 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox" Sun Dec 12 00:56:09 2021 rev:351 rq:936364 version:95.0 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes 2021-11-27 00:51:06.298847516 +0100 +++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.2520/MozillaFirefox.changes 2021-12-12 00:56:55.378556091 +0100 @@ -1,0 +2,56 @@ +Sat Dec 4 12:07:21 UTC 2021 - Wolfgang Rosenauer <w...@rosenauer.org> + +- Mozilla Firefox 95.0 + * You can now move the Picture-in-Picture toggle button to the + opposite side of the video. Simply look for the new context menu + option Move Picture-in-Picture Toggle to Left (Right) Side. + * To better protect Firefox users against side-channel attacks such + as Spectre, Site Isolation is now enabled for all Firefox 95 users. + * https://www.mozilla.org/en-US/firefox/95.0/releasenotes + MFSA 2021-52 (bsc#1193485) + * CVE-2021-43536 (bmo#1730120) + URL leakage when navigating while executing asynchronous + function + * CVE-2021-43537 (bmo#1738237) + Heap buffer overflow when using structured clone + * CVE-2021-43538 (bmo#1739091) + Missing fullscreen and pointer lock notification when + requesting both + * CVE-2021-43539 (bmo#1739683) + GC rooting failure when calling wasm instance methods + * MOZ-2021-0010 (bmo#1735852) + Use-after-free in fullscreen objects on MacOS + * CVE-2021-43540 (bmo#1636629) + WebExtensions could have installed persistent ServiceWorkers + * CVE-2021-43541 (bmo#1696685) + External protocol handler parameters were unescaped + * CVE-2021-43542 (bmo#1723281) + XMLHttpRequest error codes could have leaked the existence of + an external protocol handler + * CVE-2021-43543 (bmo#1738418) + Bypass of CSP sandbox directive when embedding + * CVE-2021-43544 (bmo#1739934) + Receiving a malicious URL as text through a SEND intent could + have led to XSS + * CVE-2021-43545 (bmo#1720926) + Denial of Service when using the Location API in a loop + * CVE-2021-43546 (bmo#1737751) + Cursor spoofing could overlay user interface when native + cursor is zoomed + * MOZ-2021-0009 (bmo#1393362, bmo#1736046, bmo#1736751, + bmo#1737009, bmo#1739372, bmo#1739421) + Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 +- requires + NSS >= 3.72 + +------------------------------------------------------------------- +Thu Dec 2 20:32:42 UTC 2021 - Andreas Stieger <andreas.stie...@gmx.de> + +- remove x-scheme-handler/ftp from firefox.desktop boo#1193321 + +------------------------------------------------------------------- +Thu Nov 25 20:21:07 UTC 2021 - Bj??rn Lie <bjorn....@gmail.com> + +- Drop unused libidl-devel BuildRequires. + +------------------------------------------------------------------- Old: ---- firefox-94.0.2.source.tar.xz firefox-94.0.2.source.tar.xz.asc l10n-94.0.2.tar.xz New: ---- firefox-95.0.source.tar.xz firefox-95.0.source.tar.xz.asc l10n-95.0.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.ueV5rc/_old 2021-12-12 00:57:03.846561906 +0100 +++ /var/tmp/diff_new_pack.ueV5rc/_new 2021-12-12 00:57:03.850561908 +0100 @@ -28,9 +28,9 @@ # orig_suffix b3 # major 69 # mainver %major.99 -%define major 94 -%define mainver %major.0.2 -%define orig_version 94.0.2 +%define major 95 +%define mainver %major.0 +%define orig_version 95.0 %define orig_suffix %{nil} %define update_channel release %define branding 1 @@ -113,7 +113,6 @@ %endif BuildRequires: libXcomposite-devel BuildRequires: libcurl-devel -BuildRequires: libidl-devel BuildRequires: libiw-devel BuildRequires: libproxy-devel BuildRequires: makeinfo @@ -493,6 +492,8 @@ ac_add_options --with-google-safebrowsing-api-keyfile=%{SOURCE19} ac_add_options --with-unsigned-addon-scopes=app ac_add_options --allow-addon-sideload +# at least temporary until the "wasi-sysroot" issue is solved +ac_add_options --without-wasm-sandboxed-libraries %if %branding ac_add_options --enable-official-branding %endif @@ -549,6 +550,7 @@ ac_add_options --prefix=%{_prefix} ac_add_options --with-l10n-base=$RPM_BUILD_DIR/l10n ac_add_options --disable-updater +ac_add_options --without-wasm-sandboxed-libraries %if %branding ac_add_options --enable-official-branding %endif ++++++ MozillaFirefox.desktop ++++++ --- /var/tmp/diff_new_pack.ueV5rc/_old 2021-12-12 00:57:03.918561955 +0100 +++ /var/tmp/diff_new_pack.ueV5rc/_new 2021-12-12 00:57:03.918561955 +0100 @@ -8,7 +8,7 @@ Icon=%ICON Terminal=false StartupNotify=true -MimeType=text/html;text/xml;application/xhtml+xml;application/vnd.mozilla.xul+xml;text/mml;application/x-xpinstall;x-scheme-handler/http;x-scheme-handler/https;x-scheme-handler/ftp; +MimeType=text/html;text/xml;application/xhtml+xml;application/vnd.mozilla.xul+xml;text/mml;application/x-xpinstall;x-scheme-handler/http;x-scheme-handler/https; Type=Application Actions=new-window;PrivateBrowsing;ProfileManager ++++++ firefox-94.0.2.source.tar.xz -> firefox-95.0.source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/firefox-94.0.2.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.2520/firefox-95.0.source.tar.xz differ: char 15, line 1 ++++++ l10n-94.0.2.tar.xz -> l10n-95.0.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/l10n-94.0.2.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.2520/l10n-95.0.tar.xz differ: char 26, line 1 ++++++ mozilla-kde.patch ++++++ --- /var/tmp/diff_new_pack.ueV5rc/_old 2021-12-12 00:57:04.054562049 +0100 +++ /var/tmp/diff_new_pack.ueV5rc/_new 2021-12-12 00:57:04.054562049 +0100 @@ -3,7 +3,7 @@ # Date 1559294891 -7200 # Fri May 31 11:28:11 2019 +0200 # Node ID c2aa7198fb925e7fde96abf65b6f68b9b755f112 -# Parent 9eb4df0e07175ce38fc6699b2b8544b9eda7f0ad +# Parent d065e5213c971b1f80d4a13458c412a3a25f7c1c Description: Add KDE integration to Firefox (toolkit parts) Author: Wolfgang Rosenauer <wolfg...@rosenauer.org> Author: Lubos Lunak <lu...@suse.com> @@ -31,7 +31,7 @@ #ifdef MOZ_MEMORY # include "mozmemory.h" #endif -@@ -4634,16 +4635,27 @@ nsresult Preferences::InitInitialObjects +@@ -4635,16 +4636,27 @@ nsresult Preferences::InitInitialObjects "unix.js" # if defined(_AIX) , @@ -59,7 +59,7 @@ // Load jar:$app/omni.jar!/defaults/preferences/*.js // or jar:$gre/omni.jar!/defaults/preferences/*.js. -@@ -4708,17 +4720,17 @@ nsresult Preferences::InitInitialObjects +@@ -4709,17 +4721,17 @@ nsresult Preferences::InitInitialObjects } nsCOMPtr<nsIFile> path = do_QueryInterface(elem); @@ -346,7 +346,7 @@ diff --git a/toolkit/xre/moz.build b/toolkit/xre/moz.build --- a/toolkit/xre/moz.build +++ b/toolkit/xre/moz.build -@@ -91,17 +91,19 @@ elif CONFIG["MOZ_WIDGET_TOOLKIT"] == "co +@@ -92,17 +92,19 @@ elif CONFIG["MOZ_WIDGET_TOOLKIT"] == "co "../components/printingui", ] elif CONFIG["MOZ_WIDGET_TOOLKIT"] == "uikit": @@ -360,12 +360,12 @@ + "nsKDEUtils.cpp", "nsNativeAppSupportUnix.cpp", ] + CXXFLAGS += CONFIG["MOZ_X11_SM_CFLAGS"] else: UNIFIED_SOURCES += [ "nsNativeAppSupportDefault.cpp", ] - if CONFIG["MOZ_HAS_REMOTE"]: diff --git a/toolkit/xre/nsKDEUtils.cpp b/toolkit/xre/nsKDEUtils.cpp new file mode 100644 --- /dev/null ++++++ mozilla-pgo.patch ++++++ --- /var/tmp/diff_new_pack.ueV5rc/_old 2021-12-12 00:57:04.066562057 +0100 +++ /var/tmp/diff_new_pack.ueV5rc/_new 2021-12-12 00:57:04.066562057 +0100 @@ -1,37 +1,48 @@ # HG changeset patch # User Wolfgang Rosenauer <w...@rosenauer.org> -# Parent ed9681bd4359b83145247fb6b01a56a2c84879fd +# Parent 066aba2f6d1fbc0fe31d1864d539714041404fe6 diff --git a/build/moz.configure/lto-pgo.configure b/build/moz.configure/lto-pgo.configure --- a/build/moz.configure/lto-pgo.configure +++ b/build/moz.configure/lto-pgo.configure -@@ -235,23 +235,23 @@ def lto( - "configure." - ) - - if c_compiler.type == "clang": - if len(value) and value[0].lower() == "full": - cflags.append("-flto") - ldflags.append("-flto") - else: -- cflags.append("-flto=thin") -- ldflags.append("-flto=thin") -+ cflags.append("-flto") -+ ldflags.append("-flto") - elif c_compiler.type == "clang-cl": - if len(value) and value[0].lower() == "full": - cflags.append("-flto") - else: -- cflags.append("-flto=thin") -+ cflags.append("-flto") - # With clang-cl, -flto can only be used with -c or -fuse-ld=lld. - # AC_TRY_LINKs during configure don't have -c, so pass -fuse-ld=lld. - cflags.append("-fuse-ld=lld") - - # Explicitly set the CPU to optimize for so the linker doesn't - # choose a poor default. Rust compilation by default uses the - # pentium4 CPU on x86: - # +@@ -243,34 +243,34 @@ def lto( + "configure." + ) + + if c_compiler.type == "clang": + if value == "full": + cflags.append("-flto") + ldflags.append("-flto") + else: +- cflags.append("-flto=thin") +- ldflags.append("-flto=thin") ++ cflags.append("-flto") ++ ldflags.append("-flto") + + if target.os == "Android" and value == "cross": + # Work around https://github.com/rust-lang/rust/issues/90088 + # by enabling the highest level of SSE the rust targets default + # to. + # https://github.com/rust-lang/rust/blob/bdfcb88e8b6203ccb46a2fb6649979b773efc8ac/compiler/rustc_target/src/spec/i686_linux_android.rs#L13 + # https://github.com/rust-lang/rust/blob/8d1083e319841624f64400e1524805a40d725439/compiler/rustc_target/src/spec/x86_64_linux_android.rs#L7 + if target.cpu == "x86": + ldflags.append("-Wl,-plugin-opt=-mattr=+ssse3") + elif target.cpu == "x86_64": + ldflags.append("-Wl,-plugin-opt=-mattr=+sse4.2") + elif c_compiler.type == "clang-cl": + if value == "full": + cflags.append("-flto") + else: +- cflags.append("-flto=thin") ++ cflags.append("-flto") + # With clang-cl, -flto can only be used with -c or -fuse-ld=lld. + # AC_TRY_LINKs during configure don't have -c, so pass -fuse-ld=lld. + cflags.append("-fuse-ld=lld") + + # Explicitly set the CPU to optimize for so the linker doesn't + # choose a poor default. Rust compilation by default uses the + # pentium4 CPU on x86: + # diff --git a/build/pgo/profileserver.py b/build/pgo/profileserver.py --- a/build/pgo/profileserver.py +++ b/build/pgo/profileserver.py @@ -155,7 +166,7 @@ diff --git a/toolkit/components/terminator/nsTerminator.cpp b/toolkit/components/terminator/nsTerminator.cpp --- a/toolkit/components/terminator/nsTerminator.cpp +++ b/toolkit/components/terminator/nsTerminator.cpp -@@ -451,16 +451,21 @@ void nsTerminator::StartWatchdog() { +@@ -461,16 +461,21 @@ void nsTerminator::StartWatchdog() { // Defend against overflow crashAfterMS = INT32_MAX; } else { ++++++ tar_stamps ++++++ --- /var/tmp/diff_new_pack.ueV5rc/_old 2021-12-12 00:57:04.114562090 +0100 +++ /var/tmp/diff_new_pack.ueV5rc/_new 2021-12-12 00:57:04.118562092 +0100 @@ -1,10 +1,10 @@ PRODUCT="firefox" CHANNEL="release" -VERSION="94.0.2" +VERSION="95.0" VERSION_SUFFIX="" -PREV_VERSION="94.0.1" +PREV_VERSION="94.0.2" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"; -RELEASE_TAG="f09593707108af9f9f4d580cf748c3537639ecd4" -RELEASE_TIMESTAMP="20211119140621" +RELEASE_TAG="5a1a2f3b06c23a27532ba48f9999c59c643f3f36" +RELEASE_TIMESTAMP="20211129150630"
