Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package MozillaFirefox for openSUSE:Factory
checked in at 2022-04-08 00:26:53
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old)
and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1900 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox"
Fri Apr 8 00:26:53 2022 rev:363 rq:967154 version:99.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes
2022-03-28 17:00:29.668963938 +0200
+++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1900/MozillaFirefox.changes
2022-04-08 00:27:12.482666195 +0200
@@ -1,0 +2,45 @@
+Mon Apr 4 07:34:36 UTC 2022 - Wolfgang Rosenauer <w...@rosenauer.org>
+
+- Mozilla Firefox 99.0
+ * You can now toggle Narrate in ReaderMode with the keyboard
+ shortcut "n."
+ * You can find added support for search???with or without
+ diacritics???in the PDF viewer.
+ * The Linux sandbox has been strengthened: processes exposed to web
+ content no longer have access to the X Window system (X11).
+ * Firefox now supports credit card autofill and capture in
+ Germany and France.
+ MFSA 2022-13 (bsc#1197903)
+ * CVE-2022-1097 (bmo#1745667)
+ Use-after-free in NSSToken objects
+ * CVE-2022-28281 (bmo#1755621)
+ Out of bounds write due to unexpected WebAuthN Extensions
+ * CVE-2022-28282 (bmo#1751609)
+ Use-after-free in DocumentL10n::TranslateDocument
+ * CVE-2022-28283 (bmo#1754066)
+ Missing security checks for fetching sourceMapURL
+ * CVE-2022-28284 (bmo#1754522)
+ Script could be executed via svg's use element
+ * CVE-2022-28285 (bmo#1756957)
+ Incorrect AliasSet used in JIT Codegen
+ * CVE-2022-28286 (bmo#1735265)
+ iframe contents could be rendered outside the border
+ * CVE-2022-28287 (bmo#1741515)
+ Text Selection could crash Firefox
+ * CVE-2022-24713 (bmo#1758509)
+ Denial of Service via complex regular expressions
+ * CVE-2022-28289 (bmo#1663508, bmo#1744525, bmo#1753508,
+ bmo#1757476, bmo#1757805, bmo#1758549, bmo#1758776)
+ Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8
+ * CVE-2022-28288 (bmo#1746415, bmo#1746495, bmo#1746500,
+ bmo#1747282, bmo#1748759, bmo#1749056, bmo#1749786,
+ bmo#1751679, bmo#1752120, bmo#1756010, bmo#1756017,
+ bmo#1757213, bmo#1757258, bmo#1757427)
+ Memory safety bugs fixed in Firefox 99
+- requires NSS >= 3.76.1
+- remove obsolete patch
+ * mozilla-bmo1756347.patch
+ * mozilla-bmo1757571.patch
+- update create-tar.sh
+
+-------------------------------------------------------------------
Old:
----
firefox-98.0.2.source.tar.xz
firefox-98.0.2.source.tar.xz.asc
l10n-98.0.2.tar.xz
mozilla-bmo1756347.patch
mozilla-bmo1757571.patch
New:
----
firefox-99.0.source.tar.xz
firefox-99.0.source.tar.xz.asc
l10n-99.0.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ MozillaFirefox.spec ++++++
--- /var/tmp/diff_new_pack.mvbZIu/_old 2022-04-08 00:27:27.362499189 +0200
+++ /var/tmp/diff_new_pack.mvbZIu/_new 2022-04-08 00:27:27.378499009 +0200
@@ -28,9 +28,9 @@
# orig_suffix b3
# major 69
# mainver %major.99
-%define major 98
-%define mainver %major.0.2
-%define orig_version 98.0.2
+%define major 99
+%define mainver %major.0
+%define orig_version 99.0
%define orig_suffix %{nil}
%define update_channel release
%define branding 1
@@ -114,7 +114,7 @@
BuildRequires: libproxy-devel
BuildRequires: makeinfo
BuildRequires: mozilla-nspr-devel >= 4.33
-BuildRequires: mozilla-nss-devel >= 3.75
+BuildRequires: mozilla-nss-devel >= 3.76.1
BuildRequires: nasm >= 2.14
BuildRequires: nodejs >= 10.22.1
%if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000
@@ -219,8 +219,6 @@
Patch21: mozilla-libavcodec58_91.patch
Patch22: mozilla-silence-no-return-type.patch
Patch23: mozilla-bmo531915.patch
-Patch24: mozilla-bmo1756347.patch
-Patch25: mozilla-bmo1757571.patch
# Firefox/browser
Patch101: firefox-kde.patch
Patch102: firefox-branded-icons.patch
++++++ create-tar.sh ++++++
--- /var/tmp/diff_new_pack.mvbZIu/_old 2022-04-08 00:27:27.654495911 +0200
+++ /var/tmp/diff_new_pack.mvbZIu/_new 2022-04-08 00:27:27.686495552 +0200
@@ -37,6 +37,7 @@
fi
SOURCE_TARBALL="$PRODUCT-$VERSION$VERSION_SUFFIX.source.tar.xz"
+PREV_SOURCE_TARBALL="$PRODUCT-$PREV_VERSION$PREV_VERSION_SUFFIX.source.tar.xz"
FTP_URL="https://ftp.mozilla.org/pub/$PRODUCT/releases/$VERSION$VERSION_SUFFIX/source";
FTP_CANDIDATES_BASE_URL="https://ftp.mozilla.org/pub/$PRODUCT/candidates";
# Make first letter of PRODCUT upper case
@@ -145,22 +146,48 @@
fi
}
-function locales_parse() {
+function locales_parse_file() {
+ FILE="$1"
+ cat "$FILE" | python -c "import json; import sys; \
+ print('\n'.join(['{} {}'.format(key, value['revision']) \
+ for key, value in sorted(json.load(sys.stdin).items())]));"
+}
+
+function locales_parse_url() {
URL="$1"
curl -s "$URL" | python -c "import json; import sys; \
print('\n'.join(['{} {}'.format(key, value['changeset']) \
for key, value in
sorted(json.load(sys.stdin)['locales'].items())]));"
}
+function extract_locales_file() {
+ # still need to extract the locale information from the archive
+ echo "extract locale changesets"
+ tar -xf $SOURCE_TARBALL $LOCALE_FILE
+}
+
function locales_unchanged() {
BUILD_ID="$1"
PREV_BUILD_ID=$(get_build_number "$PREV_VERSION$PREV_VERSION_SUFFIX")
# If no json-file for one of the versions can be found, we say "they changed"
prev_url=$(locales_get "$PREV_VERSION$PREV_VERSION_SUFFIX" "$PREV_BUILD_ID")
|| return 1
- curr_url=$(locales_get "$VERSION$VERSION_SUFFIX" "$BUILD_ID") ||
return 1
+ prev_content=$(locales_parse_url "$prev_url") || exit 1
- prev_content=$(locales_parse "$prev_url") || exit 1
- curr_content=$(locales_parse "$curr_url") || exit 1
+ curr_url=$(locales_get "$VERSION$VERSION_SUFFIX" "$BUILD_ID")
+ if [ $? -ne 0 ]; then
+ # We did not find a locales file upstream on the servers
+ if [ -e $SOURCE_TARBALL ]; then
+ # We can find out what the locales are, by extracting the json-file
from the tar-ball
+ # instead of getting it from the server
+ extract_locales_file || return 1
+ curr_content=$(locales_parse_file "$LOCALE_FILE") || exit 1
+ else
+ # We can't know what the locales are in the current version
+ return 1
+ fi
+ else
+ curr_content=$(locales_parse_url "$curr_url") || exit 1
+ fi
diff -y --suppress-common-lines -d <(echo "$prev_content") <(echo
"$curr_content")
}
@@ -211,9 +238,7 @@
# we might have an upstream archive already and can skip the checkout
if [ -e $SOURCE_TARBALL ]; then
if [ -z ${SKIP_LOCALES+x} ] && [ $LOCALES_CHANGED -ne 0 ]; then
- # still need to extract the locale information from the archive
- echo "extract locale changesets"
- tar -xf $SOURCE_TARBALL $LOCALE_FILE
+ extract_locales_file
fi
get_source_stamp "$BUILD_ID"
else
@@ -329,3 +354,11 @@
mv "l10n-$PREV_VERSION$PREV_VERSION_SUFFIX.tar.xz"
"l10n-$VERSION$VERSION_SUFFIX.tar.xz"
fi
+if [ -e $PREV_SOURCE_TARBALL ]; then
+ echo ""
+ echo "Deleting old sources tarball $PREV_SOURCE_TARBALL"
+ $(ask_cont_abort_question "Is this ok?") || exit 0
+ rm "$PREV_SOURCE_TARBALL"
+ rm "$PREV_SOURCE_TARBALL.asc"
+fi
+
++++++ firefox-98.0.2.source.tar.xz -> firefox-99.0.source.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaFirefox/firefox-98.0.2.source.tar.xz
/work/SRC/openSUSE:Factory/.MozillaFirefox.new.1900/firefox-99.0.source.tar.xz
differ: char 15, line 1
++++++ l10n-98.0.2.tar.xz -> l10n-99.0.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaFirefox/l10n-98.0.2.tar.xz
/work/SRC/openSUSE:Factory/.MozillaFirefox.new.1900/l10n-99.0.tar.xz differ:
char 26, line 1
++++++ mozilla-libavcodec58_91.patch ++++++
--- /var/tmp/diff_new_pack.mvbZIu/_old 2022-04-08 00:27:28.042491557 +0200
+++ /var/tmp/diff_new_pack.mvbZIu/_new 2022-04-08 00:27:28.050491467 +0200
@@ -1,20 +1,10 @@
# HG changeset patch
-# Parent e4abeadbbb7a0c63c17177f1d14ea04c77c6128e
+# Parent 3802b7b2b99885f3ad4d2ec3e2c157e38d04a168
diff --git a/dom/media/platforms/ffmpeg/FFmpegRuntimeLinker.cpp
b/dom/media/platforms/ffmpeg/FFmpegRuntimeLinker.cpp
--- a/dom/media/platforms/ffmpeg/FFmpegRuntimeLinker.cpp
+++ b/dom/media/platforms/ffmpeg/FFmpegRuntimeLinker.cpp
-@@ -22,23 +22,27 @@ class FFmpegDecoderModule {
- static already_AddRefed<PlatformDecoderModule> Create(FFmpegLibWrapper*);
- };
-
- static FFmpegLibWrapper sLibAV;
-
- static const char* sLibs[] = {
- // clang-format off
- #if defined(XP_DARWIN)
-+ "libavcodec.58.134.dylib",
-+ "libavcodec.58.91.dylib",
+@@ -31,16 +31,18 @@ static const char* sLibs[] = {
"libavcodec.58.dylib",
"libavcodec.57.dylib",
"libavcodec.56.dylib",
@@ -22,6 +12,7 @@
"libavcodec.54.dylib",
"libavcodec.53.dylib",
#else
+ "libavcodec.so.59",
+ "libavcodec.so.58.134",
+ "libavcodec.so.58.91",
"libavcodec.so.58",
++++++ mozilla-pgo.patch ++++++
--- /var/tmp/diff_new_pack.mvbZIu/_old 2022-04-08 00:27:28.098490928 +0200
+++ /var/tmp/diff_new_pack.mvbZIu/_new 2022-04-08 00:27:28.110490793 +0200
@@ -1,11 +1,11 @@
# HG changeset patch
# User Wolfgang Rosenauer <w...@rosenauer.org>
-# Parent ebd7e379c85889b6f8dba0542479110ab1f6b059
+# Parent 02ffee15578fd4dc2dd5ade32e7dab907d633b0d
diff --git a/build/moz.configure/lto-pgo.configure
b/build/moz.configure/lto-pgo.configure
--- a/build/moz.configure/lto-pgo.configure
+++ b/build/moz.configure/lto-pgo.configure
-@@ -243,34 +243,34 @@ def lto(
+@@ -242,34 +242,34 @@ def lto(
"configure."
)
@@ -181,11 +181,11 @@
+ crashAfterMS = INT32_MAX;
+
UniquePtr<Options> options(new Options());
- const PRIntervalTime ticksDuration =
- PR_MillisecondsToInterval(HEARTBEAT_INTERVAL_MS);
- options->crashAfterTicks = crashAfterMS / ticksDuration;
- // Handle systems where ticksDuration is greater than crashAfterMS.
- if (options->crashAfterTicks == 0) {
- options->crashAfterTicks = crashAfterMS / HEARTBEAT_INTERVAL_MS;
- }
+ // crashAfterTicks is guaranteed to be > 0 as
+ // crashAfterMS >= ADDITIONAL_WAIT_BEFORE_CRASH_MS >> HEARTBEAT_INTERVAL_MS
+ options->crashAfterTicks = crashAfterMS / HEARTBEAT_INTERVAL_MS;
+
+ DebugOnly<PRThread*> watchdogThread =
+ CreateSystemThread(RunWatchdog, options.release());
+ MOZ_ASSERT(watchdogThread);
++++++ mozilla-s390-context.patch ++++++
--- /var/tmp/diff_new_pack.mvbZIu/_old 2022-04-08 00:27:28.130490570 +0200
+++ /var/tmp/diff_new_pack.mvbZIu/_new 2022-04-08 00:27:28.134490524 +0200
@@ -3,21 +3,21 @@
# Date 1558452408 -7200
# Tue May 21 17:26:48 2019 +0200
# Node ID 602e92722e765a3c238d3b96b26c0c8063b5eeb4
-# Parent 60715122a04aad06b33ad7259f1bde19803230da
+# Parent 136e1f2c44a3099b3e49a576fa62c8ad77aa431e
[mq]: mozilla-s390-context.patch
diff --git a/js/src/wasm/WasmSignalHandlers.cpp
b/js/src/wasm/WasmSignalHandlers.cpp
--- a/js/src/wasm/WasmSignalHandlers.cpp
+++ b/js/src/wasm/WasmSignalHandlers.cpp
-@@ -151,16 +151,20 @@ using mozilla::DebugOnly;
- # define FP_sig(p) ((p)->uc_mcontext.mc_fp)
- # define SP_sig(p) ((p)->uc_mcontext.mc_i7)
- # endif
- # if defined(__linux__) && (defined(__ppc64__) || defined(__PPC64__) || \
- defined(__ppc64le__) || defined(__PPC64LE__))
- # define R01_sig(p) ((p)->uc_mcontext.gp_regs[1])
+@@ -157,16 +157,20 @@ using mozilla::DebugOnly;
# define R32_sig(p) ((p)->uc_mcontext.gp_regs[32])
# endif
+ # if defined(__linux__) && defined(__loongarch__)
+ # define EPC_sig(p) ((p)->uc_mcontext.pc)
+ # define RRA_sig(p) ((p)->uc_mcontext.gregs[1])
+ # define RSP_sig(p) ((p)->uc_mcontext.gregs[3])
+ # define RFP_sig(p) ((p)->uc_mcontext.gregs[22])
+ # endif
+# if defined(__linux__) && defined(__s390x__)
+# define GR_sig(p,x) ((p)->uc_mcontext.gregs[x])
+# define PSWa_sig(p) ((p)->uc_mcontext.psw.addr)
@@ -30,15 +30,15 @@
# define RSP_sig(p) ((p)->uc_mcontext.__gregs[_REG_RSP])
# define RBP_sig(p) ((p)->uc_mcontext.__gregs[_REG_RBP])
# define R11_sig(p) ((p)->uc_mcontext.__gregs[_REG_R11])
-@@ -371,16 +375,20 @@ struct macos_aarch64_context {
- # define FP_sig(p) RFP_sig(p)
- # define SP_sig(p) RSP_sig(p)
- # define LR_sig(p) R31_sig(p)
- # elif defined(__ppc64__) || defined(__PPC64__) || defined(__ppc64le__) || \
- defined(__PPC64LE__)
+@@ -399,16 +403,20 @@ struct macos_aarch64_context {
# define PC_sig(p) R32_sig(p)
# define SP_sig(p) R01_sig(p)
# define FP_sig(p) R01_sig(p)
+ # elif defined(__loongarch__)
+ # define PC_sig(p) EPC_sig(p)
+ # define FP_sig(p) RFP_sig(p)
+ # define SP_sig(p) RSP_sig(p)
+ # define LR_sig(p) RRA_sig(p)
+# elif defined(__s390x__)
+# define PC_sig(p) PSWa_sig(p)
+# define SP_sig(p) GR_sig(p, 15)
++++++ tar_stamps ++++++
--- /var/tmp/diff_new_pack.mvbZIu/_old 2022-04-08 00:27:28.230489447 +0200
+++ /var/tmp/diff_new_pack.mvbZIu/_new 2022-04-08 00:27:28.234489402 +0200
@@ -1,11 +1,11 @@
PRODUCT="firefox"
CHANNEL="release"
-VERSION="98.0.2"
+VERSION="99.0"
VERSION_SUFFIX=""
-PREV_VERSION="98.0.1"
+PREV_VERSION="98.0.2"
PREV_VERSION_SUFFIX=""
#SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release";
-RELEASE_TAG="cc23a50fcf60e8f94b168659870d765dc502ea56"
-RELEASE_TIMESTAMP="20220322144853"
+RELEASE_TAG="384926270a61c2dd2101752565a6175de3d62781"
+RELEASE_TIMESTAMP="20220330194208"
