Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at 2023-08-30 10:18:38 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaFirefox (Old) and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1766 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaFirefox" Wed Aug 30 10:18:38 2023 rev:408 rq:1107944 version:117.0 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaFirefox/MozillaFirefox.changes 2023-08-18 19:27:17.619201255 +0200 +++ /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1766/MozillaFirefox.changes 2023-08-30 10:20:32.976289885 +0200 @@ -1,0 +2,41 @@ +Sun Aug 27 08:51:28 UTC 2023 - Wolfgang Rosenauer <w...@rosenauer.org> + +- Mozilla Firefox 117.0 + https://www.mozilla.org/en-US/firefox/117.0/releasenotes + MFSA 2023-34 (bsc#1214606) + * CVE-2023-4573 (bmo#1846687) + Memory corruption in IPC CanvasTranslator + * CVE-2023-4574 (bmo#1846688) + Memory corruption in IPC ColorPickerShownCallback + * CVE-2023-4575 (bmo#1846689) + Memory corruption in IPC FilePickerShownCallback + * CVE-2023-4576 (bmo#1846694) + Integer Overflow in RecordedSourceSurfaceCreation + * CVE-2023-4577 (bmo#1847397) + Memory corruption in JIT UpdateRegExpStatics + * CVE-2023-4578 (bmo#1839007) + Error reporting methods in SpiderMonkey could have triggered + an Out of Memory Exception + * CVE-2023-4579 (bmo#1842766) + Persisted search terms were formatted as URLs + * CVE-2023-4580 (bmo#1843046) + Push notifications saved to disk unencrypted + * CVE-2023-4581 (bmo#1843758) + XLL file extensions were downloadable without warnings + * CVE-2023-4582 (bmo#1773874) + Buffer Overflow in WebGL glGetProgramiv + * CVE-2023-4583 (bmo#1842030) + Browsing Context potentially not cleared when closing Private + Window + * CVE-2023-4584 (bmo#1843968, bmo#1845205, bmo#1846080, + bmo#1846526, bmo#1847529) + Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15, + Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2 + * CVE-2023-4585 (bmo#1751583, bmo#1841082, bmo#1847904, bmo#1848999) + Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2, + and Thunderbird 115.2 +- requires + NSS = 3.92 + rustc = 1.71 + +------------------------------------------------------------------- Old: ---- firefox-116.0.3.source.tar.xz firefox-116.0.3.source.tar.xz.asc l10n-116.0.3.tar.xz New: ---- firefox-117.0.source.tar.xz firefox-117.0.source.tar.xz.asc l10n-117.0.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.k0EWtO/_old 2023-08-30 10:20:47.728816464 +0200 +++ /var/tmp/diff_new_pack.k0EWtO/_new 2023-08-30 10:20:47.732816607 +0200 @@ -28,9 +28,9 @@ # orig_suffix b3 # major 69 # mainver %%major.99 -%define major 116 -%define mainver %major.0.3 -%define orig_version 116.0.3 +%define major 117 +%define mainver %major.0 +%define orig_version 117.0 %define orig_suffix %{nil} %define update_channel release %define branding 1 @@ -58,7 +58,7 @@ %ifarch %ix86 ExclusiveArch: i586 i686 BuildArch: i686 -%{expand:%%global optflags %(echo "%optflags"|sed -e s/i586/i686/) -Os -march=i686 -mtune=generic -msse2} +%{expand:%%global optflags %(echo "%optflags"|sed -e s/i586/i686/) -march=i686 -mtune=generic -msse2} %endif %endif %{expand:%%global optflags %(echo "%optflags"|sed -e s/-flto=auto//) } @@ -97,14 +97,14 @@ BuildRequires: dejavu-fonts BuildRequires: fdupes BuildRequires: memory-constraints -%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150500 +%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150600 BuildRequires: gcc12 BuildRequires: gcc12-c++ %else BuildRequires: gcc-c++ %endif -BuildRequires: cargo1.69 -BuildRequires: rust1.69 +BuildRequires: cargo1.71 +BuildRequires: rust1.71 %if 0%{useccache} != 0 BuildRequires: ccache %endif @@ -114,7 +114,7 @@ BuildRequires: libproxy-devel BuildRequires: makeinfo BuildRequires: mozilla-nspr-devel >= 4.35 -BuildRequires: mozilla-nss-devel >= 3.91 +BuildRequires: mozilla-nss-devel >= 3.92 BuildRequires: nasm >= 2.14 BuildRequires: nodejs >= 12.22.12 %if 0%{?sle_version} >= 120000 && 0%{?sle_version} < 150000 @@ -124,7 +124,7 @@ BuildRequires: python39-curses BuildRequires: python39-devel %else -%if 0%{?sle_version} >= 150000 && 0%{?sle_version} <= 150500 +%if 0%{?sle_version} >= 150000 && 0%{?sle_version} <= 150600 BuildRequires: python39 BuildRequires: python39-curses BuildRequires: python39-devel @@ -373,7 +373,7 @@ export MOZ_TELEMETRY_REPORTING=1 export MACH_BUILD_PYTHON_NATIVE_PACKAGE_SOURCE=system export CFLAGS="%{optflags}" -%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150500 +%if 0%{?suse_version} < 1550 && 0%{?sle_version} <= 150600 export CC=gcc-12 export CXX=g++-12 %else ++++++ firefox-116.0.3.source.tar.xz -> firefox-117.0.source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/firefox-116.0.3.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1766/firefox-117.0.source.tar.xz differ: char 15, line 1 ++++++ l10n-116.0.3.tar.xz -> l10n-117.0.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaFirefox/l10n-116.0.3.tar.xz /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1766/l10n-117.0.tar.xz differ: char 26, line 1 ++++++ mozilla-rust-disable-future-incompat.patch ++++++ --- /var/tmp/diff_new_pack.k0EWtO/_old 2023-08-30 10:20:48.036827458 +0200 +++ /var/tmp/diff_new_pack.k0EWtO/_new 2023-08-30 10:20:48.040827601 +0200 @@ -1,9 +1,17 @@ -diff -rup a/Cargo.toml b/Cargo.toml ---- a/Cargo.toml 2023-07-04 15:15:01.089470619 +0200 -+++ b/Cargo.toml 2023-07-04 15:24:31.626226962 +0200 -@@ -188,3 +188,8 @@ uniffi_bindgen = "=0.23.0" - uniffi_build = "=0.23.0" - uniffi_macros = "=0.23.0" +# HG changeset patch +# Parent b62ddf6a31854e9e3c22a81056d233a50b4dd5c4 + +diff --git a/Cargo.toml b/Cargo.toml +--- a/Cargo.toml ++++ b/Cargo.toml +@@ -206,8 +206,13 @@ webext-storage = { git = "https://github + path = "third_party/rust/mio-0.6.23" + + [patch."https://github.com/mozilla/uniffi-rs.git";] + uniffi = "=0.24.3" + uniffi_bindgen = "=0.24.3" + uniffi_build = "=0.24.3" + uniffi_macros = "=0.24.3" weedle2 = "=4.0.0" + +# Package code v0.1.4 uses code "that will be rejected by a future version of Rust" ++++++ mozilla-silence-no-return-type.patch ++++++ ++++ 1152 lines (skipped) ++++ between /work/SRC/openSUSE:Factory/MozillaFirefox/mozilla-silence-no-return-type.patch ++++ and /work/SRC/openSUSE:Factory/.MozillaFirefox.new.1766/mozilla-silence-no-return-type.patch ++++++ tar_stamps ++++++ --- /var/tmp/diff_new_pack.k0EWtO/_old 2023-08-30 10:20:48.128830742 +0200 +++ /var/tmp/diff_new_pack.k0EWtO/_new 2023-08-30 10:20:48.132830885 +0200 @@ -1,11 +1,11 @@ PRODUCT="firefox" CHANNEL="release" -VERSION="116.0.3" +VERSION="117.0" VERSION_SUFFIX="" -PREV_VERSION="116.0.2" +PREV_VERSION="116.0.3" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/mozilla-release"; -RELEASE_TAG="183063cc6efa429f4f184aff169e1f9dad68cbfc" -RELEASE_TIMESTAMP="20230815173142" +RELEASE_TAG="27de51e74c19186044da535125895c96fc3a0f23" +RELEASE_TIMESTAMP="20230824132758"
