-
firefox (126.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 29 May 2024 05:31:51 +0900
-
firefox (126.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2024-21, also known as:
CVE-2024-4764, CVE-2024-4367, CVE-2024-4767, CVE-2024-4768,
CVE-2024-4769, CVE-2024-4770, CVE-2024-4771, CVE-2024-4772,
CVE-2024-4773, CVE-2024-4774, CVE-2024-4775, CVE-2024-4776,
CVE-2024-4777, CVE-2024-4778.
* debian/browser.install.in: Don't install now removed crashreporter
files.
* third_party/rust/bumpalo/.cargo-checksum.json,
third_party/rust/bumpalo/Cargo.toml,
third_party/rust/naga/.cargo-checksum.json,
third_party/rust/naga/Cargo.toml,
third_party/rust/wgpu-core/.cargo-checksum.json,
third_party/rust/wgpu-core/Cargo.toml,
third_party/rust/wgpu-core/src/snatch.rs,
third_party/rust/wgpu-hal/.cargo-checksum.json,
third_party/rust/wgpu-hal/Cargo.toml,
third_party/rust/wgpu-types/.cargo-checksum.json,
third_party/rust/wgpu-types/Cargo.toml: Relax minimum supported rust
version to 1.70.
-- Mike Hommey <email address hidden> Wed, 15 May 2024 06:46:24 +0900
-
firefox (125.0.3-1) unstable; urgency=medium
* New upstream release.
* debian/rules: Avoid conflicting initializations of the mozbuild state
directory.
-- Mike Hommey <email address hidden> Wed, 01 May 2024 11:43:16 +0900
-
firefox (125.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Tue, 23 Apr 2024 05:42:33 +0900
-
firefox (125.0.1-2) unstable; urgency=medium
* debian/browser.install.in, debian/rules: Install libmozav*.so on all
archs.
-- Mike Hommey <email address hidden> Thu, 18 Apr 2024 09:47:44 +0900
-
firefox (125.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2024-18, also known as:
CVE-2024-3852, CVE-2024-3853, CVE-2024-3854, CVE-2024-3855,
CVE-2024-3856, CVE-2024-3857, CVE-2024-3858, CVE-2024-3859,
CVE-2024-3860, CVE-2024-3861, CVE-2024-3862, CVE-2024-3302,
CVE-2024-3864, CVE-2024-3865.
* debian/control*: Bump nss build dependency.
* python/mozboot/mozboot/util.py,
third_party/rust/neqo-common/.cargo-checksum.json,
third_party/rust/neqo-common/Cargo.toml,
third_party/rust/neqo-crypto/.cargo-checksum.json,
third_party/rust/neqo-crypto/Cargo.toml,
third_party/rust/neqo-crypto/src/p11.rs,
third_party/rust/neqo-http3/.cargo-checksum.json,
third_party/rust/neqo-http3/Cargo.toml,
third_party/rust/neqo-qpack/.cargo-checksum.json,
third_party/rust/neqo-qpack/Cargo.toml,
third_party/rust/neqo-transport/.cargo-checksum.json,
third_party/rust/neqo-transport/Cargo.toml: Relax minimum supported
rust version to 1.70
-- Mike Hommey <email address hidden> Wed, 17 Apr 2024 09:11:02 +0900
-
firefox (124.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2024-15, also known as CVE-2024-29943, CVE-2024-29944.
-- Mike Hommey <email address hidden> Sat, 23 Mar 2024 05:17:50 +0900
-
firefox (124.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2024-12, also known as:
CVE-2024-2606, CVE-2024-2607, CVE-2024-2608, CVE-2023-5388,
CVE-2024-2609, CVE-2024-2610, CVE-2024-2611, CVE-2024-2612,
CVE-2024-2613, CVE-2024-2614, CVE-2024-2615.
* debian/control*, debian/rules: Undo workaround for bug 1052002.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 20 Mar 2024 06:13:42 +0900
-
firefox (123.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Tue, 12 Mar 2024 05:58:24 +0900
-
firefox (123.0-1) unstable; urgency=medium
* New upstream release.
- Fixes webrtc when using system libvpx. Closes: #1061495.
* Fixes for mfsa2024-05, also known as:
CVE-2024-1546, CVE-2024-1547, CVE-2024-1554, CVE-2024-1548,
CVE-2024-1549, CVE-2024-1550, CVE-2024-1551, CVE-2024-1555,
CVE-2024-1556, CVE-2024-1552, CVE-2024-1553, CVE-2024-1557.
* debian/control*: Bump nss build dependency.
* debian/rules: Disable dwz for libgkcodecs.
-- Mike Hommey <email address hidden> Wed, 21 Feb 2024 10:04:06 +0900
-
firefox (122.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/browser.install.in, debian/rules: Install vaapitest on all
architectures.
-- Mike Hommey <email address hidden> Wed, 07 Feb 2024 08:55:14 +0900
-
firefox (122.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2024-01, also known as:
CVE-2024-0741, CVE-2024-0742, CVE-2024-0744, CVE-2024-0745,
CVE-2024-0746, CVE-2024-0747, CVE-2024-0748, CVE-2024-0749,
CVE-2024-0750, CVE-2024-0751, CVE-2024-0753, CVE-2024-0754,
CVE-2024-0755.
* gfx/skia/moz.build: Adjust our patch to upstream changes.
-- Mike Hommey <email address hidden> Wed, 24 Jan 2024 06:11:22 +0900
-
firefox (121.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Thu, 11 Jan 2024 06:03:46 +0900
-
firefox (121.0-2) unstable; urgency=medium
* debian/rules:
- Don't capitalize MOZ_APP_REMOTING_NAME. Closes: #1059162.
- Parallelize l10n build.
* third_party/xsimd/include/xsimd/config/xsimd_config.hpp: Backport xsimd
unsupported architectures patch. bz#1868933. Fixes FTBFS on i386 and
armhf.
-- Mike Hommey <email address hidden> Fri, 22 Dec 2023 11:04:30 +0900
-
firefox (121.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-56, also known as:
CVE-2023-6856, CVE-2023-6865, CVE-2023-6857, CVE-2023-6858,
CVE-2023-6859, CVE-2023-6866, CVE-2023-6860, CVE-2023-6867,
CVE-2023-6861, CVE-2023-6869, CVE-2023-6870, CVE-2023-6871,
CVE-2023-6872, CVE-2023-6863, CVE-2023-6864, CVE-2023-6873.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 20 Dec 2023 05:38:51 +0900
-
firefox (120.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Fri, 01 Dec 2023 05:06:06 +0900
-
firefox (120.0-2) unstable; urgency=medium
* memory/build/PHC.cpp: Check if PHC is initialised on all entrypoints.
bz#1866025. Closes: #1056550.
-- Mike Hommey <email address hidden> Fri, 24 Nov 2023 05:59:53 +0900
-
firefox (120.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-49, also known as:
CVE-2023-6204, CVE-2023-6205, CVE-2023-6206, CVE-2023-6207,
CVE-2023-6208, CVE-2023-6209, CVE-2023-6210, CVE-2023-6211,
CVE-2023-6212, CVE-2023-6213.
* debian/control*: Bump rustc build dependency.
-- Mike Hommey <email address hidden> Wed, 22 Nov 2023 09:04:26 +0900
-
firefox (119.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Thu, 16 Nov 2023 06:33:57 +0900
-
firefox (119.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-45, also known as:
CVE-2023-5721, CVE-2023-5722, CVE-2023-5723, CVE-2023-5724,
CVE-2023-5725, CVE-2023-5728, CVE-2023-5729, CVE-2023-5730,
CVE-2023-5731.
* debian/control*:
- Bump nss and cbindgen build dependencies.
- Add Santali language pack.
* debian/browser.install.in: Remove plugin-container.
-- Mike Hommey <email address hidden> Wed, 25 Oct 2023 06:31:58 +0900
-
firefox (118.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 11 Oct 2023 06:33:19 +0900
-
firefox (118.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-41, also known as:
CVE-2023-5169, CVE-2023-5170, CVE-2023-5171, CVE-2023-5172,
CVE-2023-5173, CVE-2023-5175, CVE-2023-5176.
* debian/rules: Avoid race condition on virtualenv creation.
* debian/control*, debian/rules: Work around bug 1052002 by force-using
clang-14.
* debian/control*: Bump nss build dependency.
* debian/browser.install.in: Install libgkcodecs.so.
-- Mike Hommey <email address hidden> Wed, 27 Sep 2023 05:43:46 +0900
-
firefox (117.0.1-1) unstable; urgency=medium
* New upstream release.
* Fix for mfsa2023-40, also known as CVE-2023-4863.
* debian/upstream.mk, debian/repack.py: Get l10n sources from zip archives.
Thanks David Turner for the initial implementation.
-- Mike Hommey <email address hidden> Wed, 13 Sep 2023 06:36:30 +0900
-
firefox (117.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-34, also known as:
CVE-2023-4573, CVE-2023-4574, CVE-2023-4575, CVE-2023-4577,
CVE-2023-4578, CVE-2023-4579, CVE-2023-4580, CVE-2023-4581,
CVE-2023-4583, CVE-2023-4584, CVE-2023-4585.
-- Mike Hommey <email address hidden> Wed, 30 Aug 2023 06:13:08 +0900
-
firefox (116.0-2) unstable; urgency=medium
* debian/rules, debian/browser.install.in: Install vaapitest and v4l2test
appropriately vaapitest is now shipped on less platforms, and v4l2test
was added on a more limited set.
-- Mike Hommey <email address hidden> Thu, 03 Aug 2023 08:39:52 +0900
-
firefox (116.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-29, also known as:
CVE-2023-4045, CVE-2023-4046, CVE-2023-4047, CVE-2023-4048,
CVE-2023-4049, CVE-2023-4050, CVE-2023-4051, CVE-2023-4053,
CVE-2023-4055, CVE-2023-4056, CVE-2023-4057, CVE-2023-4058.
* debian/control*: Bump nss and rustc build dependencies.
* debian/rules: Work around
https://sourceware.org/bugzilla/show_bug.cgi?id=30566.
* security/nss/lib/freebl/unix_rand.c,
security/nss/cmd/shlibsign/shlibsign.c: Unapply changes for Hurd, as
there is no rustc there.
* Cargo.lock, python/mozboot/mozboot/util.py,
servo/components/selectors/context.rs,
servo/components/selectors/parser.rs,
servo/components/style/gecko/selector_parser.rs,
servo/components/style/properties/gecko.mako.rs,
servo/components/style/style_resolver.rs,
servo/components/style/stylesheets/container_rule.rs,
servo/components/style/stylist.rs,
third_party/rust/cstr/.cargo-checksum.json,
third_party/rust/cstr/Cargo.toml,
third_party/rust/cstr/README.md,
third_party/rust/cstr/src/lib.rs: Undo changes to rupport rust version
1.63. It's getting harder to pretend 1.66 is not required for real now.
* build/moz.configure/rust.configure: Relax cargo version requirement.
-- Mike Hommey <email address hidden> Wed, 02 Aug 2023 08:49:23 +0900
-
firefox (115.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-26, also known as CVE-2023-3600.
* debian/control*, debian/compat: Bump debhelper compat level to 12.
* debian/rules:
- Stop compressing debug info at link time.
- Use dh_missing.
- Disable dwz for libxul.
- Disable debug symbols on riscv64, because linking takes so long that
buildds kill the build after 420 minutes of "inactivity".
- Remove libgtk2 exclusion in dh_shlibdeps call. The dependency is long
gone.
- Stop cleaning up configure. It is unnecessary nowadays.
- Rely on dh_update_autotools_config instead of manual grunt work.
- Stop overriding dh_clean.
* debian/browser.mozconfig.in, debian/control.in, debian/rules,
debian/upstream.mk: Remove support for stretch.
* debian/symbols.apt.conf, debian/symbols.mk, debian/symbols.sources.list:
Remove symbol dumping scripts. They haven't been used to upload symbols
for a long time, and Mozilla now pulls the symbols rather than us
uploading them.
* build/unix/elfhack/elf.cpp, build/unix/elfhack/elfhack.cpp,
build/unix/elfhack/elfxx.h: More properly handle files > 4GB in elfhack.
bz#1840931.
* media/libaom/moz.build: After all, we did need that patch. bz#1842933.
-- Mike Hommey <email address hidden> Wed, 12 Jul 2023 09:16:06 +0900
-
firefox (115.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/patches: Consolidate patches in two categories instead of four.
Also remove some unuseful patches:
+ xpcom/reflect/xptcall/md/unix/moz.build,
xpcom/reflect/xptcall/src/md/unix/xptcinvoke_linux_sh.cpp,
xpcom/reflect/xptcall/src/md/unix/xptcstubs_linux_sh.cpp: Remove xptcall
support for SH4. We don't have rustc on SH4 anyways.
+ media/libaom/moz.build: libaom neon flags are better set as of bz#1791482
and shouldn't require a patch.
* gfx/skia/moz.build: Work around GCC ICE on ppc64el.
-- Mike Hommey <email address hidden> Tue, 11 Jul 2023 06:39:31 +0900
-
firefox (115.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-22, also known as:
CVE-2023-3482, CVE-2023-37201, CVE-2023-37202, CVE-2023-37203,
CVE-2023-37204, CVE-2023-37205, CVE-2023-37206, CVE-2023-37207,
CVE-2023-37208, CVE-2023-37209, CVE-2023-37210, CVE-2023-37211,
CVE-2023-37212.
* debian/rules, media/ffvpx/config_unix64.h: Work around
https://sourceware.org/bugzilla/show_bug.cgi?id=30578. Closes: #1040328.
* gfx/skia/moz.build: Undefine the mips builtin macro on mips in skia.
bz#1841197.
-- Mike Hommey <email address hidden> Wed, 05 Jul 2023 06:46:25 +0900
-
firefox (114.0.2-1) unstable; urgency=medium
* New upstream release.
* debian/upstream.mk: Unstable is trixie.
* debian/rules: Use in-tree NSS on bookworm.
-- Mike Hommey <email address hidden> Thu, 22 Jun 2023 13:54:23 +0900
-
firefox (114.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-20, also known as:
CVE-2023-34414, CVE-2023-34415, CVE-2023-34416, CVE-2023-34417.
* debian/browser.install.in: Install gfxtest and vaapitest.
-- Mike Hommey <email address hidden> Wed, 07 Jun 2023 05:52:21 +0900
-
firefox (113.0.2-1) unstable; urgency=medium
* New upstream release.
* dom/base/nsTextFragment.cpp, dom/base/nsTextFragmentGeneric.h,
dom/base/nsTextFragmentGenericFwd.h: Isolate SSE2 requirements to
SSE-compiled file. bz#1827566.
-- Mike Hommey <email address hidden> Sat, 27 May 2023 05:00:29 +0900
-
firefox (113.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-16, also known as:
CVE-2023-32205, CVE-2023-32206, CVE-2023-32207, CVE-2023-32208,
CVE-2023-32209, CVE-2023-32210, CVE-2023-32211, CVE-2023-32212,
CVE-2023-32213, CVE-2023-32215, CVE-2023-32216.
* debian/control, debian/l10n/browser-l10n.control: Refresh locales.
-- Mike Hommey <email address hidden> Wed, 10 May 2023 06:47:20 +0900
-
firefox (112.0.1-1) unstable; urgency=medium
* New upstream release.
* gfx/thebes/gfxFont.cpp, gfx/thebes/gfxFontEntry.cpp: Don't attempt
to use font extents if we didn't get a valid 'head' table, or if
it's not an sfnt resource. bz#1827950. Closes: #1034363.
-- Mike Hommey <email address hidden> Thu, 20 Apr 2023 06:12:33 +0900
-
firefox (112.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-13, also known as:
CVE-2023-29533, CVE-2023-29535, CVE-2023-29536, CVE-2023-29537,
CVE-2023-29538, CVE-2023-29539, CVE-2023-29540, CVE-2023-29541,
CVE-2023-29543, CVE-2023-29544, CVE-2023-29547, CVE-2023-29548,
CVE-2023-29549, CVE-2023-29550, CVE-2023-29551.
* debian/control*: Bump nss build dependency.
* debian/control: Add libavcodec60 recommendation.
* security/manager/ssl/builtins/build.rs,
security/manager/ssl/builtins/src/certdata.rs: Revert upstream change to
preserve compatibility with rustc 1.63.
-- Mike Hommey <email address hidden> Wed, 12 Apr 2023 09:53:55 +0900
-
firefox (111.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Sat, 25 Mar 2023 05:21:58 +0900
-
firefox (111.0-3) unstable; urgency=medium
* dom/media/webaudio/AudioNodeEngine*: Forward declare arch-specific xsimd
specialization. bz#1822901.
-- Mike Hommey <email address hidden> Tue, 21 Mar 2023 09:28:00 +0900
-
firefox (111.0-2) unstable; urgency=medium
* gfx/skia/generate_mozbuild.py, gfx/skia/moz.build: Remove explicit NEON
flags from skia build. Thanks Emanuele Rocca.
* dom/media/webaudio/AudioNodeEngineGeneric.h: Use fully specified xsimd::batch
type. bz#1821363.
* third_party/libwebrtc/moz.build: Add now removed desktop_capture_generic_gn
directory.
-- Mike Hommey <email address hidden> Tue, 21 Mar 2023 06:18:07 +0900
-
firefox (111.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-09, also known as:
CVE-2023-25750, CVE-2023-25751, CVE-2023-28160, CVE-2023-28164,
CVE-2023-28161, CVE-2023-28162, CVE-2023-25752, CVE-2023-28176,
CVE-2023-28177.
* debian/control*: Bump nss build dependency.
* debian/control, debian/l10n/browser-l10n.control: Refresh locales.
* debian/browser.mozconfig.in: Disable wasm sandboxing on s390x for now.
It doesn't work at the moment.
-- Mike Hommey <email address hidden> Wed, 15 Mar 2023 07:56:18 +0900
-
firefox (110.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/control*: Build depend on the rustc version we have in unstable.
Closes: #1031357.
* Cargo.lock, python/mozboot/mozboot/util.py,
servo/components/selectors/context.rs,
servo/components/selectors/parser.rs,
servo/components/style/gecko/selector_parser.rs,
servo/components/style/properties/gecko.mako.rs,
servo/components/style/style_resolver.rs,
servo/components/style/stylesheets/container_rule.rs,
servo/components/style/stylist.rs,
third_party/rust/cstr/.cargo-checksum.json,
third_party/rust/cstr/Cargo.toml,
third_party/rust/cstr/README.md,
third_party/rust/cstr/src/lib.rs: Relax minimum supported rust version
to 1.63.
* js/src/irregexp/moz.build: Suppress false positive error for GCC.
bz#1810584.
-- Mike Hommey <email address hidden> Wed, 01 Mar 2023 08:35:30 +0900
-
firefox (110.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-05, also known as:
CVE-2023-25728, CVE-2023-25730, CVE-2023-0767, CVE-2023-25735,
CVE-2023-25737, CVE-2023-25739, CVE-2023-25729, CVE-2023-25732,
CVE-2023-25731, CVE-2023-25733, CVE-2023-25736, CVE-2023-25741,
CVE-2023-25742, CVE-2023-25744, CVE-2023-25745.
* debian/control*: Bump nss, rustc and cargo build dependencies.
* third_party/wasm2c/src/common.h,
third_party/wasm2c/src/prebuilt/wasm2c.include.c,
third_party/wasm2c/src/wasm2c.c.tmpl: Use compiler macros to detect big
endian.
-- Mike Hommey <email address hidden> Wed, 15 Feb 2023 09:14:45 +0900
-
firefox (109.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2023-01, also known as:
CVE-2022-23597, CVE-2023-23598, CVE-2023-23601, CVE-2023-23602,
CVE-2023-23603, CVE-2023-23604, CVE-2023-23605, CVE-2023-23606.
* debian/control*:
- Bump nss build dependency.
- Bump cargo dependency back to what it's supposed to be.
* debian/browser.mozconfig.in, debian/control*: Enable wasm sandboxing
on bookworm.
* build/moz.configure/compilers-util.configure,
toolkit/moz.configure: Add more configure checks for the wasm toolchain
setup. bz#1747145.
toolkit/moz.configure: Allow to build without a wasi sysroot. bz#1810627
* build/moz.configure/rust.configure: Revert the relaxing of the cargo
dependency now that we have the right version in unstable.
-- Mike Hommey <email address hidden> Wed, 18 Jan 2023 06:27:19 +0900
-
firefox (108.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Tue, 10 Jan 2023 08:00:05 +0900
-
firefox (108.0-2) unstable; urgency=medium
* security/manager/ssl/tests/unit/tlsserver/cmd/moz.build,
security/manager/ssl/tests/unit/tlsserver/lib/moz.build,
security/moz.build: Pseudo-revert bz#1754746 and bz#1799121.
Closes: #1026072.
* .cargo/config.in, Cargo.lock, Cargo.toml, third_party/rust/uniffi*,
third_party/rust/weedle2*: Make uniffi-bindgen more deterministic
across platforms.
-- Mike Hommey <email address hidden> Thu, 15 Dec 2022 17:42:19 +0900
-
firefox (108.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-51, also known as:
CVE-2022-46871, CVE-2022-46872, CVE-2022-46873, CVE-2022-46874,
CVE-2022-46877, CVE-2022-46878, CVE-2022-46879.
* debian/control*: Bump rustc and nss build dependencies.
-- Mike Hommey <email address hidden> Wed, 14 Dec 2022 07:56:15 +0900
-
firefox (107.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Sat, 03 Dec 2022 05:49:43 +0900
-
firefox (107.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-47, also known as:
CVE-2022-45403, CVE-2022-45404, CVE-2022-45405, CVE-2022-45406,
CVE-2022-45407, CVE-2022-45408, CVE-2022-45409, CVE-2022-45410,
CVE-2022-45411, CVE-2022-45412, CVE-2022-40674, CVE-2022-45415,
CVE-2022-45416, CVE-2022-45417, CVE-2022-45418, CVE-2022-45419,
CVE-2022-45420, CVE-2022-45421.
* debian/rules:
- Use internal libevent on buster.
- Invoke python with PYTHONDONTWRITEBYTECODE instead of -B.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 16 Nov 2022 08:10:27 +0900
-
firefox (106.0.5-1) unstable; urgency=medium
* New upstream release.
* media/ffvpx/config_unix_aarch64.h: Don't build libav with sysctl on
Unix AArch64. bz#1791275.
-- Mike Hommey <email address hidden> Mon, 07 Nov 2022 06:06:42 +0900
-
firefox (106.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-44, also known as:
CVE-2022-42927, CVE-2022-42928, CVE-2022-42929, CVE-2022-42930,
CVE-2022-42931, CVE-2022-42932.
* debian/control*: Bump nss and libvpx build dependencies.
* debian/rules: Build with vendored libvpx on bullseye.
* mozglue/misc/SIMD.cpp, mozglue/misc/SIMD_avx2.cpp: Restrict SIMD_avx2 to
AMD64. bz#1792158.
* modules/fdlibm/src/math_private.h: Do not define unused float_t type in
fdlibm. bz#1789560.
* js/src/jit/GenerateAtomicOperations.py: Add missing includes to
AtomicOperationsGenerated.h. bz#1792159.
* third_party/libwebrtc/build/config/compiler/BUILD.gn,
third_party/libwebrtc/**/moz.build: Fix webrtc FTBFS from missing sse2
flags. bz#1795993.
-- Mike Hommey <email address hidden> Wed, 19 Oct 2022 05:59:30 +0900
-
firefox (105.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 28 Sep 2022 07:40:44 +0900
-
firefox (105.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-40, also known as:
CVE-2022-40959, CVE-2022-40960, CVE-2022-40958, CVE-2022-40956,
CVE-2022-40957, CVE-2022-40962.
* debian/control*: Bump rustc and nss build dependencies.
* python/mozbuild/mozbuild/nodeutil.py: Relax nodejs minimum version.
-- Mike Hommey <email address hidden> Wed, 21 Sep 2022 07:22:10 +0900
-
firefox (104.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Tue, 13 Sep 2022 09:08:49 +0900
-
firefox (104.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-33, also known as:
CVE-2022-38472, CVE-2022-38473, CVE-2022-38475, CVE-2022-38477,
CVE-2022-38478.
* debian/rules, debian/control: Fix libavcodec recommends. Closes: #1017782.
* debian/control*: Bump nss and nodejs build dependencies.
-- Mike Hommey <email address hidden> Wed, 24 Aug 2022 07:17:28 +0900
-
firefox (103.0.2-2) unstable; urgency=medium
* debian/rules: Remove old and now unnecessary workarounds.
* intl/icu/source/common/unicode/std_string.h,
intl/icu/source/common/utypeinfo.h,
intl/icu/source/io/unicode/ustream.h: Remove workaround for old libstdc++
problem, which now causes problems with GCC 12 on arm.
* third_party/libwebrtc/moz.build: Add missing webrtc directory for ppc64el
(bz#1775202).
-- Mike Hommey <email address hidden> Mon, 15 Aug 2022 15:46:49 +0900
-
firefox (103.0.2-1) unstable; urgency=medium
* New upstream release.
* debian/rules:
- Use thinLTO for rust on armhf, to stay in the memory budget with an
armhf toolchain.
- Use MACH_BUILD_PYTHON_NATIVE_PACKAGE_SOURCE=none instead of
MACH_USE_SYSTEM_PYTHON=1.
* debian/rules, debian/watch, debian/watch.in: Generate debian/watch and
fix it.
* js/src/jit/mips-shared/CodeGenerator-mips-shared.cpp,
js/src/jit/mips-shared/SharedICHelpers-mips-shared-inl.h,
js/src/jit/mips-shared/SharedICHelpers-mips-shared.h,
js/src/jit/mips64/Assembler-mips64.h,
js/src/jit/mips64/MacroAssembler-mips64.cpp,
js/src/jit/mips64/Simulator-mips64.cpp,
js/src/jit/mips64/Trampoline-mips64.cpp,
js/src/jit/shared/Lowering-shared-inl.h,
js/src/wasm/WasmFrameIter.cpp: Fix FTBFS on mips64. bz#1776825.
* third_party/libwebrtc/moz.build: Work around bz#1775202 to fix FTBFS on
ppc64el.
* config/makefiles/rust.mk: Allow to override rust LTO flag.
-- Mike Hommey <email address hidden> Sun, 14 Aug 2022 15:28:01 +0900
-
firefox (103.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-28, also known as:
CVE-2022-36319, CVE-2022-36318, CVE-2022-36315, CVE-2022-36316,
CVE-2022-36320, CVE-2022-2505.
* debian/control*: Bump cbindgen and nss build dependencies.
-- Mike Hommey <email address hidden> Wed, 27 Jul 2022 10:07:35 +0900
-
firefox (102.0.1-3) unstable; urgency=medium
* debian/rules: Fix the logic of the aarch64 test.
-- Mike Hommey <email address hidden> Thu, 14 Jul 2022 11:31:47 +0900
-
firefox (102.0.1-2) unstable; urgency=medium
* debian/rules: Tentatively improve detection of known failing cases on
armhf.
-- Mike Hommey <email address hidden> Thu, 14 Jul 2022 09:32:47 +0900
-
firefox (102.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/rules: Tentatively improve detection of known failing cases on
armhf and mipsel.
-- Mike Hommey <email address hidden> Thu, 14 Jul 2022 06:17:52 +0900
-
firefox (102.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-24, also known as:
CVE-2022-34479, CVE-2022-34470, CVE-2022-34468, CVE-2022-34482,
CVE-2022-34483, CVE-2022-34476, CVE-2022-34481, CVE-2022-34474,
CVE-2022-34471, CVE-2022-34472, CVE-2022-2200, CVE-2022-34480,
CVE-2022-34477, CVE-2022-34475, CVE-2022-34473, CVE-2022-34484,
CVE-2022-34485.
* build/moz.configure/bindgen.configure,
gfx/webrender_bindings/webrender_ffi.h: Work around build failure with
newer cbindgen. bz#1773259
-- Mike Hommey <email address hidden> Wed, 29 Jun 2022 07:41:32 +0900
-
firefox (101.0.1-1) unstable; urgency=medium
* New upstream release.
* build/moz.configure/rust.configure, debian/control*: Allow to build with
cargo in unstable.
-- Mike Hommey <email address hidden> Fri, 10 Jun 2022 06:24:01 +0900
-
firefox (101.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-20, also known as:
CVE-2022-31736, CVE-2022-31737, CVE-2022-31738, CVE-2022-31740,
CVE-2022-31741, CVE-2022-31742, CVE-2022-31743, CVE-2022-31744,
CVE-2022-31745, CVE-2022-1919, CVE-2022-31747, CVE-2022-31748.
* debian/rules: Fail the build early when building for armhf on armhf
(only works on arm64), and when building for mipsel on mipsel.
* debian/control*: Bump rustc, cargo, cbindgen and nss build dependencies.
-- Mike Hommey <email address hidden> Wed, 01 Jun 2022 06:07:37 +0900
-
firefox (100.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-19, also known as CVE-2022-1802 and CVE-2022-1529.
-- Mike Hommey <email address hidden> Sat, 21 May 2022 07:32:04 +0900
-
firefox (100.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-16, also known as:
CVE-2022-29914, CVE-2022-29909, CVE-2022-29916, CVE-2022-29911,
CVE-2022-29912, CVE-2022-29915, CVE-2022-29917, CVE-2022-29918.
-- Mike Hommey <email address hidden> Wed, 04 May 2022 08:48:41 +0900
-
firefox (99.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-13, also known as:
CVE-2022-1097, CVE-2022-28281, CVE-2022-28282, CVE-2022-28283,
CVE-2022-28284, CVE-2022-28285, CVE-2022-28286, CVE-2022-28287,
CVE-2022-24713, CVE-2022-28289, CVE-2022-28288.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 06 Apr 2022 09:04:22 +0900
-
firefox (98.0-2) unstable; urgency=medium
* debian/rules: Install crash reporter files on arm64.
* js/src/jit/GenerateAtomicOperations.py: Work around a GCC issue with
generated atomics. bz#1756347.
-- Mike Hommey <email address hidden> Thu, 10 Mar 2022 09:09:43 +0900
-
firefox (98.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-10, also known as:
CVE-2022-26383, CVE-2022-26384, CVE-2022-26387, CVE-2022-26381,
CVE-2022-26382, CVE-2022-26385, CVE-2022-0843.
* Fixes for mfsa2022-09, also known as: CVE-2022-26485, CVE-2022-26486.
* debian/control*:
- Bump nss build dependency.
- Downgrade rust dependency to 1.56, and cargo to 0.57.
* Cargo.lock, config/makefiles/rust.mk, python/mozboot/mozboot/util.py,
servo/components/style/Cargo.toml, servo/components/style/build.rs,
servo/components/style/lib.rs,
servo/components/style/stylesheets/page_rule.rs,
servo/components/style/stylist.rs,
third_party/rust/audioipc2-client/.cargo-checksum.json,
third_party/rust/audioipc2-client/Cargo.toml,
third_party/rust/audioipc2-client/build.rs,
third_party/rust/audioipc2-client/src/lib.rs,
third_party/rust/wgpu-hal/.cargo-checksum.json,
third_party/rust/wgpu-hal/src/gles/egl.rs: Relax minimum supported Rust
version to 1.56.0.
-- Mike Hommey <email address hidden> Wed, 09 Mar 2022 07:09:27 +0900
-
firefox (97.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-04, also known as:
CVE-2022-22754, CVE-2022-22755, CVE-2022-22756, CVE-2022-22759,
CVE-2022-22760, CVE-2022-22761, CVE-2022-22764, CVE-2022-0511.
* debian/control*: Bump nss, rustc and cargo build dependencies.
* debian/browser.install.in: Install libipcclientcerts.so.
-- Mike Hommey <email address hidden> Wed, 09 Feb 2022 07:53:42 +0900
-
firefox (96.0.3-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Mon, 31 Jan 2022 06:21:31 +0900
-
firefox (96.0.1-1) unstable; urgency=medium
* New upstream release.
* modules/libpref/init/StaticPrefList.yaml: Disable cookie sameSite
schemeful. bz#1750264.
* dom/media/webrtc/third_party_build/gn-configs/x64_*_arm_linux.json,
dom/media/webrtc/third_party_build/gn-configs/x64_*_ppc64_linux.json,
third_party/libwebrtc/**/moz.build: Add webrtc configs for arm and
ppc64 linux. bz#1738845.
-- Mike Hommey <email address hidden> Sat, 15 Jan 2022 07:41:14 +0900
-
firefox (96.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2022-01, also known as:
CVE-2022-22743, CVE-2022-22742, CVE-2022-22741, CVE-2022-22740,
CVE-2022-22738, CVE-2022-22737, CVE-2021-4140, CVE-2022-22748,
CVE-2022-22745, CVE-2022-22747, CVE-2022-22739, CVE-2022-22751,
CVE-2022-22752.
* debian/rules:
- Adjust preprocessor command to upstream changes.
- Set an objdir when using the preprocessor, and clean that up.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 12 Jan 2022 08:03:30 +0900
-
firefox (95.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/control.in: Build against rustc-mozilla/cargo-mozilla on relevant
older releases.
* modules/fdlibm/src/math_private.h: Fix FTBFS on i386. bz#1729459.
-- Mike Hommey <email address hidden> Fri, 17 Dec 2021 07:05:23 +0900
-
firefox (95.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-52, also known as:
CVE-2021-43536, CVE-2021-43537, CVE-2021-43538, CVE-2021-43539,
CVE-2021-43540, CVE-2021-43541, CVE-2021-43542, CVE-2021-43543,
CVE-2021-43544, CVE-2021-43545, CVE-2021-43546, MOZ-2021-0009.
* debian/browser.mozconfig.in: Explicitly disable wasm sandboxing. We don't
have the necessary tools yet.
-- Mike Hommey <email address hidden> Wed, 08 Dec 2021 06:38:07 +0900
-
firefox (94.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 24 Nov 2021 06:57:55 +0900
-
firefox (94.0-2) unstable; urgency=medium
* debian/firefox.in: Use `command -v` instead of `which`. Does not affect
this package, though.
* .cargo/config.in, Cargo.lock, Cargo.toml,
third_party/rust/cc/.cargo-checksum.json,
third_party/rust/cc/Cargo.toml, third_party/rust/cc/src/lib.rs,
third_party/rust/cc/src/windows_registry.rs: Update cc crate to
b2f6b146b75299c444e05bbde50d03705c7c4b6e, aka 1.0.71 + GCC-11 fix for
armhf. bz#1739040.
* .cargo/config.in, Cargo.lock,
third_party/rust/cubeb-pulse/.cargo-checksum.json,
third_party/rust/cubeb-pulse/src/backend/stream.rs,
toolkit/library/rust/shared/Cargo.toml: Upgrade cubeb-pulse to fix a race
condition that can lead to shutdown deadlock. bz#1735905.
(suspected to) Closes: #998108.
-- Mike Hommey <email address hidden> Thu, 11 Nov 2021 16:32:50 +0900
-
firefox (94.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-48, also known as:
CVE-2021-38503, CVE-2021-38504, CVE-2021-38506, CVE-2021-38507,
CVE-2021-38508, MOZ-2021-0004, CVE-2021-38509, MOZ-2021-0005,
MOZ-2021-0006, MOZ-2021-0007.
(MOZ-* pending CVE assignment)
* debian/control*: Bump nss, rustc and cargo build dependencies.
* Cargo.toml, Cargo.lock, third_party/rust/naga/.cargo-checksum.json,
third_party/rust/naga/Cargo.toml,
third_party/rust/wgpu-core/.cargo-checksum.json,
third_party/rust/wgpu-core/Cargo.toml, build/moz.configure/rust.configure:
Remove workaround to build with an old cargo, now that Debian has a recent
version.
-- Mike Hommey <email address hidden> Wed, 03 Nov 2021 08:20:50 +0900
-
firefox (93.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-43, also known as:
CVE-2021-38496, CVE-2021-38497, CVE-2021-38498, CVE-2021-32810,
CVE-2021-38500, CVE-2021-38501, CVE-2021-38499.
* debian/control*: Bump nss build dependency.
* debian/rules: Set MOZBUILD_STATE_PATH.
* Cargo.toml, Cargo.lock, third_party/rust/naga/.cargo-checksum.json,
third_party/rust/naga/Cargo.toml,
third_party/rust/wgpu-core/.cargo-checksum.json,
third_party/rust/wgpu-core/Cargo.toml: Work around the lack of resolver
feature in unstable's cargo.
-- Mike Hommey <email address hidden> Wed, 06 Oct 2021 06:53:13 +0900
-
firefox (92.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-38, also known as:
CVE-2021-38491, CVE-2021-38493, CVE-2021-38494.
* debian/rules: Build against embedded nspr and nss on bullseye.
* debian/upstream.mk: Add bookworm and trixie.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 08 Sep 2021 07:57:38 +0900
-
firefox (91.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-37, also known as CVE-2021-29991.
* debian/import-tar.py, debian/repack.py: Fixed for python 3.9.
-- Mike Hommey <email address hidden> Wed, 18 Aug 2021 10:28:35 +0900
-
firefox (91.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-33, also known as:
CVE-2021-29986, CVE-2021-29981, CVE-2021-29988, CVE-2021-29984,
CVE-2021-29980, CVE-2021-29987, CVE-2021-29985, CVE-2021-29982,
CVE-2021-29989, CVE-2021-29990.
* debian/control*: Bump nspr, nss and rustc build dependencies.
-- Mike Hommey <email address hidden> Wed, 11 Aug 2021 07:18:22 +0900
-
firefox (90.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-28, also known as:
CVE-2021-29970, CVE-2021-29971, CVE-2021-29972, CVE-2021-29974,
CVE-2021-29975, CVE-2021-29976, CVE-2021-29977.
* debian/control*:
- Bump nss build dependency.
- Remove libgtk2 build dependency.
* debian/browser.install.in: Don't install gtk2/libmozgtk.so.
* widget/gtk/mozgtk/moz.build: Remove old workaround for bug #844357, which
was fixed in binutils a long time ago.
-- Mike Hommey <email address hidden> Wed, 14 Jul 2021 06:07:27 +0900
-
firefox (89.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Thu, 24 Jun 2021 07:57:24 +0900
-
firefox (89.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Fri, 18 Jun 2021 06:03:11 +0900
-
firefox (89.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-23, also known as:
CVE-2021-29960, CVE-2021-29961, CVE-2021-29959, CVE-2021-29967,
CVE-2021-29966.
* debian/control*: Bump nss and cbindgen build dependency.
-- Mike Hommey <email address hidden> Wed, 02 Jun 2021 05:36:18 +0900
-
firefox (88.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-20, also known as CVE-2021-29952.
-- Mike Hommey <email address hidden> Thu, 06 May 2021 07:01:54 +0900
-
firefox (88.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-16, also known as:
CVE-2021-23994, CVE-2021-23995, CVE-2021-23996, CVE-2021-23997,
CVE-2021-23998, CVE-2021-23999, CVE-2021-24000, CVE-2021-24001,
CVE-2021-24002, CVE-2021-29945, CVE-2021-29944, CVE-2021-29946,
CVE-2021-29947.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Tue, 20 Apr 2021 07:54:02 +0900
-
firefox (87.0-2) unstable; urgency=medium
* js/src/jit/mips-shared/CodeGenerator-mips-shared.cpp,
js/src/jit/mips-shared/MacroAssembler-mips-shared*,
js/src/jit/mips*/MacroAssembler-mips*: Add missing JIT functions.
* js/src/jit/mips64/MacroAssembler-mips64.cpp: Fix register conflict
in ma_addPtrTestOverflow. bz#1685662.
* gfx/wr/swgl/src/blend.h, gfx/wr/swgl/src/gl.cc: Don't use always_inline
on large SWGL functions. bz#1700520.
-- Mike Hommey <email address hidden> Wed, 31 Mar 2021 10:12:40 +0900
-
firefox (87.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-10, also known as:
CVE-2021-23981, CVE-2021-23982, CVE-2021-23983, CVE-2021-23984,
CVE-2021-23985, CVE-2021-23986, CVE-2021-23987, CVE-2021-23988.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 24 Mar 2021 06:06:10 +0900
-
firefox (86.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Fri, 12 Mar 2021 10:30:34 +0900
-
firefox (86.0-2) unstable; urgency=medium
* gfx/qcms/src/iccread.rs: Fix startup crash with malformed ICC profiles.
bz#1694670.
-- Mike Hommey <email address hidden> Tue, 09 Mar 2021 07:24:46 +0900
-
firefox (86.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-07, also known as:
CVE-2021-23969, CVE-2021-23970, CVE-2021-23968, CVE-2021-23974,
CVE-2021-23971, CVE-2021-23972, CVE-2021-23975, CVE-2021-23973,
CVE-2021-23978, CVE-2021-23979.
* debian/control*: Bump nss and cbindgen build dependencies.
-- Mike Hommey <email address hidden> Wed, 24 Feb 2021 06:57:42 +0900
-
firefox (85.0.1-1) unstable; urgency=medium
* New upstream release.
* build/moz.configure/rust.configure, debian/control*: Allow to build with
cargo in unstable.
-- Mike Hommey <email address hidden> Sat, 06 Feb 2021 07:54:04 +0900
-
firefox (85.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-03, also known as:
CVE-2021-23953, CVE-2021-23954, CVE-2021-23955, CVE-2021-23956,
CVE-2021-23958, CVE-2021-23960, CVE-2021-23961, CVE-2021-23962,
CVE-2021-23963, CVE-2021-23964, CVE-2021-23965.
* debian/control*: Bump rustc, cargo and nss build dependencies.
-- Mike Hommey <email address hidden> Wed, 27 Jan 2021 09:06:28 +0900
-
firefox (84.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2021-01, also known as CVE-2020-16044.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Thu, 07 Jan 2021 07:27:55 +0900
-
firefox (84.0-3) unstable; urgency=medium
* debian/browser.install.in: s/aarch64/arm64/, facepalm.
-- Mike Hommey <email address hidden> Fri, 18 Dec 2020 10:09:12 +0900
-
firefox (84.0-2) unstable; urgency=medium
* debian/browser.install.in: Install libmozsandbox.so on aarch64 and arm*.
-- Mike Hommey <email address hidden> Fri, 18 Dec 2020 05:59:54 +0900
-
firefox (84.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-54, also known as:
CVE-2020-16042, CVE-2020-26971, CVE-2020-26972, CVE-2020-26973,
CVE-2020-26974, CVE-2020-26976, CVE-2020-26978, CVE-2020-26979,
CVE-2020-35111, CVE-2020-35113, CVE-2020-35114.
* debian/control*: Bump nss build dependency.
* build/moz.configure/rust.configure, debian/control*: Revert changes from
79.0-1 allowing to build with cargo in unstable as of 2020-07-29 because
we have the right version now.
* intl/icu_sources_data.py: Revert changes from 72.0-1 to avoid building
ICU in parallel because we don't build ICU using this script anymore.
-- Mike Hommey <email address hidden> Wed, 16 Dec 2020 06:30:02 +0900
-
firefox (83.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-50, also known as:
CVE-2020-26951, CVE-2020-26952, CVE-2020-16012, CVE-2020-26953,
CVE-2020-26956, CVE-2020-26958, CVE-2020-26959, CVE-2020-26960,
CVE-2020-26961, CVE-2020-26962, CVE-2020-26963, CVE-2020-26965,
CVE-2020-26967, CVE-2020-26968, CVE-2020-26969.
* debian/control*: Bump nss and cbindgen build dependencies.
-- Mike Hommey <email address hidden> Wed, 18 Nov 2020 07:06:09 +0900
-
firefox (82.0.3-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-49, also known as CVE-2020-26950.
-- Mike Hommey <email address hidden> Tue, 10 Nov 2020 07:32:32 +0900
-
firefox (82.0.2-1) unstable; urgency=medium
* New upstream release.
* debian/control*: Remove autoconf2.13 build dependency.
* config/external/icu/data/moz.build: Use the right data file for ICU on
big endians. bz#1673769.
-- Mike Hommey <email address hidden> Fri, 30 Oct 2020 06:03:59 +0900
-
firefox (82.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-45, also known as:
CVE-2020-15969, CVE-2020-15254, CVE-2020-15680, CVE-2020-15681,
CVE-2020-15682, CVE-2020-15683, CVE-2020-15684.
[Emilio Pozuelo Monfort]
* debian/browser.bug-presubj.in, debian/control.in, debian/rules,
debian/symbols.mk, debian/upstream.mk: Remove support for jessie.
* debian/control.in, debian/rules: stretch: build with LLVM 7, 4.0 doesn't
support -std=gnu++17.
* debian/rules:
- stretch: build with GCC 7 from gcc-mozilla.
- Call python with -B when regenerating the control files, so as to not
generate bytecode files.
- Call debian/l10n/gen with C.UTF-8 as the locale, otherwise it fails
in stretch when opening the iso-codes files.
- stretch: don't set NASM on !x86.
[Mike Hommey]
* debian/control*: Bump nss build dependency.
* build/unix/elfhack/elf.cpp, build/unix/elfhack/elfxx.h: Fix elfhack
for files > 2GiB and < 4GiB. bz#1495733.
-- Mike Hommey <email address hidden> Wed, 21 Oct 2020 11:53:39 +0900
-
firefox (81.0-2) unstable; urgency=medium
* dom/media/AsyncLogger.h: Fix AsyncLogger::TracePayload's mName
size calculation. bz#1667007.
-- Mike Hommey <email address hidden> Thu, 24 Sep 2020 16:22:35 +0900
-
firefox (81.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-42, also known as:
CVE-2020-15675, CVE-2020-15677, CVE-2020-15676, CVE-2020-15678,
CVE-2020-15673, CVE-2020-15674.
* debian/control*: Bump nss build dependency.
* debian/rules: Change l10n build integration:
- it is not necessary to override LOCALE_MERGEDIR anymore
- it is not necessary to call compare-locales manually
- set MACH_USE_SYSTEM_PYTHON=1
* js/src/jit/none/MacroAssembler-none.h: Bump CodeAlignment to 8.
bz#1666646.
-- Mike Hommey <email address hidden> Wed, 23 Sep 2020 07:56:45 +0900
-
firefox (80.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Thu, 03 Sep 2020 09:36:06 +0900
-
firefox (80.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-36, also known as:
CVE-2020-15664, CVE-2020-12401, CVE-2020-6829, CVE-2020-12400,
CVE-2020-15665, CVE-2020-15666, CVE-2020-15667, CVE-2020-15668,
CVE-2020-15670.
* debian/control*: Bump nss build dependency.
-- Mike Hommey <email address hidden> Wed, 26 Aug 2020 07:24:49 +0900
-
firefox (79.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-30, also known as:
CVE-2020-15652, CVE-2020-6514, CVE-2020-15655, CVE-2020-15653,
CVE-2020-6463, CVE-2020-15656, CVE-2020-15658, CVE-2020-15654,
CVE-2020-15659.
* debian/control*: Bump cbindgen, rustc, cargo, nss and python3 build
dependencies.
* debian/rules: Add -Cembed-bitcode=yes to rust command lines when
using rustc >= 1.45.0.
* build/moz.configure/rust.configure, debian/control*: Allow to build with
cargo in unstable as of 2020-07-29.
-- Mike Hommey <email address hidden> Wed, 29 Jul 2020 13:45:30 +0900
-
firefox (78.0.2-1) unstable; urgency=medium
* New upstream release.
* Fix for mfsa2020-28.
-- Mike Hommey <email address hidden> Fri, 10 Jul 2020 09:37:04 +0900
-
firefox (78.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/rules:
- Replace --disable-ion with --disable-jit.
- Don't generated the ICU data file for big-endian manually.
* js/src/jit/mips-shared/MacroAssembler-mips-shared-inl.h,
js/src/jit/mips64/MacroAssembler-mips64-inl.h: Add branchTestSymbol
and fallibleUnboxPtr. bz#1642265.
* config/external/icu/data/*icudata*, config/external/icu/data/moz.build,
js/moz.configure: Unify the includion of the ICU data file. bz#1650299.
* config/external/icu/common/moz.build,
config/external/icu/common/sources.mozbuild,
config/external/icu/data/convert_icudata.py,
config/external/icu/data/moz.build,
config/external/icu/defs.mozbuild,
config/external/icu/i18n/moz.build,
config/external/icu/i18n/sources.mozbuild,
config/external/icu/icupkg/moz.build,
config/external/icu/icupkg/sources.mozbuild,
config/external/icu/moz.build,
config/external/icu/toolutil/moz.build,
config/external/icu/toolutil/sources.mozbuild,
config/recurse.mk,
intl/icu_sources_data.py: Automatically convert the little-endian ICU data
file for big-endian builds.
-- Mike Hommey <email address hidden> Fri, 03 Jul 2020 17:07:38 +0900
-
firefox (78.0-1) unstable; urgency=medium
* New upstream release
* Fixes for mfsa2020-24, also known as:
CVE-2020-12415, CVE-2020-12416, CVE-2020-12417, CVE-2020-12418,
CVE-2020-12419, CVE-2020-12420, CVE-2020-12421, CVE-2020-12422,
CVE-2020-12424, CVE-2020-12425, CVE-2020-12426.
* debian/control*: Bump nss build dependency.
* debian/control*, debian/rules: Remove build dependency on python2.7.
* debian/browser.mozconfig.in: Remove obsolete configure options.
* build/virtualenv_packages.txt: Don't install enum and enum34 virtualenv
packages in python3 virtualenvs. bz#1632429.
-- Mike Hommey <email address hidden> Wed, 01 Jul 2020 10:14:06 +0900
-
firefox (77.0-1) unstable; urgency=medium
* New upstream release
* Fixes for mfsa2020-20, also known as:
CVE-2020-12399, CVE-2020-12405, CVE-2020-12406, CVE-2020-12407,
CVE-2020-12408, CVE-2020-12409, CVE-2020-12410, CVE-2020-12411.
* debian/l10n/gen, debian/l10n_revs.py, debian/latest_nightly.py,
debian/rules, debian/symbols.mk: Convert to python 3.
* debian/control*: Bump nss and cbindgen build dependencies.
* debian/rules:
- Revert PKCS11 API change from 76.0.1-1 because the new API is
now explicitly used by upstream code.
- Stop passing -fno-schedule-insns2 -fno-lifetime-dse and
-fno-delete-null-pointer-checks to GCC.
-- Mike Hommey <email address hidden> Wed, 03 Jun 2020 07:53:04 +0900
-
firefox (76.0.1-2) unstable; urgency=medium
* debian/browser.mozconfig.in: Allow addon sideload. Closes: #960084.
* debian/control*: Bump nasm build dependency to 2.14.
-- Mike Hommey <email address hidden> Fri, 15 May 2020 09:10:36 +0900
-
firefox (76.0.1-1) unstable; urgency=medium
* New upstream release
* debian/rules: Force using old PKCS11 API when building against newer
NSS releases. Closes: #960012.
-- Mike Hommey <glandium@goemon> Wed, 13 May 2020 09:09:57 +0900
-
firefox (76.0-2) unstable; urgency=medium
* Cargo.lock, third_party/rust/typenum/*: Upgrade typename to 1.12.0.
bz#1635671. Fixes FTBFS on i386.
-- Mike Hommey <email address hidden> Wed, 06 May 2020 14:27:30 +0900
-
firefox (76.0-1) unstable; urgency=medium
* New upstream release
* Fixes for mfsa2020-16, also known as:
CVE-2020-12387, CVE-2020-6831, CVE-2020-12390, CVE-2020-12391,
CVE-2020-12392, CVE-2020-12394, CVE-2020-12395, CVE-2020-12396.
* debian/control*: Bump nss build dependency.
* debian/browser.install.in: Don't install blocklist.xml, it's not there
anymore.
* config/recurse.mk: Don't depend on in-tree NSS/NSPR when building against
system NSS/NSPR. bz#1634926.
-- Mike Hommey <email address hidden> Wed, 06 May 2020 05:41:56 +0900
-
firefox (75.0-2) unstable; urgency=medium
* build/moz.configure/util.configure: In configure, pass extra compiler
flags after source path. Fixes FTBFS with --with-system-libvpx with
gcc-9 >= 9-20190125-2.
-- Mike Hommey <email address hidden> Sun, 19 Apr 2020 09:03:28 +0900
-
firefox (75.0-1) unstable; urgency=medium
* New upstream release
* Fixes for mfsa2020-12, also known as:
CVE-2020-6821, CVE-2020-6822, CVE-2020-6823, CVE-2020-6824,
CVE-2020-6825, CVE-2020-6826.
* debian/control*: Bump nss, rustc, cargo, cbindgen and nodejs build
dependencies.
* debian/control*, debian/rules: Build against libvpx >= 1.8. We used
to build-conflicts with that version, but that's not necessary now
that upstream needs that version.
* debian/browser.install.in: Don't install .chk files, they aren't
produced anymore.
* python/mozbuild/mozbuild/nodeutil.py: Allow to build with older
versions of nodejs 10.
-- Mike Hommey <email address hidden> Wed, 08 Apr 2020 09:41:38 +0900
-
firefox (74.0.1-1) unstable; urgency=medium
* New upstream release
* Fixes for mfsa2020-11, also known as: CVE-2020-6819, CVE-2020-6820.
-- Mike Hommey <email address hidden> Sat, 04 Apr 2020 06:42:37 +0900
-
firefox (74.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-08, also known as:
CVE-2020-6805, CVE-2020-6806, CVE-2020-6807, CVE-2020-6808,
CVE-2020-6809, CVE-2020-6810, CVE-2020-6811, CVE-2019-20503,
CVE-2020-6812, CVE-2020-6813, CVE-2020-6814, CVE-2020-6815.
* debian/rules:
- Use the -o flag to redirect preprocessor output rather than shell
redirection to work around bz#1621465.
- Remove obj-*/.mozbuild on clean.
* debian/control*: Bump nspr, nss, sqlite and cbindgen build dependencies.
* config/mozunit/mozunit/mozunit.py,
python/mozbuild/mozbuild/action/langpack_manifest.py,
python/mozbuild/mozbuild/jar.py, python/mozbuild/mozbuild/preprocessor.py,
python/mozbuild/mozbuild/test/backend/test_build.py: Use io.open() rather
than open() in mozbuild/preprocessor.py. bz#1613263.
* dom/canvas/ClientWebGLContext.h, dom/canvas/WebGLContext.h: Fix build
errors with -Werror=format-security with GCC.
-- Mike Hommey <email address hidden> Wed, 11 Mar 2020 12:15:37 +0900
-
firefox (73.0.1-1) unstable; urgency=medium
* New upstream release.
* gfx/2d/SwizzleNEON.cpp: Fix NEON compile error with gcc and RGB unpacking.
bz#1610814.
-- Mike Hommey <email address hidden> Thu, 20 Feb 2020 09:07:58 +0900
-
firefox (73.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-05, also known as:
CVE-2020-6796, CVE-2020-6798, CVE-2020-6800, CVE-2020-6801.
* debian/control*: Bump nss, rustc, cargo and cbindgen build dependencies.
* debian/browser.install.in: Do not install now removed chrome.manifest
and libnssdbm3.* files.
-- Mike Hommey <email address hidden> Wed, 12 Feb 2020 06:57:23 +0900
-
firefox (72.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 22 Jan 2020 12:06:25 +0900
-
firefox (72.0.1-1) unstable; urgency=medium
* New upstream release.
* Fix for mfsa2020-03, also known as CVE-2019-17026.
-- Mike Hommey <email address hidden> Thu, 09 Jan 2020 06:46:44 +0900
-
firefox (72.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2020-01, also known as:
CVE-2019-17015, CVE-2019-17016, CVE-2019-17017, CVE-2019-17018,
CVE-2019-17019, CVE-2019-17020, CVE-2019-17021, CVE-2019-17022,
CVE-2019-17023, CVE-2019-17024, CVE-2019-17025.
* debian/rules:
- Don't build with --compress-debug-sections on jessie.
- Use sourcestamp.txt for MOZ_BUILD_DATE.
- Avoid running dh_update_autotools_config. We're dealing with this
manually and we don't want config.* files being touched under
third_party/rust.
* debian/control*:
- Bump nspr, nss and sqlite build dependencies.
- Add missing dependency on libdrm-dev.
* debian/browser.mozconfig.in: Explicitly build with wayland support
enabled.
* intl/icu_sources_data.py: Don't build ICU in parallel.
* gfx/skia/skia/third_party/skcms/src/Transform_inl.h: Work around older
GCC ICE on arm.
(Thanks Emilio Pozuelo Monfort)
-- Mike Hommey <email address hidden> Wed, 08 Jan 2020 08:54:04 +0900
-
firefox (71.0-2) unstable; urgency=medium
* dom/indexedDB/ActorsParent.cpp: Work around lack of support for
http://eel.is/c++draft/class.temporary#6.7 in compilers. bz#1601707
Closes: #946249, #946547.
* layout/generic/WritingModes.h, servo/ports/geckolib/cbindgen.toml:
Fix build with newer cbindgen. bz#1602358.
-- Mike Hommey <email address hidden> Thu, 12 Dec 2019 09:38:33 +0900
-
firefox (71.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-36, also known as:
CVE-2019-11756, CVE-2019-17008, CVE-2019-11745, CVE-2019-17014,
CVE-2019-17010, CVE-2019-17005, CVE-2019-17011, CVE-2019-17012,
CVE-2019-17013.
* debian/l10n/gen: Add support for ca-valencia.
* debian/control*: Bump nspr, nss, rustc and cargo build dependencies.
* debian/rules, debian/control.in:
- Build with nodejs-mozilla on jessie and stretch.
- Build with nasm-mozilla on jessie and stretch.
- Don't build with system libvpx on stretch.
(Thanks Emilio Pozuelo Monfort)
-- Mike Hommey <email address hidden> Wed, 04 Dec 2019 10:09:38 +0900
-
firefox (70.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Sat, 09 Nov 2019 07:53:49 +0900
-
firefox (70.0-1) unstable; urgency=medium
* New upstream release.
* Fix for mfsa2019-34, also known as:
CVE-2018-6156, CVE-2019-15903, CVE-2019-11757, CVE-2019-11759,
CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763,
CVE-2019-11765, CVE-2019-17000, CVE-2019-17001, CVE-2019-17002,
CVE-2019-11764.
* debian/control*: Bump nss, sqlite, rustc, cargo, and cbindgen build
dependencies.
-- Mike Hommey <email address hidden> Wed, 23 Oct 2019 07:30:42 +0900
-
firefox (69.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Tue, 08 Oct 2019 08:06:31 +0900
-
firefox (69.0.1-1) unstable; urgency=medium
* New upstream release.
* Fix for mfsa2019-31, also known as CVE-2019-11754.
* debian/control*:
- Bump nss, rustc, cargo and cbindgen build dependencies. Closes: #939412.
- Remove build dependency versions where Debian has had the right version
since Jessie.
* debian/source/lintian-overrides: Adjust DotZlib.chm path.
-- Mike Hommey <email address hidden> Tue, 24 Sep 2019 06:39:36 +0900
-
firefox (69.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-25, also known as:
CVE-2019-11746, CVE-2019-11744, CVE-2019-11742, CVE-2019-11752,
CVE-2019-9812, CVE-2019-11741, CVE-2019-11743, CVE-2019-11748,
CVE-2019-11749, CVE-2019-5849, CVE-2019-11750, CVE-2019-11737,
CVE-2019-11738, CVE-2019-11747, CVE-2019-11734, CVE-2019-11735,
CVE-2019-11740.
* debian/upstream.mk: Read source repo and revision from json when
getting upstream info. Instead of the .txt file that doesn't exist
as of 69.
* debian/control*:
- Remove unused build dependency against python-ply.
- Remove python-minimal build dependency. All supported versions
of Debian have a new enough version.
- Remove build dependency against libjsoncpp-dev.
* debian/l10n/gen, debian/latest_nightly.py, debian/rules,
debian/symbols.mk, debian/upstream.mk, debian/watch: Use explicit
python2.7 instead of python.
* debian/rules: Use `mach python --no-virtualenv` to invoke the
preprocessor.
* config/system-headers,
toolkit/crashreporter/jsoncpp/src/lib_json/moz.build,
toolkit/crashreporter/minidump-analyzer/moz.build: Revert hack to
build against libjsoncpp. It was fine when it was only used by
the crash reporter, but that's not the case anymore, and it breaks
the build. Also, the bundled version is newer than what is available
in Debian.
-- Mike Hommey <email address hidden> Wed, 04 Sep 2019 13:48:54 +0900
-
firefox (68.0.2-3) unstable; urgency=medium
* debian/control.in: Take source package name from preprocessing.
* build/moz.configure/old.configure: Avoid race condition creating
old-configure. bz#1574761.
* dom/media/systemservices/CamerasChild.cpp,
dom/media/systemservices/CamerasParent.cpp,
dom/media/systemservices/VideoEngine.cpp,
dom/media/webrtc/MediaEngineRemoteVideoSource.cpp: Don't use
__PRETTY_FUNCTION__ or __FUNCTION__ as format strings. bz#1531309.
Closes: #925680.
-- Mike Hommey <email address hidden> Sun, 18 Aug 2019 20:47:26 +0900
-
firefox (68.0.2-2) unstable; urgency=medium
* debian/rules: Fix MOZ_APP_REMOTINGNAME. Upstream build system changes
made the config.status editing trick stop working. Export the variable for
configure to pick it instead. Closes: #932256
-- Mike Hommey <email address hidden> Sun, 18 Aug 2019 08:41:43 +0900
-
firefox (68.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-24, also known as CVE-2019-11733.
* debian/control*, debian/rules: Don't build against system vpx >= 1.8.0.
It has API changes that cause FTBFS.
-- Mike Hommey <email address hidden> Thu, 15 Aug 2019 08:06:59 +0900
-
firefox (68.0.1-2) unstable; urgency=medium
* debian/rules: Work around https://github.com/rust-lang/cargo/issues/7147.
-- Mike Hommey <email address hidden> Fri, 19 Jul 2019 10:51:09 +0900
-
firefox (68.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/rules:
- Hook stamps/dh_install-l10n to override_dh_install-indep rather than
binary-indep.
- Pass make job server down through dh_auto_build.
* debian/rules, debian/dh: Wrap dh to ensure debian/rules is invoked with
parallelism.
-- Mike Hommey <email address hidden> Fri, 19 Jul 2019 07:53:19 +0900
-
firefox (68.0-3) unstable; urgency=medium
* debian/browser.README.Debian.in: Fix a reference to iceweasel in
README.Debian. Thanks Edward Betts.
* debian/rules:
- Only exclude "-g" from dpkg-buildflags output. All the other flags
that used to be excluded either already match upstream or add
reproducibility.
- Don't unexpectedly reset LDFLAGS.
- [firefox-esr] Remove iceweasel transitional packages on bullseye.
- Disable dh_strip_nondeterminism. Upstream build system already avoids
non-determinism it would strip, so there is no need for it further
modifying files.
- Avoid arch:all builds building arch:any stuff.
- Move AUTOCONF_DIRS cleanup after dh_clean.
- Add rust flags to improve reproducibility.
- Only touch or remove configure when it wasn't there to begin with.
- Call configure using its full path.
- Factor common configure arguments.
- Build langpacks with --disable-compile-environment, and pass less
configure arguments.
- Build each langpack from a separate build directory. This means time
wasted running configure more times, but all locales can now be built
in parallel.
* debian/symbols.mk, debian/symbols.apt.conf, debian/symbols.sources.list:
Miscellaneous changes to symbols download script.
* debian/make.mk: Exclude symbols.mk variables from dump output.
* debian/browser.mozconfig.in: Remove redundant --prefix=/usr.
* debian/control.in, debian/rules, debian/symbols.mk, debian/upstream.mk:
Remove packaging scripts compatibility with Wheezy.
* moz.configure: Only add confvars.sh as a dependency to config.status
when it exists. bz#1560340.
-- Mike Hommey <email address hidden> Sun, 14 Jul 2019 15:20:45 +0900
-
firefox (68.0-2) unstable; urgency=medium
* debian/rules, debian/upstream.mk: Account for next Debian release.
* debian/rules, debian/control: Build against system sqlite again.
* gfx/skia/skia/third_party/skcms/src/Transform_inl.h: Work around GCC ICE
on mips*, i386 and s390x. Closes: #931757
* python/mozbuild/mozbuild/action/langpack_manifest.py: Use build id as
langpack version for reproducibility. bz#1565504.
-- Mike Hommey <email address hidden> Fri, 12 Jul 2019 20:37:51 +0900
-
firefox (68.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-21, also known as:
CVE-2019-9811, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713,
CVE-2019-11714, CVE-2019-11715, CVE-2019-11716, CVE-2019-11717,
CVE-2019-11718, CVE-2019-11720, CVE-2019-11721, CVE-2019-11730,
CVE-2019-11723, CVE-2019-11724, CVE-2019-11725, CVE-2019-11727,
CVE-2019-11728, CVE-2019-11710, CVE-2019-11709.
* debian/control*: Bump nss, sqlite, rustc, cargo and cbindgen build
dependencies. Remove Build-Conflicts with nss 3.44-1, since we now
build-depend on a more recent version.
* debian/rules, debian/control: Don't build against system sqlite, as
Debian doesn't have the required version yet.
* [firefox-esr] debian/l10n/browser-l10n.control*, debian/l10n/gen:
Don't generate iceweasel l10n transition packages for locales that
were never offered with iceweasel.
* debian/control, debian/l10n/browser-l10n.control.in: Add transition
dependencies for Bengali l10n. There is now only one Bengali l10n
package instead of two.
* debian/rules: Disable JIT at build time on mips because it fails to build.
* build/gyp.mozbuild: Revert patch that disables libyuv assembly on
mips64. It apparently compiles, now.
-- Mike Hommey <email address hidden> Wed, 10 Jul 2019 08:22:05 +0900
-
firefox (67.0.4-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa219-19, also known as CVE-2019-11708.
-- Mike Hommey <email address hidden> Thu, 20 Jun 2019 11:05:27 -0700
-
firefox (67.0.3-2) unstable; urgency=medium
* python/mozbuild/mozbuild/action/node.py: Attempt to work around make issue
happening on arch: all buildd.
-- Mike Hommey <email address hidden> Wed, 19 Jun 2019 13:16:37 -0700
-
firefox (67.0.3-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-18, also known as CVE-2019-11707.
-- Mike Hommey <email address hidden> Tue, 18 Jun 2019 11:35:40 -0700
-
firefox (67.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 12 Jun 2019 06:01:15 +0900
-
firefox (67.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 05 Jun 2019 07:14:08 +0900
-
firefox (67.0-4) unstable; urgency=medium
* debian/rules: Work around FTBFS on mips* by disabling webrtc
Build fails because of missing configurations for mips*.
* debian/control*: Build-Conflicts with libnss3-dev 2:3.44-1.
Closes: #929846.
* js/src/jit/mips32/MacroAssembler-mips32-inl.h: Fix FTBFS on mips/mipsel.
bz#1556197.
-- Mike Hommey <email address hidden> Sun, 02 Jun 2019 13:13:13 +0900
-
firefox (67.0-3) unstable; urgency=medium
* media/webrtc/trunk/webrtc/system_wrappers/source/cpu_features.cc: Remove
WebRtc_GetCPUFeaturesARM from cpu_features.cc. It is already in
cpu_features_linux.c (and is not in cpu_features.cc in webrtc upstream).
Fixes FTBFS on armhf. bz#1523162.
-- Mike Hommey <email address hidden> Sat, 01 Jun 2019 13:44:05 +0900
-
firefox (67.0-2) unstable; urgency=medium
* debian/extra-stuff/addonsInfo.jsm:
- Avoid running -dumps-addons-info without a running Firefox counting as a
crash.
- Support addons in resource:// locations in -dump-addons-info
* js/src/wasm/WasmSignalHandlers.cpp: Include struct definitions for
user_vfp and user_vfp_exc. Fixes FTBFS on armhf. bz#1526653.
* js/src/jit/mips*/MacroAssembler-mips*-inl.h,
js/src/jit/mips*/Trampoline-mips*.cpp: Fix functions: branchTestBigInt,
negPtr, generateVMWrapper on MIPS. bz#1544631.
* toolkit/modules/sessionstore/PrivacyFilter.jsm: Update and harden form
data filtering for privacy to account for no data being passed in.
bz#1553413.
-- Mike Hommey <email address hidden> Sat, 01 Jun 2019 09:18:27 +0900
-
firefox (66.0.5-1) unstable; urgency=medium
* New upstream release.
- Additional fixes for addon signature validation.
-- Mike Hommey <email address hidden> Wed, 08 May 2019 08:07:21 +0900
-
firefox (66.0.4-1) unstable; urgency=medium
* New upstream release.
- Fixes issues with addon signature validation. Closes: #928417.
Note: this didn't affect addons installed via Debian packages.
-- Mike Hommey <email address hidden> Sun, 05 May 2019 22:52:24 +0900
-
firefox (66.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-09, also known as:
CVE-2019-9810, CVE-2019-9813.
* debian/control*: Bump nss, sqlite, rustc, cargo and cbindgen build
dependencies.
-- Mike Hommey <email address hidden> Sun, 24 Mar 2019 08:17:24 +0900
-
firefox (66.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-07, also known as:
CVE-2019-9790, CVE-2019-9791, CVE-2019-9792, CVE-2019-9793,
CVE-2019-9795, CVE-2019-9796, CVE-2019-9797, CVE-2019-9799,
CVE-2019-9802, CVE-2019-9803, CVE-2019-9805, CVE-2019-9806,
CVE-2019-9807, CVE-2019-9809, CVE-2019-9808, CVE-2019-9789,
CVE-2019-9788.
* debian/browser.mozconfig.in: Adjust to the upstream change wrt Google
API key configure options.
* debian/control*: Add nasm build dependency on amd64 and i386.
-- Mike Hommey <email address hidden> Wed, 20 Mar 2019 18:35:38 +0900
-
firefox (65.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-04, also known as:
CVE-2018-18356, CVE-2019-5795, CVE-2018-18511.
* debian/rules, debian/upstream.mk: Manually set the update channel.
Closes: #921381, #921121, #921654.
* debian/rules: Build with -mfp32 on mips and mipsel. This should fix the
FTBFS.
-- Mike Hommey <email address hidden> Thu, 14 Feb 2019 19:33:05 +0900
-
firefox (65.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2019-01, also known as:
CVE-2018-18500, CVE-2018-18503, CVE-2018-18504, CVE-2018-18505,
CVE-2018-18506, CVE-2018-18502, CVE-2018-18501.
* debian/control*: Bump nss, sqlite, rustc, cargo and cbindgen build
dependencies.
* debian/browser.install.in: Install libmozwayland.so.
-- Mike Hommey <email address hidden> Wed, 30 Jan 2019 11:04:24 +0900
-
firefox (64.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-29, also known as:
CVE-2018-12407, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493,
CVE-2018-18494, CVE-2018-18495, CVE-2018-18496, CVE-2018-18497,
CVE-2018-18498, CVE-2018-12406, CVE-2018-12405.
* debian/rules, debian/browser.install.in: Properly copy the watermark
to /usr/share/icons/hicolor/symbolic/apps.
* debian/rules: Disable debug symbols on 32-bits architectures, that
requires too much memory.
* debian/browser.mozconfig.in:
- Remove --enable-pie option, it's the default, now.
- Remove --disable-nodejs now that it's required.
* debian/control*:
- Bump rustc, cargo, cbindgen, nss and sqlite dependencies.
- Add nodejs build dependency.
* debian/browser-symbolic.svg.in: Import the watermark used for the
symbolic icon in the debian/ directory.
-- Mike Hommey <email address hidden> Wed, 12 Dec 2018 09:26:47 +0900
-
firefox (63.0.3-1) unstable; urgency=medium
* New upstream release.
* debian/control*: Build depend on unversioned clang/llvm.
Closes: #912802.
* debian/rules: Use embedded libevent in backports. Closes: #910397.
* debian/rules: Use GNU gold linker on i386 because BFD ld fails to link
libxul.so (memory exhausted).
* build/unix/elfhack/test.c: Try to ensure the bss section of the
elfhack testcase stays large enough. bz#1505608.
* memory/build/mozjemalloc.cpp: Fix run sizes for size classes >= 16KB
on systems with large pages. bz#1507035. Closes: #911898.
* media/libaom/moz.build: Use NEON_FLAGS instead of VPX_ASFLAGS for
libaom neon code.
* gfx/cairo/libpixman/src/pixman-vmx.c: Protect #include <config.h> in
pixman-vmx.c like in other pixman-*.c files
-- Mike Hommey <email address hidden> Mon, 26 Nov 2018 10:17:08 +0900
-
firefox (63.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/google.key: Use new Google API key, courtesy of Francois Marier.
-- Mike Hommey <email address hidden> Fri, 02 Nov 2018 10:50:57 +0900
-
firefox (63.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-26, also known as:
CVE-2018-12392, CVE-2018-12393, CVE-2018-12395, CVE-2018-12396,
CVE-2018-12397, CVE-2018-12398, CVE-2018-12399, CVE-2018-12401,
CVE-2018-12402, CVE-2018-12403, CVE-2018-12388, CVE-2018-12390.
* debian/control*:
- Bump nss dependency.
- Add build dependency on cbindgen.
* debian/browser.mozconfig.in: Disable nodejs until it's actually necessary.
* debian/rules: Add -Wl,--compress-debug-sections=zlib to LDFLAGS to work
around elfhack failing with unstripped binaries larger than 2GiB.
-- Mike Hommey <email address hidden> Wed, 24 Oct 2018 08:32:15 +0900
-
firefox (62.0.3-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-24, also known as:
CVE-2018-12386, CVE-2018-12387.
* debian/extra-stuff/addonsInfo.js: Fixes to work with recent versions
of Firefox. Closes: #909056.
* debian/control*, debian/browser.mozconfig.in: Build ALSA support.
Closes: #864987, #900062, #908349
-- Mike Hommey <email address hidden> Wed, 03 Oct 2018 16:21:53 +0900
-
firefox (62.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-22, also known as CVE-2018-12385.
* Ignore locale change events for the search service on shutdown.
bz#1489820. Closes: #908932.
* debian/control*:
- Remove the sqlite and nss dependencies when not building against the
system libraries.
- Enforce nss, nspr and sqlite dependencies to the same versions as
build dependencies. There are subtle non-ABI differences between
versions that Firefox might be relying on (be it features, behavior
changes/fixes, etc.) and can cause subtle problems when older
versions are used. Closes: #908225, #908520.
- Add a suggestion for pulseaudio.
* debian/rules, debian/control: Add libavcodec-extra* packages to the list
of recommends. Closes: #909130
* js/src/jit/BaselineJIT.h: Disable baseline JIT when SSE2 is not supported
at runtime. bz#1492064. Closes: #908396, #908449.
* gfx/2d/Swizzle.cpp: Use Swizzle fallback when SSE2 is not supported.
bz#1492065. Closes: #877445.
-- Mike Hommey <email address hidden> Sat, 22 Sep 2018 09:02:25 +0900
-
firefox (62.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-20, also known as:
CVE-2018-12377, CVE-2018-12378, CVE-2018-12383, CVE-2018-12375,
CVE-2018-12376.
* debian/control*:
- Bump nss and sqlite build dependencies.
- Build depend on llvm/clang 6.0 for buster. Closes: #906175.
* debian/browser.mozconfig.in, debian/control*, debian/rules: Remove
build dependency on libbz2-dev. It's not used anymore.
* debian/noinstall.in: Remove the dictionaries directory, not part
of the packaged Firefox anymore.
* debian/l10n/gen: Use iso-codes json data instead of XML when present.
Closes: #907611.
* widget/gtk/nsAppShell.cpp: Use remoting name for call to
gdk_set_program_class. Closes: #907574.
-- Mike Hommey <email address hidden> Thu, 06 Sep 2018 07:42:45 +0900
-
firefox (61.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Thu, 19 Jul 2018 06:54:40 +0900
-
firefox (61.0-2) unstable; urgency=medium
* debian/browser.mozconfig.in, debian/control*, debian/rules: Remove
build dependency on system libhunspell. Using system hunspell lacks
features required by Firefox. Next version of Firefox doesn't allow
to build against system hunspell anyways. Closes: #900469.
* debian/browser.links.in, debian/rules, debian/vendor.js: Use the
spellchecker.dictionary_path pref to set the hunspell directory.
* debian/browser.mozconfig.in: Allow unsigned addons in app and system
scopes.
* debian/rules: Work around the effect the above has on the
--{enable,with}-system-* check.
* debian/control*: Remove old conflicts. Thanks Sylvestre Ledru.
Closes: #882956.
* debian/l10n/recommends, debian/l10n/browser-l10n.control,
debian/control: Update dictionary recommendations, following these rules:
- Transitional myspell packages are not listed except when stable
doesn't have the corresponding hunspell package.
- Both hunspell and myspell packages are listed if they are different.
Closes: #813832, #825843
* debian/copyright, debian/rules: Refer to /usr/share/common-licenses/MPL*
instead of installing our own copy. Closes: #704303.
* debian/make.mk: Use the same code as dump target for the dump-% target.
* debian/control*, debian/rules: Add Recommends on all supported libavcodec
libraries for h264 playback. Closes: #901600.
* toolkit/modules/AppConstants.jsm, toolkit/modules/moz.build,
toolkit/moz.configure, toolkit/mozapps/extensions/internal/XPIInstall.jsm,
toolkit/mozapps/extensions/content/extensions.js,
toolkit/mozapps/extensions/internal/XPIDatabase.jsm: Change how addon
signature requirement relaxation is done. Closes: #899390.
-- Mike Hommey <email address hidden> Sun, 08 Jul 2018 10:39:03 +0900
-
firefox (61.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-15, also known as:
CVE-2018-12359, CVE-2018-12360, CVE-2018-12361, CVE-2018-12358,
CVE-2018-12362, CVE-2018-5156, CVE-2018-12363, CVE-2018-12364,
CVE-2018-12365, CVE-2018-12371, CVE-2018-12366, CVE-2018-12367,
CVE-2018-12369, CVE-2018-12370, CVE-2018-5186, CVE-2018-5187,
CVE-2018-5188.
* debian/control*:
- Bump nss and sqlite build dependencies.
- Add a build dependency on python3.
* debian/browser.install.in: Adjust to upstream changes.
* debian/vendor.js: Relax the addon signature requirements.
* toolkit/mozapps/extensions/content/extensions.js,
toolkit/mozapps/extensions/internal/XPIDatabase.jsm: Allow to relax the
addon signature requirements.
-- Mike Hommey <email address hidden> Wed, 27 Jun 2018 10:25:44 +0900
-
firefox (60.0.2-2) unstable; urgency=medium
* build/unix/elfhack/elfhack.cpp, build/unix/elfhack/inject.c,
build/unix/elfhack/test.c: Use run-time page size when changing mapping
permissions in elfhack injected code. bz#1470701. Closes: #902231.
-- Mike Hommey <email address hidden> Sun, 24 Jun 2018 09:23:16 +0900
-
firefox (60.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-14, also known as CVE-2018-6126.
* debian/upstream.mk: Use the same logic for betas as for releases to find
the source.
* debian/browser.NEWS.in: Adjust to show the ESR version.
-- Mike Hommey <email address hidden> Fri, 08 Jun 2018 18:25:04 +0900
-
firefox (60.0.1-5) unstable; urgency=medium
* gfx/skia/moz.build: Revert change from 60.0.1-4.
* dom/media/webaudio/blink/DenormalDisabler.h: Avoid using vmrs/vmsr on
armel.
* mfbt/LinuxSignal.h, mfbt/moz.build,
tools/profiler/core/platform-linux-android.cpp: Remove
MOZ_SIGNAL_TRAMPOLINE. bz#1463035.
* build/autoconf/arch.m4: Add -mfloat-abi=softfp to NEON_FLAGS when it makes
sense. bz#1463036.
* xpcom/string/moz.build: Use HAVE_ARM_NEON instead of BUILD_ARM_NEON for
nsUTF8UtilsNEON.cpp. bz#1463036.
-- Mike Hommey <email address hidden> Tue, 22 May 2018 08:01:55 +0900
-
firefox (60.0.1-4) unstable; urgency=medium
* gfx/skia/moz.build: Don't build skia neon on armel.
-- Mike Hommey <email address hidden> Mon, 21 May 2018 07:58:43 +0900
-
firefox (60.0.1-3) unstable; urgency=medium
* debian/browser.links.in: Remove /usr/lib/*/browser/icons symlink, leftover
after the removal of /usr/share/*/browser/icons. Closes: #893323.
* media/webrtc/trunk/moz.build: Only build webrtc neon on aarch64.
-- Mike Hommey <email address hidden> Sun, 20 May 2018 10:12:15 +0900
-
firefox (60.0.1-2) unstable; urgency=medium
* third_party/rust/libc/.cargo-checksum.json,
third_party/rust/libc/src/unix/notbsd/linux/mod.rs,
third_party/rust/libc/src/unix/notbsd/linux/musl/mod.rs,
third_party/rust/libc/src/unix/notbsd/linux/other/mod.rs,
third_party/rust/libc/src/unix/notbsd/linux/s390x.rs: Apply upstream patch
to add struct ucred for Linux on MIPS.
* gfx/skia/skia/src/jumper/SkJumper_stages.cpp: Fix Skia build on arm64
linux with GCC. bz#1462868.
* intl/icu_sources_data.py: Add --disable-layoutex when running ICU
configure. bz#1462859.
* media/webrtc/trunk/gtest/moz.build: Link chromium_atomics to webrtc tests.
bz#1462873.
-- Mike Hommey <email address hidden> Sat, 19 May 2018 13:07:39 +0900
-
firefox (60.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/browser.links.in: Remove /usr/lib/*/browser/icons symlink, leftover
after the removal of /usr/share/*/browser/icons. Closes: #893323.
* debian/control*: Remove mozplugger suggestion. Closes: #888396.
* debian/browser.install.in, debian/browser.mozconfig.in, debian/control.in,
debian/rules: Remove the option to build against gtk+2, it is not
supported anymore.
* debian/control*, debian/rules: Avoid hard dependency on libgtk2.0-0.
Closes: #885144.
* media/webrtc/trunk/moz.build: Attempt to fix building webrtc on non-x86.
* js/src/jit/mips-shared/LIR-mips-shared.h, js/src/jit/mips32/LIR-mips32.h,
js/src/jit/mips64/LIR-mips64.h: Fix FTBFS on mips*. bz#1444303.
-- Mike Hommey <email address hidden> Sat, 19 May 2018 07:25:23 +0900
-
firefox (60.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-11, also known as
CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158,
CVE-2018-5159, CVE-2018-5160, CVE-2018-5152, CVE-2018-5153,
CVE-2018-5163, CVE-2018-5164, CVE-2018-5166, CVE-2018-5167,
CVE-2018-5168, CVE-2018-5169, CVE-2018-5172, CVE-2018-5173,
CVE-2018-5175, CVE-2018-5176, CVE-2018-5177, CVE-2018-5165,
CVE-2018-5180, CVE-2018-5181, CVE-2018-5182, CVE-2018-5151,
CVE-2018-5150.
* debian/control*:
- Bump nspr, nss, sqlite, rustc and cargo build dependencies.
- Update Maintainer and Vcs fields, moving off alioth.
* debian/browser.js.in, debian/vendor.js: Use the new syntax for
locked and sticky prefs.
* debian/browser.NEWS.in: Add a NEWS about the deprecation of lockPref.
* debian/rules: Automatically find the ICU data file name.
* debian/browser.mozconfig.in: Revert workaround for bz#1341234.
* debian/browser.install.in, debian/rules: Don't install the ICU data
file, it's linked as a data section in libxul.
* modules/libpref/parser/src/lib.rs: Adapt to upstream changes to
keep supporting lockPref() for transition purposes, now that upstream
has locked prefs out of the box.
-- Mike Hommey <email address hidden> Thu, 10 May 2018 09:36:46 +0900
-
firefox (59.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-10, also known as CVE-2018-5148.
-- Mike Hommey <email address hidden> Tue, 27 Mar 2018 08:29:16 +0900
-
firefox (59.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-08, also known as CVE-2018-5146, CVE-2018-5147.
-- Mike Hommey <email address hidden> Sat, 17 Mar 2018 13:48:08 +0900
-
firefox (59.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-06, also known as:
CVE-2018-5127, CVE-2018-5128, CVE-2018-5129, CVE-2018-5130,
CVE-2018-5131, CVE-2018-5132, CVE-2018-5133, CVE-2018-5134,
CVE-2018-5135, CVE-2018-5136, CVE-2018-5137, CVE-2018-5140,
CVE-2018-5141, CVE-2018-5142, CVE-2018-5143, CVE-2018-5126,
CVE-2018-5125.
* debian/upstream.mk:
- Change how we find the source tarball for releases.
- Stop using milestone.py, it went away in this version.
* debian/control*: Bump nspr, nss, sqlite, rustc and cargo build
dependencies.
* debian/rules: Update ICU_DATA_FILE version.
* debian/browser.install.in, debian/browser.links.in, debian/rules: Take all
icons from chrome/icons/default/ now they are all there.
* debian/browser.install.in, debian/rules: Install watermark icon through
dh_install.
* debian/browser.js.in: Use the new intl.locale.requested instead of
intl.locale.matchOS.
-- Mike Hommey <email address hidden> Wed, 14 Mar 2018 08:30:34 +0900
-
firefox (58.0.1-1) unstable; urgency=medium
* New upstream release.
* Fix for mfsa2018-05.
* debian/upstream.mk, debian/l10n_revs.py: Use l10n-changesets.json from the
source tree to find the l10n changesets.
* debian/usptream.mk: Stop using milestone.py, it goes away in version 59.
* intl/icu/source/i18n/digitlst.cpp: Apply part of
http://bugs.icu-project.org/trac/changeset/40603 to fix FTBFS with glibc
2.26 on big endian platforms. Closes: #888638.
-- Mike Hommey <email address hidden> Tue, 30 Jan 2018 07:43:28 +0900
-
firefox (58.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-02, also known as:
CVE-2018-5091, CVE-2018-5092, CVE-2018-5093, CVE-2018-5094,
CVE-2018-5095, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099,
CVE-2018-5100, CVE-2018-5101, CVE-2018-5102, CVE-2018-5103,
CVE-2018-5104, CVE-2018-5105, CVE-2018-5106, CVE-2018-5107,
CVE-2018-5108, CVE-2018-5109, CVE-2018-5111, CVE-2018-5112,
CVE-2018-5113, CVE-2018-5114, CVE-2018-5115, CVE-2018-5116,
CVE-2018-5117, CVE-2018-5118, CVE-2018-5119, CVE-2018-5122,
CVE-2018-5090, CVE-2018-5089.
* debian/rules:
- Don't disable necko-wifi on kfreebsd/hurd. This used to be necessary
because that was using libiw, which was linux-only, but libiw is not
used anymore.
- Refresh configure files manually.
- Remove --with-default-mozilla-five-home, it's gone.
- Adapt to compare-locales changes.
- Define MOZ_FFVPX on arm and aarch64.
* debian/browser.install.in, debian/rules, debian/test.mk: Use
DEB_HOST_ARCH* instead of DEB_BUILD_ARCH*.
* debian/control*:
- Bump rustc, cargo and nss build dependencies.
- Add a dependency on libnss3 3.34 for the firefox package.
* debian/noinstall.in: Remove run-mozilla.sh from there, it's not installed
anymore.
-- Mike Hommey <email address hidden> Wed, 24 Jan 2018 08:16:43 +0900
-
firefox (57.0.4-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2018-01, mitigating "Spectre" side-channel attack.
* debian/control*: Remove build dependencies on unused -dev packages.
* debian/rules: Clean l10n build directory.
* debian/installer/Makefile.in,
debian/installer/package-manifest.browser, debian/rules, moz.build:
Let upstream packaging step preprocess our package manifest, instead
of preprocessing it manually first.
-- Mike Hommey <email address hidden> Fri, 05 Jan 2018 15:55:05 +0900
-
firefox (57.0.3-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Sat, 30 Dec 2017 12:06:22 +0900
-
firefox (57.0.1-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2017-27, also known as:
* CVE-2017-7843, CVE-2017-7844.
* debian/rules: Don't pass unused variables during make install.
* debian/installer/Makefile.in: Small path correctness fixup.
-- Mike Hommey <email address hidden> Fri, 01 Dec 2017 14:35:58 +0900
-
firefox (57.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2017-24, also known as:
CVE-2017-7828, CVE-2017-7830, CVE-2017-7831, CVE-2017-7832,
CVE-2017-7833, CVE-2017-7834, CVE-2017-7835, CVE-2017-7836,
CVE-2017-7837, CVE-2017-7838, CVE-2017-7839, CVE-2017-7840,
CVE-2017-7842, CVE-2017-7827, CVE-2017-7826.
* debian/control*: Bump nss, sqlite, rustc and cargo build dependencies.
* debian/rules:
- Always remove configure/old-configure during clean.
- Use a new file as source for the symbolic icon. Closes: #867729.
- Disable tests until they're fixed. The script to run tests uses old
entry points that weren't updated to deal with the sandbox in Firefox,
causing the tests to fail in a way that takes days to go through the
entire suites. Closes: #877565.
* debian/import-tar.py: Make python 3.6 happy.
* old-configure*: Allow to build against nspr 4.16.
-- Mike Hommey <email address hidden> Wed, 15 Nov 2017 09:20:05 +0900
-
firefox (56.0-2) unstable; urgency=medium
* debian/browser.mozconfig.in: Pass NSPR directory to bindgen to workaround
bz#1341234.
-- Mike Hommey <email address hidden> Fri, 29 Sep 2017 13:28:38 +0900
-
firefox (56.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2017-21, also known as:
CVE-2017-7793, CVE-2017-7818, CVE-2017-7819, CVE-2017-7824,
CVE-2017-7812, CVE-2017-7814, CVE-2017-7813, CVE-2017-7815,
CVE-2017-7816, CVE-2017-7821, CVE-2017-7823, CVE-2017-7822,
CVE-2017-7820, CVE-2017-7811, CVE-2017-7810.
* debian/control*:
- Bump nspr, nss, rustc and cargo build dependencies.
- Build depend on llvm-4.0-dev, libclang-4.0-dev and clang-4.0.
* debian/rules: Update ICU_DATA_FILE version.
* debian/browser.mozconfig.in, debian/google.key: Add the Google API key
from the chromium package for safebrowsing. Thanks Francois Marier.
-- Mike Hommey <email address hidden> Fri, 29 Sep 2017 07:51:07 +0900
-
firefox (55.0.3-1) unstable; urgency=medium
* New upstream release.
* debian/source/lintian-overrides: Add a lintian override for dotzlib.chm.
-- Mike Hommey <email address hidden> Sat, 09 Sep 2017 20:24:43 +0900
-
firefox (55.0.2-1) unstable; urgency=medium
* New upstream release.
* js/src/jit/ExecutableAllocator.h, js/src/jit/none/MacroAssembler-none.h:
Fix Spidermonkey build with no jit backend. bz#1376268.
-- Mike Hommey <email address hidden> Wed, 23 Aug 2017 09:41:36 +0900
-
firefox (55.0-2) unstable; urgency=medium
* ipc/chromium/src/base/message_pump_libevent.cc,
ipc/chromium/src/third_party/libevent/linux/event2/event-config.h:
Fix FTBFS on i386. bz#1388981.
* dom/base/nsWrapperCache.h: Fix FTBFS on powerpc64el. bz#1376277.
* media/libcubeb/cubeb-pulse-rs/src/backend/context.rs: Fix cubeb-pulse-rs
FTBFS on arm64.
-- Mike Hommey <email address hidden> Thu, 10 Aug 2017 14:29:21 +0900
-
firefox (55.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2017-18, also known as:
CVE-2017-7798, CVE-2017-7800, CVE-2017-7801, CVE-2017-7809,
CVE-2017-7784, CVE-2017-7802, CVE-2017-7785, CVE-2017-7786,
CVE-2017-7806, CVE-2017-7753, CVE-2017-7787, CVE-2017-7807,
CVE-2017-7792, CVE-2017-7791, CVE-2017-7808, CVE-2017-7781,
CVE-2017-7794, CVE-2017-7803, CVE-2017-7799, CVE-2017-7783,
CVE-2017-7788, CVE-2017-7789, CVE-2017-7797, CVE-2017-7780,
CVE-2017-7779.
* debian/control*: Bump nspr, nss and sqlite build dependencies.
* debian/rules:
- Preserve Cargo.toml.orig files ; cargo doesn't like that dh_clean
removes them.
- Copy the MPL-2.0 license from nsprpub instead of b2g, the latter being
gone.
* debian/browser.js.in: Default to no suggestions in the urlbar. This still
brings a panel asking the user whether they want to opt-in on first use.
* debian/upstream.mk: Set DIST differently for experimental.
* media/webrtc/trunk/gtest/moz.build: Make webrtc-gtest build work with
system jpeg and libvpx. bz#1373988.
* media/mtransport/third_party/nICEr/nicer.gyp,
media/mtransport/third_party/nrappkit/nrappkit.gyp: Disable
-Wformat-security where -Wformat is disabled. bz#1388681. Closes: #871386.
('ppc64le', 'Linux'): 'powerpc64le-unknown-linux-gnu',
* build/moz.configure/rust.configure: Add ppc64el target for rust code
(second attempt). Closes: #864822.
-- Mike Hommey <email address hidden> Wed, 09 Aug 2017 20:21:59 +0900
-
firefox (54.0-2) unstable; urgency=medium
* debian/upstream.mk: Consider testing/unstable as buster, which implies
build depending on system nspr, nss, sqlite and hunspell again.
* debian/rules: Really make overrides with USE_SYSTEM_* set to nothing work.
* build/moz.configure/rust.configure: Add ppc64el target for rust code.
Closes: #864822.
-- Mike Hommey <email address hidden> Sat, 17 Jun 2017 07:20:23 +0900
-
firefox (54.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2017-15, also known as:
CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751,
CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757,
CVE-2017-7778, CVE-2017-7758, CVE-2017-7762, CVE-2017-7764,
CVE-2017-5471, CVE-2017-5470.
* Targetting unstable because the required rustc version is available there,
and the freeze is almost over, meaning new versions of rustc will receive
updates, allowing to build newer versions of Firefox.
* debian/rules, debian/control.in: Switch to GCC 4.8 on wheezy.
* debian/rules: Don't remove debian/control on clean. Thanks to
Emilio Pozuelo Monfort for those two changes for wheezy LTS support.
* debian/control.in, debian/rules, debian/symbols.mk, debian/upstream.mk:
Rename the BACKPORT variable to DIST, and set it to "stretch" for
unstable/testing targetted builds.
* debian/rules: Normalize the system libraries used depending on the Debian
version.
* debian/control*:
- Bump nspr and build dependencies.
- Bump rustc and cargo build dependencies.
* debian/rules:
- Allow to override USE_SYSTEM_* variables from the environment.
- Remove rules to create mozilla-nspr.pc. It hasn't been shipped since
45.0-1.
* debian/browser.install.in: Add the pingsender executable.
-- Mike Hommey <email address hidden> Wed, 14 Jun 2017 10:56:14 +0900
-
firefox (53.0.is.52.0.2-1) unstable; urgency=medium
* The "oops, I uploaded 53 to unstable instead of experimental" release.
-- Mike Hommey <email address hidden> Thu, 20 Apr 2017 05:37:46 +0900
-
firefox (52.0.2-1) unstable; urgency=medium
* New upstream release.
* debian/browser.mozconfig.in, debian/mls.key: Enable geolocation using
Mozilla's Location Service. Closes: #726230.
* browser/app/profile/firefox.js: Use the Mozilla Location Service when
the Google Key is not there.
-- Mike Hommey <email address hidden> Sun, 02 Apr 2017 06:45:39 +0900
-
firefox (52.0.1-1) unstable; urgency=medium
* New upstream release.
* Fix for mfsa2017-08, also known as CVE-2017-5428.
* debian/browser.lintian-overrides.in: Add a lintian override for NSPR and
NSS.
* debian/control*: Build depend on libjsoncpp-dev.
* config/system-headers,
toolkit/crashreporter/jsoncpp/src/lib_json/moz.build,
toolkit/crashreporter/minidump-analyzer/moz.build: Build against system
libjsoncpp.
-- Mike Hommey <email address hidden> Sat, 18 Mar 2017 08:49:59 +0900
-
firefox (52.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2017-05, also known as:
CVE-2017-5400, CVE-2017-5401, CVE-2017-5402, CVE-2017-5403,
CVE-2017-5404, CVE-2017-5406, CVE-2017-5407, CVE-2017-5410,
CVE-2017-5408, CVE-2017-5412, CVE-2017-5413, CVE-2017-5414,
CVE-2017-5415, CVE-2017-5416, CVE-2017-5417, CVE-2017-5426,
CVE-2017-5427, CVE-2017-5418, CVE-2017-5419, CVE-2017-5420,
CVE-2017-5405, CVE-2017-5421, CVE-2017-5422, CVE-2017-5399,
CVE-2017-5398.
* debian/control*: Bump nss and sqlite build dependencies.
* debian/rules:
- Update ICU_DATA_FILE version.
- Don't build against system sqlite until we have the right version in
Debian.
* debian/browser.install.in:
- Install chrome.manifest, libmozsandbox.so and minidump-analyzer.
- Remove browser/components.
-- Mike Hommey <email address hidden> Wed, 08 Mar 2017 10:24:05 +0900
-
firefox (51.0.1-3) unstable; urgency=medium
* js/src/jit/mips-shared/Assembler-mips-shared.h,
js/src/jit/mips-shared/CodeGenerator-mips-shared.cpp,
js/src/jit/mips-shared/CodeGenerator-mips-shared.h,
js/src/jit/mips-shared/MacroAssembler-mips-shared-inl.h,
js/src/jit/mips-shared/MacroAssembler-mips-shared.cpp,
js/src/jit/mips-shared/MacroAssembler-mips-shared.h,
js/src/jit/mips32/MacroAssembler-mips32-inl.h,
js/src/jit/mips32/MacroAssembler-mips32.cpp,
js/src/jit/mips32/MacroAssembler-mips32.h,
js/src/jit/mips64/MacroAssembler-mips64-inl.h,
js/src/jit/mips64/MacroAssembler-mips64.cpp,
js/src/jit/mips64/MacroAssembler-mips64.h: Apply patch from
bz#1303688 hopefully fixing the FTBFS on mips*.
-- Mike Hommey <email address hidden> Thu, 23 Feb 2017 16:34:17 +0900
-
firefox (51.0.1-2) unstable; urgency=medium
* debian/symbols.mk:
- Better handle downloading symbols from packages with epochs.
- Don't filter file names when getting symbols.
- Add experimental buildd apt source for symbols download.
- Avoid apt-get download being re-run when the file is already there.
- Adjust DBGTYPE depending on package version, not whether it's a
backport.
- Only dump symbols for files of type application/x-sharedlib.
This covers binary executables too because they are PIE and
undistinguishable from shared libraries as a consequence.
* debian/rules:
- Add -fno-schedule-insns2 back. Closes: #854258.
- Build with -fno-schedule-insns on armel and armhf when building with
GCC6. Closes: #854640.
- Hack to disable --gc-sections when building NSS, working around bug
#844357 again. Should fix FTBFS on mips*.
* debian/browser.desktop.in, debian/rules: Followup for the StartupWMClass
changes in 51.0.1-1: Use the same name in desktop file and
application.ini RemotingName. Closes: #854397.
-- Mike Hommey <email address hidden> Sat, 18 Feb 2017 08:17:22 +0900
-
firefox (51.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/browser.desktop.in:
- Use the application name as StartupWMClass in the desktop file.
Along the change to nsAppRunner.cpp, this prevents e.g. GNOME Shell
from making Firefox appear as Firefox ESR when both are used.
- Remove Encoding key from desktop file. Closes: #812493
* debian/rules: Remove -fno-schedule-insns2 and add -fno-lifetime-dse
when building with GCC6.
* debian/rules, debian/control*: Build with GCC6 on arm*.
Closes: #852009. AFAIK, that will lead to FTBFS on at least armhf,
but let's already see how it goes.
* debian/upstream.mk: Use pkg-info.mk to figure out source name and version.
Closes: #850720.
* debian/control*:
- Remove build dependency and suggest on libgnome*. It hasn't actually
been used for a long time. Closes: #850265.
- Bump Standards-Version to 3.9.8. No changes required.
- Bump libvpx build dependency.
* debian/rules: Resize the symbolic icon.
* Move the -l10n-all package to the metapackages section. Closes: #824784.
* debian/browser.postrm.in, debian/browser.preinst.in, debian/rules: Don't
install preinst and postrm at all for the firefox package.
* debian/symbols.apt.conf, debian/symbols.mk, debian/symbols.sources.list:
Add scripts to create symbols archive to upload to Mozilla crash servers.
* debian/browser-dev.links.in, debian/browser.install.in,
debian/browser.mozconfig.in, debian/control*, debian/make.mk, debian/rules:
Add more granularity as to what system libraries are used
and only disable NSPR/NSS until we have the right versions in Debian.
* gfx/2d/BorrowedContext.h, gfx/layers/composite/LayerManagerComposite.*,
gfx/layers/moz.build: Fix --disable-skia builds. bz#1319374.
* gfx/skia/moz.build: Build Skia NEON code on arm64.
* toolkit/xre/nsAppRunner.cpp: Set program name from the remoting name.
* config/recurse.mk: Work around race condition between building NSPR and
NSS. bz#1115944, bz#1315882.
-- Mike Hommey <email address hidden> Sun, 05 Feb 2017 15:52:36 +0900
-
firefox (51.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2017-01, also known as:
CVE-2017-5375, CVE-2017-5376, CVE-2017-5377, CVE-2017-5378,
CVE-2017-5379, CVE-2017-5380, CVE-2017-5390, CVE-2017-5389,
CVE-2017-5396, CVE-2017-5381, CVE-2017-5382, CVE-2017-5383,
CVE-2017-5384, CVE-2017-5385, CVE-2017-5386, CVE-2017-5391,
CVE-2017-5393, CVE-2017-5387, CVE-2017-5388, CVE-2017-5374,
CVE-2017-5373.
* debian/upstream.mk: Don't rely on FIREFOX_*_RELEASE tags to pull some
files to determine all source urls.
* debian/browser.bug-presubj.in: Add a note about submitting crash reports
upstream and pasting the url to Debian bug reports.
* debian/rules, debian/control*: Adjust rust build configure to new
upstream. It requires rustc >= 1.10 and cargo, the latter of which is
not available on arm64. Also depend on cargo >= 0.13, that doesn't access
the network with the Cargo.toml files in the source. Note rust code is
still not enabled unless building a beta release.
* debian/control*: Bump nspr, nss and sqlite build dependencies.
* debian/rules, debian/control: Use more embedded libraries until the
required versions of NSPR and NSS can be in unstable.
* build/moz.configure/rust.configure: Force use the i686 rust target.
* gfx/skia/skia/include/core/SkPreConfig.h: Generically set
SK_CPU_[BL]ENDIAN based on __BYTE_ORDER__ when available. bz#1319389.
-- Mike Hommey <email address hidden> Wed, 25 Jan 2017 11:27:12 +0900
-
firefox (50.1.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2016-95, also known as:
CVE-2016-9894, CVE-2016-9899, CVE-2016-9895, CVE-2016-9896,
CVE-2016-9897, CVE-2016-9898, CVE-2016-9900, CVE-2016-9904,
CVE-2016-9901, CVE-2016-9902, CVE-2016-9903, CVE-2016-9080,
CVE-2016-9893.
-- Mike Hommey <email address hidden> Wed, 14 Dec 2016 06:15:10 +0900
-
firefox (50.0.2-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2016-{91-92}, also known as:
CVE-2016-9078, CVE-2016-9079.
* widget/gtk/mozgtk/mozgtk.c: work around race in system Cairo's XShm usage.
bz#1271100.
-- Mike Hommey <email address hidden> Thu, 01 Dec 2016 08:32:08 +0900
-
firefox (50.0-3) unstable; urgency=medium
* media/libjpeg/simd/jsimd_mips.c: Pull libjpeg-turbo upstream fix for FTBFS
on mips.
* widget/gtk/mozgtk/gtk3/moz.build: Work around Debian bug #844357.
-- Mike Hommey <email address hidden> Mon, 21 Nov 2016 08:16:53 +0900
-
firefox (50.0-2) unstable; urgency=medium
* debian/rules: Use mach to run icu_source_data.py. This should fix FTBFS
on big endian platforms.
* js/src/jit/mips64/CodeGenerator-mips64.cpp: Fix
CodeGenerator::visitAsmSelectI64. bz#1290811.
-- Mike Hommey <email address hidden> Sat, 19 Nov 2016 06:16:41 +0900
-
firefox (50.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2016-{87,89} also known as:
CVE-2016-5287, CVE-2016-5288, CVE-2016-5296, CVE-2016-5292,
CVE-2016-5297, CVE-2016-9064, CVE-2016-9066, CVE-2016-9067,
CVE-2016-9068, CVE-2016-9075, CVE-2016-9077, CVE-2016-5291,
CVE-2016-9070, CVE-2016-9073, CVE-2016-9076, CVE-2016-9063,
CVE-2016-9071, CVE-2016-5289, CVE-2016-5290.
* debian/rules: Only generate configure files on nightlies, and use
client.mk to generate them instead of using autoconf manually (which,
while compatible, is wrong nowadays).
* debian/control*:
- Remove outdated alternative build dependencies.
- Bump sqlite and nss build dependency.
- Add build dependency on libx11-xcb-dev.
* debian/browser.mozconfig.in, debian/control*, debian/rules: Enable rust on
non-release/ESR.
* debian/browser.install.in: Add the EmojiOneMozilla font.
-- Mike Hommey <email address hidden> Wed, 16 Nov 2016 09:04:23 +0900
-
firefox (49.0-5) unstable; urgency=medium
* debian/rules:
- Don't install crashreporter files on arm64, where it's not built. Should
fix FTBFS on arm64.
- Ship a symbolic icon from the silhouette icon from branding.
Closes: #832297.
- Remove old workaround for GCC 4.5 on armel.
- Remove old workarounds for ia64.
- Remove GENSYMBOLS_FLAGS, which hasn't been used for 5 years.
- Remove CMP_AWK, which hasn't been used since xulrunner packages were
removed.
- Remove dh_builddeb override forcing xz compression, which is the default
since dpkg 1.15.6.
- Remove old workaround for ppc64.
- Disable both baseline JIT and ion on mips via prefs.
* debian/rules, debian/control: Re-enable Gtk+3 to see how it goes.
Closes: #832301.
* security/sandbox/linux/SandboxFilter.cpp: Allow media plugins to call
madvise with MADV_FREE. bz#1303813. Closes: #838911.
* js/src/jit/AtomicOperations.h: Fix crashes in AtomicOperations-none on
s390x. Should fix FTBFS on s390x.
-- Mike Hommey <email address hidden> Sat, 29 Oct 2016 19:54:35 +0900
-
firefox (49.0-4) unstable; urgency=medium
* debian/rules, dbeian/browser.install.in: Always install GMP clearkey.
Should fix FTBFSes on non-x86/x86-64, this time.
* debian/browser.js.in: Unset media.gmp-manager.url.override.
Closes: #838902.
* debian/compat, debian/control*: Bump debhelper compat and dependency to 9.
* debian/rules, debian/control*: Generate debug symbols debs when not
backporting.
* debian/browser.install.in, browser.mozconfig.in, debian/rules: Don't
disable the crash reporter.
-- Mike Hommey <email address hidden> Sun, 02 Oct 2016 13:28:11 +0900
-
firefox (49.0-3) unstable; urgency=medium
* debian/browser.desktop.in: Use the full path to the real Firefox
executable in the .desktop file. Closes: #832298
* toolkit/moz.configure: Ensure we don't enable Widevine unintentionally.
bz#1299694. Should fix FTBFSes on non-x86/x86-64.
-- Mike Hommey <email address hidden> Sun, 25 Sep 2016 17:34:05 +0900
-
firefox (49.0-2) unstable; urgency=medium
* debian/rules, debian/control*: Only force GCC 5 on arm when building for
stretch+.
* debian/browser.mozconfig.in, debian/browser.install.in, debian/rules:
Do not disable EME. Closes: #838478.
* debian/rules, debian/browser.install.in: Build and use big-endian ICU data
on big-endian architectures. Fixes FTBFS on big-endian architectures.
* build/autoconf/icu.m4: Allow to override ICU_DATA_FILE from the
environment.
* js/src/jit/mips-shared/MacroAssembler-mips-shared.cpp: OdinMonkey: MIPS:
Fix nop-jump patching code. bz#1277478. Fixes FTBFS on mips*el.
* media/libjpeg/moz.build: Fix CPU_ARCH test for libjpeg on mips. Fixes
FTBFS on mips.
-- Mike Hommey <email address hidden> Sun, 25 Sep 2016 09:47:54 +0900
-
firefox (49.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa-2016-85, also known as:
CVE-2016-2827, CVE-2016-5270, CVE-2016-5271, CVE-2016-5272,
CVE-2016-5273, CVE-2016-5276, CVE-2016-5274, CVE-2016-5277,
CVE-2016-5275, CVE-2016-5278, CVE-2016-5279, CVE-2016-5280,
CVE-2016-5281, CVE-2016-5282, CVE-2016-5283, CVE-2016-5284,
CVE-2016-5256, CVE-2016-5257.
* debian/control*, debian/rules: Compile with GCC 5 on testing/unstable
on arm* because of crashes when building with GCC 6. (FTBFS)
* debian/control*: Force build against libnss3-dev >= 2:3.26-2~, which fixed
its symbols file. Closes: #833719.
* build/gyp.mozbuild: Disable libyuv assembly on mips64. (FTBFS)
-- Mike Hommey <email address hidden> Wed, 21 Sep 2016 10:30:16 +0900
-
firefox (48.0-2) unstable; urgency=medium
* debian/rules: Build with -fno-schedule-insns2 and
-fno-delete-null-pointer-checks with GCC >= 6 because it miscompiles
Firefox. Closes: #836533.
-- Mike Hommey <email address hidden> Mon, 05 Sep 2016 07:25:54 +0900
-
firefox (48.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa-2016-{62-68,70-81,83-84}, also known as:
CVE-2016-2836, CVE-2016-2835, CVE-2016-2830, CVE-2016-2838,
CVE-2016-2839, CVE-2016-5251, CVE-2016-5252, CVE-2016-0718,
CVE-2016-5254, CVE-2016-5255, CVE-2016-5258, CVE-2016-5259,
CVE-2016-5260, CVE-2016-5261, CVE-2016-5262, CVE-2016-2837,
CVE-2016-5263, CVE-2016-5264, CVE-2016-5265, CVE-2016-5266,
CVE-2016-5268, CVE-2016-5250.
* debian/control*: Bump nss and sqlite build dependencies.
* debian/rules: Remove --build from configure invocation.
* debian/browser.mozconfig.in: s/NATIVE/SYSTEM/. The variables set for
--enable-system flags have changed upstream.
* debian/browser.install.in, debian/browser.links.in: Don't install webapprt
files, they are gone.
* debian/browser.install.in:
- Install ICU data file.
- libfreebl3 changed name.
- Take mozicon128.png from dist/firefox instead of dist/bin.
-- Mike Hommey <email address hidden> Wed, 03 Aug 2016 09:45:22 +0900
-
firefox (47.0.1-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 29 Jun 2016 19:25:53 +0900
-
firefox (47.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa-2016-{49-52,54,56-60}, also known as:
CVE-2016-2815, CVE-2016-2818, CVE-2016-2819, CVE-2016-2821,
CVE-2016-2822, CVE-2016-2825, CVE-2016-2828, CVE-2016-2829,
CVE-2016-2831, CVE-2016-2832, CVE-2016-2833.
* debian/rules: Read default toolkit from old-configure.in, but still keep
Gtk+3 disabled.
-- Mike Hommey <email address hidden> Wed, 08 Jun 2016 10:00:04 +0900
-
firefox (46.0.1-1) unstable; urgency=medium
* New upstream release.
* debian/control*: Remove build dependencies that were only required for the
iceweasel branding.
* debian/control*, debian/browser.mozconfig.in: Remove configure flags and
build dependencies related to gnomevfs. They have been ignored for close
to a year.
* debian/browser.mozconfig.in:
- Remove configure flags explicitly enabling gio, it has been enabled by
default for more than 3 years.
- Remove --enable-svg, the option has been ignored for more than 5 years.
- Remove --enable-mathml, the option has been ignored for more than 4
years.
- Remove --enable-pango, the option has been ignored for 2 years.
- Remove --disable-pedantic, the option has been ignored for 3 years.
- Remove --disable-long-long-warning, the option has been ignored for
almost 5 years.
- Remove --disable-gnomeui, it is the default.
- Remove --disable-mochitest, the option has been ignored for more than 7
years.
- Remove --disable-debug, it is the default.
- Remove --enable-canvas, the option has been ignored for more than 6
years.
- Remove --disable-installer, the option has been ignored for close to 4
years.
- Remove --disable-javaxpcom, the option has been ignored for close to 5
years.
- Remove --disable-elf-dynstr-gc, the option has been ignored for more
than 2 years.
- Remove --enable-url-classifier, it is the default.
- Remove --with-user-appdir=.mozilla, it is the default.
- Remove --enable-single-profile, the option has been ignored for more
than 7 years.
- Remove --disable-profilesharing, the option has been ignored for more
than 7 years.
* debian/rules: Use the mach compare-locales command for l10n.
* debian/upstream.mk, debian/watch: Remove "mozilla.org" from path in
archive.mozilla.org urls.
* debian/upstream.mk: Don't use get a separate source tarball for
compare-locales. There is a copy in-tree that we now use.
* debian/browser.desktop.in, debian/control*, debian/rules: Allow to
distinguish between firefox and firefox-esr. Closes: #821952.
* debian/control, debian/rules: Disable Gtk+3 for now. Closes: #822807.
-- Mike Hommey <email address hidden> Sun, 08 May 2016 09:11:06 +0900
-
firefox (46.0-1) unstable; urgency=medium
* New upstream release.
* Fixes for mfsa2016-{39,42,44-48}, also known as:
CVE-2016-2807, CVE-2016-2806, CVE-2016-2804, CVE-2016-2811,
CVE-2016-2812, CVE-2016-2814, CVE-2016-2816, CVE-2016-2817,
CVE-2016-2808, CVE-2016-2820.
* debian/browser.install.in: Add ffmpeg vp9 libraries.
* debian/browser.lintian-overrides.in: Add a lintian override for
libmozavutil.so, which is not exactly libavutil.
* debian/control*: Bump nss and sqlite3 build dependencies.
* debian/browser.mozconfig.in, debian/control*, debian/rules: Remove
gstreamer dependencies and such, gstreamer support was removed upstream.
-- Mike Hommey <email address hidden> Wed, 27 Apr 2016 09:04:38 +0900
-
firefox (45.0.2-1) unstable; urgency=medium
* New upstream release.
-- Mike Hommey <email address hidden> Wed, 13 Apr 2016 10:07:02 +0900
-
firefox (45.0.1-1) unstable; urgency=medium
* New upstream release.
- Disables Graphite font shaping library.
* debian/browser.js.in: Don't mention the pref subdirectory in
/etc/firefox*/firefox*.js. Also reword the comment there, and remove some
parts of it. Closes: #818322.
* debian/control*:
- Bump libvpx build dependency to 1.4.0. Closes: #818454.
- Switch Vcs-* fields to https urls.
- Point Vcs-* urls to the right branch.
* debian/rules: Add --exclude=.mkdir.done to TAR_CREATE_FLAGS.
* debian/control*, debian/firefox.in, debian/iceweasel.*,
debian/l10n/browser-l10n.control.in, debian/rules: Synchronize with the
firefox-esr source package.
* ipc/chromium/moz.build, ipc/chromium/src/build/build_config.h,
ipc/chromium/src/base/atomicops.h,
ipc/chromium/src/base/atomicops_internals_arm64_gcc.h: Add aarch64 support
for atomic operations. bz#1250403.
* ipc/chromium/atomics/moz.build, ipc/chromium/moz.build,
media/webrtc/signaling/test/common.build: Link chromium mutex-based
atomics implementation to webrtc signaling tests. bz#1257888. This should
fix the powerpc FTBFSes.
-- Mike Hommey <email address hidden> Sat, 19 Mar 2016 02:51:43 +0900
-
firefox (45.0-1) unstable; urgency=medium
* New upstream non-ESR release.
-- Mike Hommey <email address hidden> Thu, 10 Mar 2016 13:43:34 +0900