[ELSA-2020-5100] firefox security update
[78.4.1-1.0.1]
- Removed Upstream references
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file
- Tue Nov 10 2020 erack@redhat.com - 78.4.1-1
- Update to 78.4.1
[78.4.0-3]
- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading
[78.4.0-2]
- Enable addon sideloading
[78.4.0-1]
- Update to 78.4.0 build2
- Fri Sep 18 2020 Jan Horak jhorak@redhat.com
- Update to 78.3.0 build1
[78.2.0-3]
- Update to 78.2.0 build1
- Fri Jul 24 2020 Jan Horak jhorak@redhat.com
Update to 68.11.0 build1
Fri Jun 26 2020 Jan Horak jhorak@redhat.com
Update to 68.10.0 build1
Fri May 29 2020 Jan Horak jhorak@redhat.com
Update to 68.9.0 build1
Added patch for pipewire 0.3
Mon May 11 2020 Jan Horak jhorak@redhat.com
Added s390x specific patches
Wed Apr 29 2020 Jan Horak jhorak@redhat.com
Update to 68.8.0 build1
[68.7.0-3]
- Added fix for rhbz#1821418
[68.7.0-2]
- Update to 68.7.0 build3
[68.6.1-1]
- Update to 68.6.1 ESR
- Wed Mar 04 2020 Jan Horak jhorak@redhat.com
- Update to 68.6.0 build1
[68.5.0-3]
- Added fix for rhbz#1805667
- Enabled mzbz@1170092 - Firefox prefs at /etc
- Fri Feb 07 2020 Jan Horak jhorak@redhat.com
Update to 68.5.0 build2
Wed Feb 05 2020 Jan Horak jhorak@redhat.com
Update to 68.5.0 build1
Wed Jan 08 2020 Jan Horak jhorak@redhat.com
Update to 68.4.1esr build1
Fri Jan 03 2020 Jan Horak jhorak@redhat.com
Update to 68.4.0esr build1
Wed Dec 18 2019 Jan Horak jhorak@redhat.com
Fix for wrong intl.accept_lang when using non en-us langpack
[68.3.0-1]
- Update to 68.3.0 ESR
[68.2.0-4]
- Added patch for TLS 1.3 support.
[68.2.0-3]
- Rebuild
[68.2.0-2]
- Rebuild
[68.2.0-1]
- Update to 68.2.0 ESR
[68.1.0-6]
- Enable system nss on RHEL6
[68.1.0-2]
- Enable building langpacks
[68.1.0-1]
- Update to 68.1.0 ESR
[68.0.1-4]
- Enable system nss
[68.0.1-3]
- Enable official branding
[68.0.1-2]
- Enabled PipeWire on RHEL8
[68.0.1-1]
- Updated to 68.0.1 ESR
[68.0-0.11]
- Update to 68.0 ESR
[68.0-0.10]
- Updated to 68.0 alpha 13
- Enabled second arches
[68.0-0.1]
- Updated to 68.0 alpha
[60.6.0-3]
- Added Google API keys (mozbz#1531176)
[60.6.0-2]
- Update to 60.6.0 ESR (Build 2)
[60.6.0-1]
- Update to 60.6.0 ESR (Build 1)
[60.5.1-1]
- Update to 60.5.1 ESR
[60.5.0-3]
- Added fix for rhbz#1672424 - Firefox crashes on NFS drives.
[60.5.0-2]
- Updated to 60.5.0 ESR build2
[60.5.0-1]
- Updated to 60.5.0 ESR build1
[60.4.0-3]
- Fixing fontconfig warnings (rhbz#1601475)
[60.4.0-2]
- Added pipewire patch from Tomas Popela (rhbz#1664270)
[60.4.0-1]
- Update to 60.4.0 ESR
[60.3.0-2]
- Added firefox-gnome-shell-extension
[60.3.0-1]
- Update to 60.3.0 ESR
[60.2.2-2]
- Added patch for rhbz#1633932
[60.2.2-1]
- Update to 60.2.2 ESR
[60.2.1-1]
- Update to 60.2.1 ESR
[60.2.0-1]
- Update to 60.2.0 ESR
[60.1.0-9]
- Do not set user agent (rhbz#1608065)
- GTK dialogs are localized now (rhbz#1619373)
- JNLP association works again (rhbz#1607457)
[60.1.0-8]
- Fixed homepage and bookmarks (rhbz#1606778)
- Fixed missing file associations in RHEL6 (rhbz#1613565)
[60.1.0-7]
- Run at-spi-bus if not running already (for the bundled gtk3)
[60.1.0-6]
- Fix for missing schemes for bundled gtk3
[60.1.0-5]
- Added mesa-libEGL dependency to gtk3/rhel6
[60.1.0-4]
- Disabled jemalloc on all second arches
[60.1.0-3]
- Updated to 60.1.0 ESR build2
[60.1.0-2]
- Disabled jemalloc on second arches
[60.1.0-1]
- Updated to 60.1.0 ESR
[60.0-12]
- Fixing bundled libffi issues
- Readded some requirements
[60.0-10]
- Added fix for mozilla BZ#1436242 - IPC crashes.
[60.0-9]
- Bundling libffi for the sec-arches
- Added openssl-devel for the Python
- Fixing bundled gtk3
[60.0-8]
- Added fix for mozilla BZ#1458492
[60.0-7]
- Added patch from rhbz#1498561 to fix ppc64(le) crashes.
[60.0-6]
- Disabled jemalloc on second arches
[60.0-4]
- Update to 60.0 ESR
[52.7.0-1]
- Update to 52.7.0 ESR
[52.6.0-2]
- Build Firefox for desktop arches only (x86_64 and ppc64le)
[52.6.0-1]
- Update to 52.6.0 ESR
[52.5.0-1]
- Update to 52.5.0 ESR
[52.4.0-1]
- Update to 52.4.0 ESR
[52.3.0-3]
- Update to 52.3.0 ESR (b2)
- Require correct nss version
[52.2.0-1]
- Update to 52.2.0 ESR
[52.1.2-1]
- Update to 52.1.2 ESR
[52.0-7]
- Added fix for accept language (rhbz#1454322)
[52.0-6]
- Removing patch required for older NSS from RHEL 7.3
- Added patch for rhbz#1414564
[52.0-5]
- Added fix for mozbz#1348168/CVE-2017-5428
[52.0-4]
- Update to 52.0 ESR (b4)
[52.0-3]
- Added fix for rhbz#1423012 - ppc64 gfx crashes
[52.0-2]
- Enable system nss
[52.0-1]
- Update to 52.0ESR (B1)
- Build RHEL7 package for Gtk3
[52.0-0.13]
- Added fix for rhbz#1414535
[52.0-0.12]
- Update to 52.0b8
[52.0-0.11]
- Readded addons patch
[52.0-0.10]
- Update to 52.0b3
[52.0-0.9]
- Update to 52.0b2
[52.0-0.8]
- Update to 52.0b1
[52.0-0.5]
- Firefox Aurora 52 testing build
Package | Affected Version |
---|---|
pkg:rpm/oraclelinux/firefox?distro=oraclelinux-8.3 | < 78.4.1-1.0.1.el8_3 |
- ID
- ELSA-2020-5100
- Severity
- critical
- URL
- https://linux.oracle.com/errata/ELSA-2020-5100.html
- Published
-
2020-11-17T00:00:00
(3 years ago) - Modified
-
2020-11-17T00:00:00
(3 years ago) - Rights
- Copyright 2020 Oracle, Inc.
- Other Advisories
-
- ALAS2-2020-1572
- ALPINE:CVE-2020-26950
- ASA-202011-6
- DSA-4788-1
- DSA-4790-1
- ELSA-2020-5099
- ELSA-2020-5104
- ELSA-2020-5146
- ELSA-2020-5163
- ELSA-2020-5164
- GLSA-202011-07
- MFSA-2020-49
- openSUSE-SU-2020:1909-1
- openSUSE-SU-2020:1919-1
- openSUSE-SU-2020:2022-1
- openSUSE-SU-2020:2133-1
- RHSA-2020:5099
- RHSA-2020:5100
- RHSA-2020:5104
- RHSA-2020:5146
- RHSA-2020:5163
- RHSA-2020:5164
- SUSE-SU-2020:3311-1
- SUSE-SU-2020:3312-1
- SUSE-SU-2020:3331-1
- SUSE-SU-2020:3418-1
- USN-4625-1
- USN-4647-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2020-5100 | https://linux.oracle.com/errata/ELSA-2020-5100.html | |
CVE | CVE-2020-26950 | https://linux.oracle.com/cve/CVE-2020-26950.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/firefox?distro=oraclelinux-8.3 | oraclelinux | firefox | < 78.4.1-1.0.1.el8_3 | oraclelinux-8.3 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |