palemoon: security update to 28.1.0 - Githubissues

AOSC-Dev / aosc-os-abbs

ABBS/ACBS tree for AOSC OS package metadata, build configuration, scripts, and patches

https://packages.aosc.io

GNU General Public License v2.0

102 stars 80 forks source link

palemoon: security update to 28.1.0 #1391

Closed l2dy closed 6 years ago

l2dy commented 6 years ago

CVE IDs (if any)

CVE-2018-12377, CVE-2018-12379

Other security advisory IDs (if any)

N/A

Patches (if any)

N/A

PoC(s) (if any)

N/A

Additional descriptions (if applicable)

https://www.palemoon.org/releasenotes.shtml

Ported all relevant security fixes from Mozilla's Gecko/62 release, including CVE-2018-12377 and CVE-2018-12379.

Architectural progress

Please remove any architecture to which the security vulnerabilities do not apply.

[x] AMD64 (amd64)
[x] PowerPC 64-bit BE (ppc64)
[x] PowerPC 32-bit BE (powerpc)

MingcongBai commented 6 years ago

Note, upstream moved to https://github.com/MoonchildProductions/UXP .

MingcongBai commented 6 years ago

Fixed with https://github.com/AOSC-Dev/aosc-os-abbs/commit/be3e91981a238019e816abaa2648f8d07875fdfd. Closing.

l2dy commented 6 years ago

Use AOSA-2018-0407.