firefox: security update to 63.0

AOSC-Dev / aosc-os-abbs

ABBS/ACBS tree for AOSC OS package metadata, build configuration, scripts, and patches

https://packages.aosc.io

GNU General Public License v2.0

102 stars 80 forks source link

firefox: security update to 63.0 #1425

Closed l2dy closed 5 years ago

l2dy commented 5 years ago

CVE IDs: CVE-2018-12392, CVE-2018-12393, CVE-2018-12395, CVE-2018-12396, CVE-2018-12397, CVE-2018-12398, CVE-2018-12399, CVE-2018-12401, CVE-2018-12402, CVE-2018-12403, CVE-2018-12388, CVE-2018-12390

Other security advisory IDs: N/A

Descriptions: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/

Architectural progress:

[x] AMD64 amd64
[x] AArch64 arm64
[x] ARMv7 armel

l2dy commented 5 years ago

Excluding CVE-2018-12391, CVE-2018-12400.

Note: this issue only affects Firefox for Android. Desktop versions of Firefox are unaffected.

MingcongBai commented 5 years ago

This will unfortunately also be for testing, as it requires Rust 1.29.

MingcongBai commented 5 years ago

Fixed with https://github.com/AOSC-Dev/aosc-os-abbs/commit/acf0392891ce9111f17b1f4db45200e1f2c889d2. Closing.

l2dy commented 5 years ago

Use AOSA-2018-0451.