SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for newmoon-trans-es-AR-27.9.3-3.1.x86_64.rpm :
Wed Jun 13 14:00:00 2018 avvissuAATTyandex.by
- Update to 27.9.3:

* Add a nullcheck in DOMProxyHandler::EnsureExpandoObject

* Fix count of compacting update tasks started.

* Merge pull request #1682 from trav90/HSTS-preload-update

* Update HSTS preload list

* Clarify status or repo in README.

* Fix typo in 9b54bd30006c008b4a951331b273613d5bac3abf

* Port libopus upstream patch.

* Fix missing include in Skia SafeMath

Mon May 21 14:00:00 2018 avvissuAATTyandex.by
- Update to 27.9.2:

* Add sanity checks in nsScriptableUConv.cpp

* Avoid calling SVGAnimatedEnumeration::AnimVal() from
nsSVGUtils::GetBBox().

* Consistently use PR memory functions.

* Change MOZ_ASSERT to MOZ_RELEASE_ASSERT.

* Add and use Skia\'s \"Safe Math\" (DiD)

* Bug 1409440.

* Check for infinite value in txFormatNumberFunctionCall.

* Drop invisible characters from downloads filename.

* Final version as per IRC

* Update dialog strings for blocklist entry pop-up.

* Make soft-blocked wording more generic so people don\'t blow
their top over it.

* Update blocklist pm112

Tue May 8 14:00:00 2018 avvissuAATTyandex.by
- Update to 27.9.1:

* Add support for FFmpeg 4.0/libavcodec58

* Bump UI version in glue to clear sync migration with a last
try.

* Implement mozilla::IsAsciiAlpha

* Adjust cairo mutex locks for Tycho targets.

* Port malloc improvements from UXP.

* Unstable version bump

* [MSE] Force TrackID for MSE tracks.

* Revert \"Work around crashes when trackless mediastreams are
encountered.\"

Tue Apr 17 14:00:00 2018 avvissuAATTyandex.by
- Update to 27.9.0:

* http://www.palemoon.org/releasenotes.shtml

Wed Mar 28 14:00:00 2018 avvissuAATTyandex.by
- Update to 27.8.3:

* http://www.palemoon.org/releasenotes.shtml
- Use hard links

Thu Mar 22 13:00:00 2018 avvissuAATTyandex.by
- Update to 27.8.2:

* http://www.palemoon.org/releasenotes.shtml

Tue Mar 6 13:00:00 2018 avvissuAATTyandex.by
- Update to 27.8.1:

* http://www.palemoon.org/releasenotes.shtml

Fri Mar 2 13:00:00 2018 avvissuAATTyandex.by
- Update to 27.8.0:

* http://www.palemoon.org/releasenotes.shtml

Wed Jan 31 13:00:00 2018 avvissuAATTyandex.by
- Update to 27.7.2:

* http://www.palemoon.org/releasenotes.shtml

Wed Jan 17 13:00:00 2018 avvissuAATTyandex.by
- Update to 27.7.1:

* http://www.palemoon.org/releasenotes.shtml

Sun Jan 14 13:00:00 2018 avvissuAATTyandex.by
- Update to 27.7.0:

* http://www.palemoon.org/releasenotes.shtml
- Drop palemoon-27.6.0-return.patch (fixed)
- Add -Wno-address flag when building with gcc
- Spec file cleanup

Sat Nov 25 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.6.2:

* http://www.palemoon.org/releasenotes.shtml

Wed Nov 15 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.6.1:

* http://www.palemoon.org/releasenotes.shtml

Tue Nov 7 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.6.0:

* http://www.palemoon.org/releasenotes.shtml
- Update palemoon-27.6.0-homepage.patch
- Drop palemoon-27.4.2-locale.patch (fixed)
- Add palemoon-27.6.0-return.patch

Wed Oct 25 14:00:00 2017 avvissuAATTyandex.by
- Build with clang on Factory
- Switch to gold linker
- Add the --enable-pie option

Fri Oct 20 14:00:00 2017 avvissuAATTyandex.by
- Build with gcc7 on Factory (palemoon-27.4.0-gcc7.patch)
- Add LDFLAGS to spec file
- Build with ffmpeg

Mon Oct 9 14:00:00 2017 avvissuAATTyandex.by
- Update to 27.5.0:

* http://www.palemoon.org/releasenotes.shtml

Sun Sep 24 14:00:00 2017 avvissuAATTyandex.by
- Update to 27.5.0:

* http://www.palemoon.org/releasenotes.shtml
- Refresh palemoon-27.4.0-prefs.patch > palemoon-27.5.0-prefs.patch

Mon Sep 18 14:00:00 2017 avvissuAATTyandex.by
- Fix build with gcc6 (use fstack protection flag)
- Add palemoon-27.4.2-locale.patch

Tue Aug 22 14:00:00 2017 avvissuAATTyandex.by
- Update to 27.4.2:

* Small update to address some security and stability issues.

Thu Aug 3 14:00:00 2017 avvissuAATTyandex.by
- Update to 27.4.1:

* Small update to fix some stability and usability issues.

Mon Jul 10 14:00:00 2017 avvissuAATTyandex.by
- Update to 27.4.0:

* This is a major update to straighten out most of the media
streaming issues, as well as adding the necessary enhancements,
bugfixes and security fixes to the browser.
- Build with gcc6 on openSUSE Tumbleweed
- Build with system libvpx
- Update pathes:

* palemoon-27.1.0-prefs.patch > palemoon-27.4.0-prefs.patch

* palemoon-27.0.3-homepage.patch > palemoon-27.4.0-homepage.patch

Sat Apr 29 14:00:00 2017 avvissuAATTyandex.by
- Update to 27.3.0:

* Fixed up, checked and enabled vertical text writing modes!

* Pale Moon will now be able to display vertical, right-to-left
script.

* Added the option to reset non-default profiles.

* Fixed various issues in the WebP image decoder.

* Added internally-supported document types to allowed types.

* Fixed locale selection in ICU after update to ICU58.

* Re-implemented the previous spellchecker dictionary logic

* Ongoing fixes for the MP4 parser and MSE.

* Made HTML Media Elements\' preload attribute MSE-spec compliant.

* The preload attribute on HTML media elements is now ignored
in the case of an MSE source.

* Fixed an issue with Synced preferences sometimes overwriting
stored individual preferences.

* Fixed display of RSS folder icons.

* Fixed issues with custom context menus.

* Fixed an issue importing bookmarks with separators losing their
extra data.

* Changed the way numeric addresses are handled in the address bar
so it doesn\'t perform a search when it shouldn\'t.

* Added an option (browser.sessionstore.cache_behavior) to control
from which source restored tabs pull their page content

* Improved upon a v27 performance regression with SVG scaling.

* Improved performance by being more selective which CSS animations
to process.

* As a side-effect, elements changing their display from \"none\" to
something visible now also animate.

* Increased memory allocation for the use of very large PAC files.

* Added menu entries for the permissions manager and improvements
to its function and display.

* Added preferences to control \"highlight all\" behavior of find bar

* Added devtools command-line options.

* Added remote IP and protocol to Devtools->Network entry details.

* Fixed a regression in the MSIE profile migrator.

* Removed migration of browser-specific settings when migrating
data from IE/Safari.

* Implemented optional parameters for permessage-deflate in
preparation for RFC7692 errata making acceptance of them mandatory.

* Made the image document favicon skinnable.

* Aligned DOM selection addRange with the spec.

* Exposed mozAnon constructor js binding to system scopes for XHR.

* Enhanced form data handling from JavaScript.
- Security fixes:

* (CVE-2017-5451) (CVE-2017-5446) (CVE-2017-5438) (CVE-2017-5439)
(CVE-2017-5444) (CVE-2017-5445) (CVE-2017-5447) (CVE-2017-5442)
- Update translations to 27.3.0-RC2

Thu Apr 20 14:00:00 2017 avvissuAATTyandex.by
- Build without icu >= 58.2 (segfault)

Fri Mar 24 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.2.1:

* Small update to fix some stability and usability issues.

Sat Mar 18 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.2.0:

* Major update with a focus on back-end improvements and security.
- Switсh to gcc6 (openSUSE_Tumbleweed)

Fri Mar 3 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.1.2:

* Small update adding a workaround for potential deadlocks
happening in media elements

Wed Feb 22 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.1.1:

* Implemented a fix in media handling to prevent crashes with
concurrent videos and/or rapidly starting/stopping video playback
in the browser.

* Fixed the way the Adobe Flash plugin is detected to prevent
confusion with other plugins that identify themselves as \"Flash\".

Sat Feb 11 13:00:00 2017 avvissuAATTyandex.by
- Fixed: Use system hunspell

Wed Feb 8 13:00:00 2017 avvissuAATTyandex.by
- Update to 27.1.0:

* Reworked the media back-end completely to use FFmpeg and our
own MP4 parser.

* Restored classic about:config styling.

* Added a fallback to US-ASCII if the autoconfig UTF-8 conversion
fails.

* Improved cross-compartment wrapper handling when managing a
large number of tabs (performance).

* Changed the way audio and video synchronization is calculated
to account for (slow) device latency, preventing things from
getting out of sync.

* Changed the way scripts are handled when they are stopped from
the \"unresponsive script\" dialog, to prevent browser lockup.

* Fixed several errors in the devtools.

* Fixed a nasty crash caused by cross-origin referrers.

* Added HTML5-spec clipboard handling for content
(cut© only -- paste is not allowed for security reasons).

* Made multiple changes to the jetpack modules to cater to PMkit
extensions.

* Fixed a css layout issue: make max-width affect contributions
to intrinsic min-width.

* Implemented several updates to the permissions manager.

* Removed Metro browser platform/widget code.

* Removed support for non-standard/deprecated let blocks and
expressions.

* Made the use of let as a keyword versionless and ES6 compliant.

* Made the privacy category in preferences a tabbed setup to
better fit the current options.

* Fixed a regression preventing certain MP4 video files from
playing.

* Fixed a regression where seeking in media files would halt
playback/jump to the end of the stream.

* Changed the Facebook user-agent.

* Fixed the general useragent override taking priority over
site-specific overrides.

* Changed CORS handling to allow data: sources, assuming they are
same-origin.

* Reinstated the network.stricttransportsecurity.enabled preference.

* In HSTS \"off\" state, prevented HSTS site status from being
written to disk.

* Updated the IDN blacklist with more extended unicode characters
that \"look very similar to\" normal ASCII characters, to prevent
spoofing of well-known domains.

* Fixed an exploitable crash when using MP4 video. (CVE-2017-5396)

* Fixed an exploitable crash in XSL parsing. (CVE-2017-5376)

* Fixed a potential security issue when exporting certificates
with specially-crafted credentials. (CVE-2017-5381)

* Fixed a potential use-after-free situation in frame selection.
(CVE-2017-5380).

* Fixed a leak of window details through the Ion compiler in
certain situations.

* Fixed the potential for an exploitable crash involving Javascript.

* Fixed a potential overflow situation in WebRTC code.

* Fixed a potentially unsafe situation in websockets.

* Fixed several memory and other safety hazards.
- Update translations to 27.1.0-RC1
- Update patch:

* palemoon-27.0.3-prefs.patch -> palemoon-27.1.0-prefs.patch
- Drop patches (fixed in upstream):

* palemoon-27.0.0-link.patch

* palemoon-27.0.3-regexp-esr.patch

Tue Jan 31 13:00:00 2017 avvissuAATTyandex.by
- Fix build on openSUSE > 42.2:

* palemoon-27.0.3-regexp-esr.patch (bmo#1329252)

Tue Jan 10 13:00:00 2017 avvissuAATTyandex.by
- Update translations to RC16

Fri Dec 16 13:00:00 2016 avvissuAATTyandex.by
- Update to 27.0.3:

* Fixed certain network errors not displaying.

* Fixed network error page styling.

* Fixed the writing of DOM storage data to tabs.

* Added a Google Fonts user-agent override.

* Re-enabled the reporting of CSS errors to the console by default.

* Fixed and updated preferences for location bar suggestions.

* Fixed several x64-specific issues in memory allocation code.

* Fixed timer issues when resuming a computer from stand-by.

* Fixed a number of branding and textual issues in the browser.

* Fixed prompting for the saving of off-line data.

* Fixed a layout regression that would cause block elements
following left floats to not wrap to the next line if there
wasn\'t enough clearance.

* Fixed a mismatch in Firefox extension compatibility-mode
installation where Firefox extensions served by addons.mozilla.org
would be marked incompatible when trying to install.

* Fixed use-after-free while manipulating DOM events and removing
audio elements (CVE-2016-9899).

* Fixed CSP bypass using the marquee tag (CVE-2016-9895).

* Fixed a vulnerability in the internal Jetpack modules
(CVE-2016-9903).

* Fixed use-after-free in Editor while manipulating DOM subtrees
(CVE-2016-9898).

* Fixed an error in the buffer logic in http-chunked decoder.

* Fixed a crash in generational GC code (not in use by default)

* Fixed a compartment mismatch bug in plug-in code

* Fixed a crash trying to get a nonexistent property.

* Improved MediaRecorder\'s observer safety.

* Fixed a crash related to document history.
- Update translations to 27.0.0_RC12
- Add translation sub-packages
- Override default home page (add palemoon-27.0.3_homepage.patch)

Wed Dec 7 13:00:00 2016 avvissuAATTyandex.by
- Update translations to 27.0.0_RC10

Tue Dec 6 13:00:00 2016 avvissuAATTyandex.by
- Setting the extensions.autoDisableScopes to \"11\"

Fri Dec 2 13:00:00 2016 avvissuAATTyandex.by
- Update to 27.0.2:

* This is a bugfix release for some of the issues that popped up
with the new milestone.
- Add translations for package newmoon
- Spec-file cleanup

Tue Nov 22 13:00:00 2016 avvissuAATTyandex.by
- Update to 27.0.0:

* Update of the Goanna engine to 3.0 - with many changes to layout
and rendering for the modern web.

* Pale Moon now fully supports HTTP/2.

* Ruby Annotations are now an integral part of the HTML parser,
controllable with CSS.

* Media Source Extensions have been implemented to solve many
video playback issues.

* Support for reading and playing so-called \"fragmented\" MP4 files
has been added, further solving media playback issues.

* Support for SSL/TLS connections to proxy servers.

* Support for the WOFF2 font format for downloadable fonts.

* The JavaScript engine has been updated with support for many
landmark ECMAScript6 features.

* The way web content is cached has been changed to be more efficient.

* Removed the internal PDF (pre)viewer.

* Disabled building of the devtools.

* Removed the active XSS filter..

* Removed support for Add-on SDK extensions.

* All relevant security fixes up to and including Firefox 50 have
been ported across from Mozilla.

* More info: http://www.palemoon.org/releasenotes.shtml
- Rename package to newmoon (see:https://www.palemoon.org/redist.shtml)
- Build with option: --with-system-icu
- set LD_LIBRARY_PATH
- Add palemoon-27.0.0-link.patch

Thu Sep 29 14:00:00 2016 avvissuAATTyandex.by
- Update to 26.5.0:

* Implemented a breaking CSP (content security policy) spec change.

* Fixed an issue with the XML parser.

* Improved the performance of canvas poisoning by explicitly
parallelizing it.
- Security fixes:

* (CVE-2016-5280)

* Made checking for invalid PNG files more strict.

* Changed the way paletted image frames are allocated so the space
is cleared before it\'s used.

* Fixed a crash in nsNodeUtils::CloneAndAdopt() due to a typo.

* Fixed several memory safety issues and crashes.

Wed Sep 14 14:00:00 2016 avvissuAATTyandex.by
- Update to 26.4.1:

* Fixed a crash in the XSS filter.

* Slightly changed the address bar shading on secure sites to be
more subtle and easily-blended.

* Fixed the occurrence of \"null\" titles in bookmarks dragged from
special folders.

* Fixed an error initializing the browser due to trying to
restore scratchpad data from a stored session when having
switched from a version with devtools to a version without
devtools, and the previous version had scratchpad data saved.

* Fixed some minor issues in scratchpad and gcli devtools.
- Security fixes:

* Updated the HSTS preload list to a much more updated source list,
and performing our own checks on validity from now on to have
the list be as accurate as possible.

* Disabled Triple-DES cipher suites by default.

Sat Aug 20 14:00:00 2016 avvissuAATTyandex.by
- Update to 26.4.0:

* Removed Google Search as a bundled search provider

* Fixed the URL API to allow \"stringification\" of the object per
specification

* Added the ES6 string .includes() function in addition to the
pre-existing

* Fixed the calculation of standalone SVG embeds width and height

* Improved memory allocation

* Updated the SQLite library to 3.13.0

* Download= properties of links are now honored from the context
menu \"Save\" option

* Fixed a crash in the XSS filter
- Security fixes:

* (CVE-2016-5251) Potential URL spoofing in the address bar

* (CVE-2016-0718) Context-dependent crash in expat 2.1.0

* (CVE-2016-5266) Outgoing dataTransfer items are not properly
filtered

* Fixed potentially exploitable crash in the array splice
implementation

* Fixed potentially exploitable crash caused by badly formatted
ICO files

* (CVE-2016-5254) Heap-use-after-free in nsXULPopupManager::KeyDown

Fri Jul 8 14:00:00 2016 avvissuAATTyandex.by
- Update to 26.3.3:

* Small bugfix update

Sun Jun 26 14:00:00 2016 avvissuAATTyandex.by
- Update to 26.3.1:

* Reverted the useragent identification of Firefox compatibility
mode to 38.9

* Added a site-specific override for Google fonts to make sure it
always works even if not using Firefox compatibility mode

Sun Jun 19 14:00:00 2016 avvissuAATTyandex.by
- Initial release


  
ICM