diff options
-rw-r--r-- | newmoon/debian/changelog | 54 | ||||
-rw-r--r-- | newmoon/debian/newmoon+devuan.dsc | 2 | ||||
-rw-r--r-- | palemoon/debian/changelog | 54 | ||||
-rw-r--r-- | palemoon/debian/palemoon+devuan.dsc | 2 | ||||
-rw-r--r-- | palemoon/palemoon.spec | 7 |
5 files changed, 115 insertions, 4 deletions
diff --git a/newmoon/debian/changelog b/newmoon/debian/changelog index 6f276dc..ff61d33 100644 --- a/newmoon/debian/changelog +++ b/newmoon/debian/changelog @@ -1,3 +1,57 @@ +newmoon (28.17.0-1+devuan) obs; urgency=low + + * This is a development, bugfix and security update. + - Changed the way dates and times are formatted in the UI to + properly adhere to the user's regional settings in the O.S. + - Re-enabled the DOM Filesystem API for web compatibility. + - Moved the global user-agent override to the networking component. + See implementation notes. + - Worked around crashes and run-time issues with module scripts. + See implementation notes. + - Fixed a website layout issue with table-styled elements + potentially overlapping when placed inside a flexbox. + - Fixed some code logic issues with websockets. + - Fixed a regression when waking the computer from standby causing + high CPU usage in some uncommon situations. + - Updated the list of prohibited ports the browser can use. See + implementation notes. + - Updated root certificates. + - Windows: Changed the way downloaded files without an extension + are handled. See implementation notes. + - Mac-beta: Improved version detection of MacOS including Big Sur. + - Security issues addressed: CVE-2020-26978 and CVE-2020-35112. + - Unified XUL Platform Mozilla Security Patch Summary: 2 fixed, 1 + deferred to the next release, 16 not applicable. + - The global user-agent override was moved to the networking + component where it is actually implemented. The new preference name is + network.http.useragent.global_override. Please note that using a + blanket override is normally (very) counterproductive and does not, in + fact, help much with privacy. It would also override the compatibility + modes (Native/Gecko/Firefox) in Pale Moon. As such, the browser will + now warn you if the user-agent is globally overridden (in preferences) + and allow you to easily reset that override and re-enable the various + compatibility modes. + - Module scripting caused some persistent and very hard to track + browser crashes that we've narrowed down to a specific optimization in + the JavaScript JIT (Just-In-Time) compiler (IonMonkey). This + optimization is now disabled by default but if you need that little + extra performance (usually only noticed in very optimized code or some + benchmarks) then you can re-enable it, trading in stability, by setting + the new preference javascript.options.ion.inlining to true. + - Prohibited ports: Pale Moon maintains a blacklist of ports the + browser may normally not connect to on servers, to mitigate abusive web + scripting employing your browser as an attack bot on servers (e.g. by + connecting to mail servers or what not), NAT slipstreaming, and similar + security issues. To more thoroughly prevent known abusable ports on + servers, this list was extended with a number of additional default + ports for various non-http protocols. + - Downloaded files without a file extension: When a file without an + extension is downloaded, we will now open the download folder where you + may choose to take any specific action manually, instead of trying to + execute it as a program or through an associated program. + + -- Ben Stack <bgstack15@gmail.com> Fri, 18 Dec 2020 13:52:12 -0500 + newmoon (28.16.0-1+devuan) obs; urgency=low * This is a development and security update to the browser. diff --git a/newmoon/debian/newmoon+devuan.dsc b/newmoon/debian/newmoon+devuan.dsc index 65f4240..65e9f5e 100644 --- a/newmoon/debian/newmoon+devuan.dsc +++ b/newmoon/debian/newmoon+devuan.dsc @@ -2,7 +2,7 @@ Format: 3.0 (quilt) Source: newmoon Binary: newmoon Architecture: any -Version: 28.16.0-1+devuan +Version: 28.17.0-1+devuan Maintainer: B Stack <bgstack15@gmail.com> Homepage: http://www.palemoon.org/ Standards-Version: 4.1.4 diff --git a/palemoon/debian/changelog b/palemoon/debian/changelog index 035b079..ad2dc47 100644 --- a/palemoon/debian/changelog +++ b/palemoon/debian/changelog @@ -1,3 +1,57 @@ +palemoon (28.17.0-1+devuan) obs; urgency=low + + * This is a development, bugfix and security update. + - Changed the way dates and times are formatted in the UI to + properly adhere to the user's regional settings in the O.S. + - Re-enabled the DOM Filesystem API for web compatibility. + - Moved the global user-agent override to the networking component. + See implementation notes. + - Worked around crashes and run-time issues with module scripts. + See implementation notes. + - Fixed a website layout issue with table-styled elements + potentially overlapping when placed inside a flexbox. + - Fixed some code logic issues with websockets. + - Fixed a regression when waking the computer from standby causing + high CPU usage in some uncommon situations. + - Updated the list of prohibited ports the browser can use. See + implementation notes. + - Updated root certificates. + - Windows: Changed the way downloaded files without an extension + are handled. See implementation notes. + - Mac-beta: Improved version detection of MacOS including Big Sur. + - Security issues addressed: CVE-2020-26978 and CVE-2020-35112. + - Unified XUL Platform Mozilla Security Patch Summary: 2 fixed, 1 + deferred to the next release, 16 not applicable. + - The global user-agent override was moved to the networking + component where it is actually implemented. The new preference name is + network.http.useragent.global_override. Please note that using a + blanket override is normally (very) counterproductive and does not, in + fact, help much with privacy. It would also override the compatibility + modes (Native/Gecko/Firefox) in Pale Moon. As such, the browser will + now warn you if the user-agent is globally overridden (in preferences) + and allow you to easily reset that override and re-enable the various + compatibility modes. + - Module scripting caused some persistent and very hard to track + browser crashes that we've narrowed down to a specific optimization in + the JavaScript JIT (Just-In-Time) compiler (IonMonkey). This + optimization is now disabled by default but if you need that little + extra performance (usually only noticed in very optimized code or some + benchmarks) then you can re-enable it, trading in stability, by setting + the new preference javascript.options.ion.inlining to true. + - Prohibited ports: Pale Moon maintains a blacklist of ports the + browser may normally not connect to on servers, to mitigate abusive web + scripting employing your browser as an attack bot on servers (e.g. by + connecting to mail servers or what not), NAT slipstreaming, and similar + security issues. To more thoroughly prevent known abusable ports on + servers, this list was extended with a number of additional default + ports for various non-http protocols. + - Downloaded files without a file extension: When a file without an + extension is downloaded, we will now open the download folder where you + may choose to take any specific action manually, instead of trying to + execute it as a program or through an associated program. + + -- Ben Stack <bgstack15@gmail.com> Fri, 18 Dec 2020 13:52:12 -0500 + palemoon (28.16.0-1+devuan) obs; urgency=low * This is a development and security update to the browser. diff --git a/palemoon/debian/palemoon+devuan.dsc b/palemoon/debian/palemoon+devuan.dsc index 5d48807..e5ed781 100644 --- a/palemoon/debian/palemoon+devuan.dsc +++ b/palemoon/debian/palemoon+devuan.dsc @@ -2,7 +2,7 @@ Format: 3.0 (quilt) Source: palemoon Binary: palemoon Architecture: any -Version: 28.16.0-1+devuan +Version: 28.17.0-1+devuan Maintainer: B Stack <bgstack15@gmail.com> Homepage: http://www.palemoon.org/ Standards-Version: 4.1.4 diff --git a/palemoon/palemoon.spec b/palemoon/palemoon.spec index dbbee22..ba94271 100644 --- a/palemoon/palemoon.spec +++ b/palemoon/palemoon.spec @@ -5,7 +5,7 @@ %global stackrpms_custom 1 # derive from inside the full source tree or from notes at https://github.com/MoonchildProductions/Pale-Moon/releases # git submodule | awk -v "name=platform" '$2 == name {gsub("-","",$1); print $1}' -%global submodule_platform_tag RELBASE_20201124 +%global submodule_platform_tag RELBASE_20201218 # additional repos to get python27 and devtoolset-7 # for el6 and el7: Software Collection;, for x86_64 only @@ -42,7 +42,7 @@ Name: palemoon-stackrpms Name: palemoon %endif Summary: Pale Moon web browser -Version: 28.16.0 +Version: 28.17.0 Release: 1 Group: Networking/Web @@ -285,6 +285,9 @@ update-mime-database -n ${_datadir}/mime 1>/dev/null 2>&1 & : %doc AUTHORS LICENSE %changelog +* Fri Dec 18 2020 B Stack <bgstack15@gmail.com> - 28.17.0-1 +- update version + * Wed Nov 25 2020 B Stack <bgstack15@gmail.com> - 28.16.0-1 - update version |