Opened 4 years ago
Closed 4 years ago
Last modified 4 years ago
#12242 closed enhancement (fixed)
|Reported by:||Owned by:|
Release is nominally Tuesday (which it now is, in my TZ), but the source has been there for a few hours.
Apart from needing a newer rust, changes to shipped versions include harfbuzz-2.4.0, icu-64.2 (although it still only seems to test for >= 63.1 in the system version when I looked), libpng-1.6.37, nss-3.44.1, sqlite-3.28.0. In external deps, cbindgen needs to be >= 0.8.7.
The options to enable|disable gconf have been removed.
Until the Release Notes appear, no idea what mozilla regard as the significant changes, nor if there are any new CVE fixes.
Change History (4)
comment:1 by , 4 years ago
|Status:||new → assigned|
comment:2 by , 4 years ago
comment:3 by , 4 years ago
|Status:||assigned → closed|
comment:4 by , 4 years ago
|Priority:||normal → high|
And lo, a list of vulnerabilities did appear.
Various CVEs rated as moderate - I think the moderate vulnerabilities include the item mentioned above, but there are also high risk and critical fixes.
From the Release Notes: (comments in parenthesis are min)
This is also the start of the next Extended Support Release (esr)