spidermonkey-115.9.1

[ken@…]

Firefox-115.9.0esr now available.

As before, I have no opinion on whether files outside js/src might be picked up during a build.

A diff of changes in js/src since 115.9.0 shows the followign files have changed:

1. Firefox-esr has now updated to tzdata2024a, causing changes in the following:

js/src/builtin/intl/TimeZoneDataGenerated.h

js/src/tests/non262/Intl/DateTimeFormat/timeZone_backward_links.js

js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone.js

js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone_links.js

js/src/tests/non262/Intl/DateTimeFormat/timeZone_notbackward_links.js

js/src/tests/non262/Intl/DateTimeFormat/timeZone_version.js

js/src/tests/non262/Intl/supportedValuesOf-timeZones-canonical.js

2, One other changed file:

js/src/jit/arm/MacroAssembler-arm.cpp

[Douglas R. Reno]

CVE-2024-29944: Privileged JavaScript Execution via Event Handlers

Reporter

Manfred Paul via Trend Micro's Zero Day Initiative

Impact

critical

Description

An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does not affect mobile versions of Firefox.

[Xi Ruoyao]

Hmm, the number of test failures with system ICU seems decreasing from 42 to 39.

[ken@…]

The change is removals of code in browser/components/sessionstore/SessionStore.sys.mjs

For ff124.0.1 there are also small removals in js/src. As always, I have no idea about any of this in terms of what mozjs actually compiles.

[Douglas R. Reno]

Fixed at 27d7de87f3129d2a10020b75821090749bff5ec2