libmozjs-128-0-128.2.0-2.1 RPM for x86_64

From OpenSuSE Tumbleweed for x86_64

JavaScript is the Netscape-developed object scripting language used in millions
of web pages and server applications worldwide. Netscape's JavaScript is a
superset of the ECMA-262 Edition 3 (ECMAScript) standard scripting language,
with only mild differences from the published standard.

This package contains the JavaScript's library.

Provides

• libmozjs-128-0
• libmozjs-128-0(x86-64)
• libmozjs-128.so.0()(64bit)
• libmozjs-128.so.0(mozjs_128)(64bit)

Requires

• /sbin/ldconfig
• /sbin/ldconfig
• ld-linux-x86-64.so.2()(64bit)
• ld-linux-x86-64.so.2(GLIBC_2.3)(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.14)(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.18)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.25)(64bit)
• libc.so.6(GLIBC_2.28)(64bit)
• libc.so.6(GLIBC_2.3)(64bit)
• libc.so.6(GLIBC_2.3.2)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.32)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.38)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libgcc_s.so.1()(64bit)
• libgcc_s.so.1(GCC_3.0)(64bit)
• libgcc_s.so.1(GCC_3.3)(64bit)
• libgcc_s.so.1(GCC_4.2.0)(64bit)
• libicui18n.so.75()(64bit)
• libicuuc.so.75()(64bit)
• libm.so.6()(64bit)
• libm.so.6(GLIBC_2.2.5)(64bit)
• libm.so.6(GLIBC_2.27)(64bit)
• libm.so.6(GLIBC_2.29)(64bit)
• libstdc++.so.6()(64bit)
• libstdc++.so.6(CXXABI_1.3)(64bit)
• libstdc++.so.6(GLIBCXX_3.4)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.11)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.14)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.15)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.18)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.21)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.9)(64bit)
• libz.so.1()(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1

License

MPL-2.0

Changelog

* Mon Sep 30 2024 Cliff Zhao <qzhao@suse.com>
  - Add mozjs128-CVE-2024-45492.patch:
    Backporting 9bf0f2c1 from libexpat upstream, Detect integer
    overflow in function nextScaffoldPart.
    (CVE-2024-45492, bsc#1230038)
* Mon Sep 30 2024 Cliff Zhao <qzhao@suse.com>
  - Add mozjs128-CVE-2024-45491.patch:
    Backporting 8e439a99 from libexpat upstream, Detect integer
    overflow in dtdCopy.
    (CVE-2024-45491, bsc#1230037)
* Mon Sep 30 2024 Cliff Zhao <qzhao@suse.com>
  - Add mozjs128-CVE-2024-45490-part01-5c1a3164.patch:
    Backporting 5c1a3164 from libexpat upstream, Reject negative len
    for XML_ParseBuffer.
    CVE-2024-45490's fixes including 3 parts: 5c1a3164 for libexpat
    sources; c12f039b for libexpat tests; 2db23301 for libexpat docs;
    Because mozjs only embeds libexpat sources, so unnecessary to
    port prart02 and part03.
    (CVE-2024-45490, bsc#1230036)
* Wed Sep 25 2024 Bjørn Lie <bjorn.lie@gmail.com>
  - Update to version 128.2.0:
    + CVE-2024-8385: WASM type confusion involving ArrayTypes
    + CVE-2024-8381: Type confusion when looking up a property name
      in a "with" block
    + CVE-2024-8382: Internal event interfaces were exposed to web
      content when browser EventHandler listener callbacks ran
    + CVE-2024-8383: Firefox did not ask before openings news: links
      in an external application
    + CVE-2024-8384: Garbage collection could mis-color
      cross-compartment objects in OOM conditions
    + CVE-2024-8386: SelectElements could be shown over another site
      if popups are allowed
    + CVE-2024-8387: Memory safety bugs fixed in Firefox 130,
      Firefox ESR 128.2, and Thunderbird 128.2
  - Drop 0001-Skip-failing-tests-on-ppc64-and-s390x.patch: Fixed
    upstream.
* Fri Aug 30 2024 Bjørn Lie <bjorn.lie@gmail.com>
  - Initial build for openSUSE.

Files

/usr/lib64/libmozjs-128.so.0
/usr/lib64/libmozjs-128.so.0.0.0
/usr/share/licenses/libmozjs-128-0
/usr/share/licenses/libmozjs-128-0/LICENSE

Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Oct 4 00:53:07 2024