This is a test build for the update to ESR 38. This will *not* pushed as an update. It is just for testing the migration to 38 to make sure there are no issues, so that we can quickly update to 38.1 when it becomes available (I've heard that will be next week). The nss update will be pushed with the 38.1 update (as will the sqlite3 update for Mageia 4). One interesting addition in ESR 38 is en_US langpacks, so there are now firefox-en_US and thunderbird-en_US packages. Now we English users can make sure to always test l10n too. Also, this will solve the issue of the firefox and thunderbird packages in Mageia 5 making you choose to install a l10n package even if you didn't need one, because it has a Recommends on it. No more installing en_GB or en_ZA, just install en_US :o) Additionally, the nsinstall subpackage of thunderbird has been dropped. Some advisory notes for the eventual update: A vulnerability in the TLS protocol allows a man-in-the-middle attacker to downgrade vulnerable TLS connections using ephemeral Diffie-Hellman key exchange to 512-bit export-grade cryptography. This vulnerability is known as Logjam (CVE-2015-4000). The nss package has been updated to version 3.19.2, which fixes issues related to the minimum key sizes of finite field algorithms, including CVE-2015-4000. The Mageia 4 sqlite3 package has also been updated to version 3.8.10.2, fixing an index corruption issue. Mageia 5 already shipped with version 3.8.10.2. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000 https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.2_release_notes http://www.sqlite.org/releaselog/3_8_10_2.html ======================== Updated packages in core/updates_testing: ======================== libsqlite3_0-3.8.10.2-1.mga4 libsqlite3-devel-3.8.10.2-1.mga4 libsqlite3-static-devel-3.8.10.2-1.mga4 sqlite3-tools-3.8.10.2-1.mga4 lemon-3.8.10.2-1.mga4 sqlite3-tcl-3.8.10.2-1.mga4 nss-3.19.2-1.mga4 nss-doc-3.19.2-1.mga4 libnss3-3.19.2-1.mga4 libnss-devel-3.19.2-1.mga4 libnss-static-devel-3.19.2-1.mga4 firefox-38.0.1-1.mga4 firefox-devel-38.0.1-1.mga4 firefox-af-38.0.1-1.mga4 firefox-ar-38.0.1-1.mga4 firefox-as-38.0.1-1.mga4 firefox-ast-38.0.1-1.mga4 firefox-az-38.0.1-1.mga4 firefox-be-38.0.1-1.mga4 firefox-bg-38.0.1-1.mga4 firefox-bn_IN-38.0.1-1.mga4 firefox-bn_BD-38.0.1-1.mga4 firefox-br-38.0.1-1.mga4 firefox-bs-38.0.1-1.mga4 firefox-ca-38.0.1-1.mga4 firefox-cs-38.0.1-1.mga4 firefox-cy-38.0.1-1.mga4 firefox-da-38.0.1-1.mga4 firefox-de-38.0.1-1.mga4 firefox-el-38.0.1-1.mga4 firefox-en_GB-38.0.1-1.mga4 firefox-en_US-38.0.1-1.mga4 firefox-en_ZA-38.0.1-1.mga4 firefox-eo-38.0.1-1.mga4 firefox-es_AR-38.0.1-1.mga4 firefox-es_CL-38.0.1-1.mga4 firefox-es_ES-38.0.1-1.mga4 firefox-es_MX-38.0.1-1.mga4 firefox-et-38.0.1-1.mga4 firefox-eu-38.0.1-1.mga4 firefox-fa-38.0.1-1.mga4 firefox-ff-38.0.1-1.mga4 firefox-fi-38.0.1-1.mga4 firefox-fr-38.0.1-1.mga4 firefox-fy_NL-38.0.1-1.mga4 firefox-ga_IE-38.0.1-1.mga4 firefox-gd-38.0.1-1.mga4 firefox-gl-38.0.1-1.mga4 firefox-gu_IN-38.0.1-1.mga4 firefox-he-38.0.1-1.mga4 firefox-hi_IN-38.0.1-1.mga4 firefox-hr-38.0.1-1.mga4 firefox-hsb-38.0.1-1.mga4 firefox-hu-38.0.1-1.mga4 firefox-hy_AM-38.0.1-1.mga4 firefox-id-38.0.1-1.mga4 firefox-is-38.0.1-1.mga4 firefox-it-38.0.1-1.mga4 firefox-ja-38.0.1-1.mga4 firefox-kk-38.0.1-1.mga4 firefox-km-38.0.1-1.mga4 firefox-kn-38.0.1-1.mga4 firefox-ko-38.0.1-1.mga4 firefox-lij-38.0.1-1.mga4 firefox-lt-38.0.1-1.mga4 firefox-lv-38.0.1-1.mga4 firefox-mai-38.0.1-1.mga4 firefox-mk-38.0.1-1.mga4 firefox-ml-38.0.1-1.mga4 firefox-mr-38.0.1-1.mga4 firefox-ms-38.0.1-1.mga4 firefox-nl-38.0.1-1.mga4 firefox-or-38.0.1-1.mga4 firefox-pa_IN-38.0.1-1.mga4 firefox-pl-38.0.1-1.mga4 firefox-pt_BR-38.0.1-1.mga4 firefox-pt_PT-38.0.1-1.mga4 firefox-ro-38.0.1-1.mga4 firefox-ru-38.0.1-1.mga4 firefox-si-38.0.1-1.mga4 firefox-sk-38.0.1-1.mga4 firefox-sl-38.0.1-1.mga4 firefox-sq-38.0.1-1.mga4 firefox-sr-38.0.1-1.mga4 firefox-sv_SE-38.0.1-1.mga4 firefox-ta-38.0.1-1.mga4 firefox-te-38.0.1-1.mga4 firefox-th-38.0.1-1.mga4 firefox-tr-38.0.1-1.mga4 firefox-uk-38.0.1-1.mga4 firefox-uz-38.0.1-1.mga4 firefox-vi-38.0.1-1.mga4 firefox-xh-38.0.1-1.mga4 firefox-zh_CN-38.0.1-1.mga4 firefox-zh_TW-38.0.1-1.mga4 thunderbird-38.0.1-1.mga4 thunderbird-enigmail-38.0.1-1.mga4 thunderbird-ar-38.0.1-1.mga4 thunderbird-ast-38.0.1-1.mga4 thunderbird-be-38.0.1-1.mga4 thunderbird-bg-38.0.1-1.mga4 thunderbird-bn_BD-38.0.1-1.mga4 thunderbird-br-38.0.1-1.mga4 thunderbird-ca-38.0.1-1.mga4 thunderbird-cs-38.0.1-1.mga4 thunderbird-cy-38.0.1-1.mga4 thunderbird-da-38.0.1-1.mga4 thunderbird-de-38.0.1-1.mga4 thunderbird-el-38.0.1-1.mga4 thunderbird-en_GB-38.0.1-1.mga4 thunderbird-en_US-38.0.1-1.mga4 thunderbird-es_AR-38.0.1-1.mga4 thunderbird-es_ES-38.0.1-1.mga4 thunderbird-et-38.0.1-1.mga4 thunderbird-eu-38.0.1-1.mga4 thunderbird-fi-38.0.1-1.mga4 thunderbird-fr-38.0.1-1.mga4 thunderbird-fy_NL-38.0.1-1.mga4 thunderbird-ga_IE-38.0.1-1.mga4 thunderbird-gd-38.0.1-1.mga4 thunderbird-gl-38.0.1-1.mga4 thunderbird-he-38.0.1-1.mga4 thunderbird-hr-38.0.1-1.mga4 thunderbird-hsb-38.0.1-1.mga4 thunderbird-hu-38.0.1-1.mga4 thunderbird-hy_AM-38.0.1-1.mga4 thunderbird-id-38.0.1-1.mga4 thunderbird-is-38.0.1-1.mga4 thunderbird-it-38.0.1-1.mga4 thunderbird-ja-38.0.1-1.mga4 thunderbird-ko-38.0.1-1.mga4 thunderbird-lt-38.0.1-1.mga4 thunderbird-nl-38.0.1-1.mga4 thunderbird-pa_IN-38.0.1-1.mga4 thunderbird-pl-38.0.1-1.mga4 thunderbird-pt_BR-38.0.1-1.mga4 thunderbird-pt_PT-38.0.1-1.mga4 thunderbird-ro-38.0.1-1.mga4 thunderbird-ru-38.0.1-1.mga4 thunderbird-si-38.0.1-1.mga4 thunderbird-sk-38.0.1-1.mga4 thunderbird-sl-38.0.1-1.mga4 thunderbird-sq-38.0.1-1.mga4 thunderbird-sv_SE-38.0.1-1.mga4 thunderbird-ta_LK-38.0.1-1.mga4 thunderbird-tr-38.0.1-1.mga4 thunderbird-uk-38.0.1-1.mga4 thunderbird-vi-38.0.1-1.mga4 thunderbird-zh_CN-38.0.1-1.mga4 thunderbird-zh_TW-38.0.1-1.mga4 nss-3.19.2-1.mga5 nss-doc-3.19.2-1.mga5 libnss3-3.19.2-1.mga5 libnss-devel-3.19.2-1.mga5 libnss-static-devel-3.19.2-1.mga5 firefox-38.0.1-1.mga5 firefox-devel-38.0.1-1.mga5 firefox-af-38.0.1-1.mga5 firefox-ar-38.0.1-1.mga5 firefox-as-38.0.1-1.mga5 firefox-ast-38.0.1-1.mga5 firefox-az-38.0.1-1.mga5 firefox-be-38.0.1-1.mga5 firefox-bg-38.0.1-1.mga5 firefox-bn_IN-38.0.1-1.mga5 firefox-bn_BD-38.0.1-1.mga5 firefox-br-38.0.1-1.mga5 firefox-bs-38.0.1-1.mga5 firefox-ca-38.0.1-1.mga5 firefox-cs-38.0.1-1.mga5 firefox-cy-38.0.1-1.mga5 firefox-da-38.0.1-1.mga5 firefox-de-38.0.1-1.mga5 firefox-el-38.0.1-1.mga5 firefox-en_GB-38.0.1-1.mga5 firefox-en_US-38.0.1-1.mga5 firefox-en_ZA-38.0.1-1.mga5 firefox-eo-38.0.1-1.mga5 firefox-es_AR-38.0.1-1.mga5 firefox-es_CL-38.0.1-1.mga5 firefox-es_ES-38.0.1-1.mga5 firefox-es_MX-38.0.1-1.mga5 firefox-et-38.0.1-1.mga5 firefox-eu-38.0.1-1.mga5 firefox-fa-38.0.1-1.mga5 firefox-ff-38.0.1-1.mga5 firefox-fi-38.0.1-1.mga5 firefox-fr-38.0.1-1.mga5 firefox-fy_NL-38.0.1-1.mga5 firefox-ga_IE-38.0.1-1.mga5 firefox-gd-38.0.1-1.mga5 firefox-gl-38.0.1-1.mga5 firefox-gu_IN-38.0.1-1.mga5 firefox-he-38.0.1-1.mga5 firefox-hi_IN-38.0.1-1.mga5 firefox-hr-38.0.1-1.mga5 firefox-hsb-38.0.1-1.mga5 firefox-hu-38.0.1-1.mga5 firefox-hy_AM-38.0.1-1.mga5 firefox-id-38.0.1-1.mga5 firefox-is-38.0.1-1.mga5 firefox-it-38.0.1-1.mga5 firefox-ja-38.0.1-1.mga5 firefox-kk-38.0.1-1.mga5 firefox-km-38.0.1-1.mga5 firefox-kn-38.0.1-1.mga5 firefox-ko-38.0.1-1.mga5 firefox-lij-38.0.1-1.mga5 firefox-lt-38.0.1-1.mga5 firefox-lv-38.0.1-1.mga5 firefox-mai-38.0.1-1.mga5 firefox-mk-38.0.1-1.mga5 firefox-ml-38.0.1-1.mga5 firefox-mr-38.0.1-1.mga5 firefox-ms-38.0.1-1.mga5 firefox-nl-38.0.1-1.mga5 firefox-or-38.0.1-1.mga5 firefox-pa_IN-38.0.1-1.mga5 firefox-pl-38.0.1-1.mga5 firefox-pt_BR-38.0.1-1.mga5 firefox-pt_PT-38.0.1-1.mga5 firefox-ro-38.0.1-1.mga5 firefox-ru-38.0.1-1.mga5 firefox-si-38.0.1-1.mga5 firefox-sk-38.0.1-1.mga5 firefox-sl-38.0.1-1.mga5 firefox-sq-38.0.1-1.mga5 firefox-sr-38.0.1-1.mga5 firefox-sv_SE-38.0.1-1.mga5 firefox-ta-38.0.1-1.mga5 firefox-te-38.0.1-1.mga5 firefox-th-38.0.1-1.mga5 firefox-tr-38.0.1-1.mga5 firefox-uk-38.0.1-1.mga5 firefox-uz-38.0.1-1.mga5 firefox-vi-38.0.1-1.mga5 firefox-xh-38.0.1-1.mga5 firefox-zh_CN-38.0.1-1.mga5 firefox-zh_TW-38.0.1-1.mga5 thunderbird-38.0.1-1.mga5 thunderbird-enigmail-38.0.1-1.mga5 thunderbird-ar-38.0.1-1.mga5 thunderbird-ast-38.0.1-1.mga5 thunderbird-be-38.0.1-1.mga5 thunderbird-bg-38.0.1-1.mga5 thunderbird-bn_BD-38.0.1-1.mga5 thunderbird-br-38.0.1-1.mga5 thunderbird-ca-38.0.1-1.mga5 thunderbird-cs-38.0.1-1.mga5 thunderbird-cy-38.0.1-1.mga5 thunderbird-da-38.0.1-1.mga5 thunderbird-de-38.0.1-1.mga5 thunderbird-el-38.0.1-1.mga5 thunderbird-en_GB-38.0.1-1.mga5 thunderbird-en_US-38.0.1-1.mga5 thunderbird-es_AR-38.0.1-1.mga5 thunderbird-es_ES-38.0.1-1.mga5 thunderbird-et-38.0.1-1.mga5 thunderbird-eu-38.0.1-1.mga5 thunderbird-fi-38.0.1-1.mga5 thunderbird-fr-38.0.1-1.mga5 thunderbird-fy_NL-38.0.1-1.mga5 thunderbird-ga_IE-38.0.1-1.mga5 thunderbird-gd-38.0.1-1.mga5 thunderbird-gl-38.0.1-1.mga5 thunderbird-he-38.0.1-1.mga5 thunderbird-hr-38.0.1-1.mga5 thunderbird-hsb-38.0.1-1.mga5 thunderbird-hu-38.0.1-1.mga5 thunderbird-hy_AM-38.0.1-1.mga5 thunderbird-id-38.0.1-1.mga5 thunderbird-is-38.0.1-1.mga5 thunderbird-it-38.0.1-1.mga5 thunderbird-ja-38.0.1-1.mga5 thunderbird-ko-38.0.1-1.mga5 thunderbird-lt-38.0.1-1.mga5 thunderbird-nl-38.0.1-1.mga5 thunderbird-pa_IN-38.0.1-1.mga5 thunderbird-pl-38.0.1-1.mga5 thunderbird-pt_BR-38.0.1-1.mga5 thunderbird-pt_PT-38.0.1-1.mga5 thunderbird-ro-38.0.1-1.mga5 thunderbird-ru-38.0.1-1.mga5 thunderbird-si-38.0.1-1.mga5 thunderbird-sk-38.0.1-1.mga5 thunderbird-sl-38.0.1-1.mga5 thunderbird-sq-38.0.1-1.mga5 thunderbird-sv_SE-38.0.1-1.mga5 thunderbird-ta_LK-38.0.1-1.mga5 thunderbird-tr-38.0.1-1.mga5 thunderbird-uk-38.0.1-1.mga5 thunderbird-vi-38.0.1-1.mga5 thunderbird-zh_CN-38.0.1-1.mga5 thunderbird-zh_TW-38.0.1-1.mga5 from SRPMS: sqlite3-3.8.10.2-1.mga4.src.rpm nss-3.19.2-1.mga4.src.rpm firefox-38.0.1-1.mga4.src.rpm firefox-l10n-38.0.1-1.mga4.src.rpm thunderbird-38.0.1-1.mga4.src.rpm thunderbird-l10n-38.0.1-1.mga4.src.rpm nss-3.19.2-1.mga5.src.rpm firefox-38.0.1-1.mga5.src.rpm firefox-l10n-38.0.1-1.mga5.src.rpm thunderbird-38.0.1-1.mga5.src.rpm thunderbird-l10n-38.0.1-1.mga5.src.rpm Reproducible: Steps to Reproduce:
Whiteboard: (none) => MGA4TOO
Works good both firefox thunderbird with Mageia 5 x86_64 lightning is integrated to main thunderbird so that extension can be obsoleted now.
CC: (none) => ozkyster
I'll mark has_procedure mark to whiteboard.
Whiteboard: MGA4TOO => MGA4TOO has_procedure
firefox: no obvious issues, flash-player-plugin - ok thunderbird: no obvious issues, created user, sent mail to pop3 - ok, received ok
CC: (none) => westel
Firefox tested Mga5 and 4 both arch not problems found flash icedtea html5 works tested that new openh264 codec works. Thunderbird Mga5 and 4 both arch no problems pop3 imap works with gmail. Need to wait for advisory so no validate it yet.
Whiteboard: MGA4TOO has_procedure => MGA4TOO has_procedure MGA4-64-OK MGA4-32-OK MGA5-64-OK MGA5-32-OK
On mga5 64bit (en_GB) the thunderbird packages installed cleanly except that urpmi reported: (process:26441): GLib-CRITICAL **: g_slice_set_config: assertion 'sys_page_size == 0' failed I've no idea as to the significance of that. Testing results: Mail retrieval via pop from my ISP's mail server and sending via my ISP's server both work and my mail filters are all correctly applied Usenet and RSS feeds working normally Unix Movemail account functioning normally I installed the Lightning Add-on from Mozilla. (Perhaps we should alert users that they will have to do this in future. I assume that it will not be packaged.) It installed cleanly. It recognized my Calendar and is working normally - to the extent that I use it. I do not use the "tasks" feature.
According to Mozilla, the calendar should be installed and enabled by default in thunderbird 38.0.1. This did not happen on my system. As I reported in comment #5 I had to download the Lightning Add-on from Mozilla.
A thought about the calendar, perhaps this update should obsolete the thunderbird-lightning package. Perhaps its presence on my system is why the default installation did not provide the calendar extension.
(In reply to Otto Leipälä from comment #4) > Firefox tested Mga5 and 4 both arch not problems found flash icedtea html5 > works tested that new openh264 codec works. > Thunderbird Mga5 and 4 both arch no problems pop3 imap works with gmail. > Need to wait for advisory so no validate it yet. Thanks for testing. As I said, this version will not be validated and pushed. (In reply to James Kerr from comment #7) > A thought about the calendar, perhaps this update should obsolete the > thunderbird-lightning package. Perhaps its presence on my system is why the > default installation did not provide the calendar extension. Can you try uninstalling thunderbird-lightning (and the extension you manually downloaded) then and see?
It should not be possible because ligthning is integrated to main thunderbird package from 38.0. You need to try with new profile to get it working. https://wiki.mozilla.org/Thunderbird/Thunderbird38 https://bugzilla.mozilla.org/show_bug.cgi?id=1113183
(In reply to David Walser from comment #8) > (In reply to Otto Leipälä from comment #4) > > Firefox tested Mga5 and 4 both arch not problems found flash icedtea html5 > > works tested that new openh264 codec works. > > Thunderbird Mga5 and 4 both arch no problems pop3 imap works with gmail. > > Need to wait for advisory so no validate it yet. > > Thanks for testing. As I said, this version will not be validated and > pushed. > > (In reply to James Kerr from comment #7) > > A thought about the calendar, perhaps this update should obsolete the > > thunderbird-lightning package. Perhaps its presence on my system is why the > > default installation did not provide the calendar extension. > > Can you try uninstalling thunderbird-lightning (and the extension you > manually downloaded) then and see? I noticed it now that and remember it we change from 38.1 to new esr.
I'll take ok marks away now as this not version we push to updates.
Whiteboard: MGA4TOO has_procedure MGA4-64-OK MGA4-32-OK MGA5-64-OK MGA5-32-OK => MGA4TOO has_procedure
None of the following worked: Remove the thunderbird-lightning package and the downloaded Add-on Reinstall thunderbird using replacepkgs Remove and install again thunderbird I'm quite happy downloading and installing the Add-on from Mozilla. Starting over with a new profile, as suggested by Otto, is not a solution for me nor I expect for many other thunderbird/lightning users.
I've been using Firefox and the related dependencies on Mageia 5 64bit for a couple of days, works like a charm.
According to arch wiki it's build config to enable it at build time. https://bbs.archlinux.org/viewtopic.php?id=198536 https://developer.mozilla.org/en-US/docs/Simple_Thunderbird_build#Building_Thunderbird_and_Lightning
(In reply to Otto Leipälä from comment #14) > According to arch wiki it's build config to enable it at build time. > > https://bbs.archlinux.org/viewtopic.php?id=198536 > > https://developer.mozilla.org/en-US/docs/ > Simple_Thunderbird_build#Building_Thunderbird_and_Lightning Thanks Otto! I've pushed thunderbird-38.0.1-2.mga4 and thunderbird-38.0.1-2.mga5 to the build system, which should enable the lightning build. The build system is being slow so it'll be a few hours before they're available, but please test when they are.
I restored my system to its original state with the release versions of thunderbird, lightning and thunderbird-en_GB and then installed the new thunderbird package from testing, thunderbird-38.0.1-2.mga5.x86_64 The update installed cleanly (although urpmi again displayed the GLib-CRITICAL message that I reported in comment #5). On opening thunderbird I was able to access my calendar. The list of installed Add-ons confirmed that the update had removed lightning v3 and installed lightning v4. I'll do some more testing, but this version of the thunderbird package seems to be OK.
(In reply to David Walser from comment #15) > (In reply to Otto Leipälä from comment #14) > > According to arch wiki it's build config to enable it at build time. > > > > https://bbs.archlinux.org/viewtopic.php?id=198536 > > > > https://developer.mozilla.org/en-US/docs/ > > Simple_Thunderbird_build#Building_Thunderbird_and_Lightning > > Thanks Otto! > > I've pushed thunderbird-38.0.1-2.mga4 and thunderbird-38.0.1-2.mga5 to the > build system, which should enable the lightning build. The build system is > being slow so it'll be a few hours before they're available, but please test > when they are. Awesome works fine here no any problems with lightning.
thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a mailserver using STARTTLS + encrypted password. Connecting is impossible. This happens on a 32bit Mga5 system. (The same was seen in caudron, with the Thunderbird update there on a 64bit system)
CC: (none) => marja11
(In reply to Marja van Waes from comment #18) > thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a > mailserver using STARTTLS + encrypted password. > > Connecting is impossible. This happens on a 32bit Mga5 system. > > (The same was seen in caudron, with the Thunderbird update there on a 64bit > system) server type: IMAP
(In reply to Marja van Waes from comment #19) > (In reply to Marja van Waes from comment #18) > > thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a > > mailserver using STARTTLS + encrypted password. > > > > Connecting is impossible. This happens on a 32bit Mga5 system. > > > > (The same was seen in caudron, with the Thunderbird update there on a 64bit > > system) > > server type: IMAP And the same configuration works with older Thunderbird?
CC: (none) => mageia
(In reply to Sander Lepik from comment #20) > (In reply to Marja van Waes from comment #19) > > (In reply to Marja van Waes from comment #18) > > > thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a > > > mailserver using STARTTLS + encrypted password. > > > > > > Connecting is impossible. This happens on a 32bit Mga5 system. > > > > > > (The same was seen in caudron, with the Thunderbird update there on a 64bit > > > system) > > > > server type: IMAP > > And the same configuration works with older Thunderbird? yes I checked it worked on this Mageia 5 32bits install, right before updating On the 64bit cauldron machine the older Thunderbird also worked fine for that mailbox, but the update didn't Note that I don't have issues with other IMAP mailboxes, with SSL/TLS and normal password (not encrypted)
I guess the next thing to try is downloading from upstream and see if their build is similarly broken.
(In reply to David Walser from comment #22) > I guess the next thing to try is downloading from upstream and see if their > build is similarly broken. thunderbird-38.0.1 from upstream has the same problem. I'll file a bug report (or find an existing one) tomorrow
upstream report: https://bugzilla.mozilla.org/show_bug.cgi?id=1179002
RedHat has issued an advisory for Firefox on June 2: https://rhn.redhat.com/errata/RHSA-2015-1207.html Even though Thunderbird 38.1 was included in the upstream announcements yesterday, the tarball is not yet available. Hopefully they'll fix Marja's bug. Anyway, we'll split that off onto another bug and just do (mga4-sqlite3/)nss/firefox in this bug. RedHat's advisory is missing some CVEs because they were fixed in NSS 3.19.1, which they already issued an advisory for on June 25, but the other CVEs weren't public yet: https://rhn.redhat.com/errata/RHSA-2015-1185.html RedHat's advisory also has some extra CVEs, because their previous Firefox update was to 38.0, so they have some CVEs that affected 38.0 but did not affect (our) 31.7. New NSS 3.19.1 CVEs: https://www.mozilla.org/en-US/security/advisories/mfsa2015-64/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2730 https://www.mozilla.org/en-US/security/advisories/mfsa2015-71/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2721 CVEs that affected only FF 38.0 and don't affect us: CVE-2015-2725 and CVE-2015-2726 from MFSA2015-59 (CVE-2015-2724 does affect us) CVE-2015-2727 from MFSA2015-60 CVE-2015-2729 from MFSA2015-62 CVE-2015-2731 from MFSA2015-63 CVE-2015-2741 from MFSA2015-67 Finally, these ones affect Firefox but not Thunderbird: CVE-2015-2728 from MFSA2015-61 CVE-2015-2722 and CVE-2015-2733 from MFSA2015-65 CVE-2015-2743 from MFSA2015-69 Advisory (NSS and Firefox): ======================== Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox (CVE-2015-2722, CVE-2015-2724, CVE-2015-2728, CVE-2015-2733, CVE-2015-2734, CVE-2015-2735, CVE-2015-2736, CVE-2015-2737, CVE-2015-2738, CVE-2015-2739, CVE-2015-2740). A flaw was discovered in Mozilla's PDF.js PDF file viewer. When combined with another vulnerability, it could allow execution of arbitrary code with the privileges of the user running Firefox (CVE-2015-2743). A vulnerability in the TLS protocol allows a man-in-the-middle attacker to downgrade vulnerable TLS connections using ephemeral Diffie-Hellman key exchange to 512-bit export-grade cryptography. This vulnerability is known as Logjam (CVE-2015-4000). Security researcher Karthikeyan Bhargavan reported an issue in Network Security Services (NSS) where the client allows for a ECDHE_ECDSA exchange where the server does not send its ServerKeyExchange message instead of aborting the handshake. Instead, the NSS client will take the EC key from the ECDSA certificate. This violates the TLS protocol and also has some security implications for forward secrecy. In this situation, the browser thinks it is engaged in an ECDHE exchange, but has been silently downgraded to a non-forward secret mixed-ECDH exchange instead. As a result, if False Start is enabled, the browser will start sending data encrypted under these non-forward-secret connection keys (CVE-2015-2721). Mozilla community member Watson Ladd reported that the implementation of Elliptical Curve Cryptography (ECC) multiplication for Elliptic Curve Digital Signature Algorithm (ECDSA) signature validation in Network Security Services (NSS) did not handle exceptional cases correctly. This could potentially allow for signature forgery (CVE-2015-2730). The nss package has been updated to version 3.19.2, which fixes issues related to the minimum key sizes of finite field algorithms, including CVE-2015-4000. It also fixes CVE-2015-2721 and CVE-2015-2730. The Mageia 4 sqlite3 package has also been updated to version 3.8.10.2, fixing an index corruption issue. Mageia 5 already shipped with version 3.8.10.2. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2721 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2722 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2724 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2728 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2730 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2733 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2734 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2735 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2736 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2737 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2738 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2739 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2740 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2743 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000 https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.2_release_notes http://www.sqlite.org/releaselog/3_8_10_2.html https://www.mozilla.org/en-US/security/advisories/mfsa2015-59/ https://www.mozilla.org/en-US/security/advisories/mfsa2015-61/ https://www.mozilla.org/en-US/security/advisories/mfsa2015-64/ https://www.mozilla.org/en-US/security/advisories/mfsa2015-65/ https://www.mozilla.org/en-US/security/advisories/mfsa2015-66/ https://www.mozilla.org/en-US/security/advisories/mfsa2015-69/ https://www.mozilla.org/en-US/security/advisories/mfsa2015-70/ https://www.mozilla.org/en-US/security/advisories/mfsa2015-71/ https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/ https://rhn.redhat.com/errata/RHSA-2015-1185.html https://rhn.redhat.com/errata/RHSA-2015-1207.html ======================== Updated packages in core/updates_testing: ======================== libsqlite3_0-3.8.10.2-1.mga4 libsqlite3-devel-3.8.10.2-1.mga4 libsqlite3-static-devel-3.8.10.2-1.mga4 sqlite3-tools-3.8.10.2-1.mga4 lemon-3.8.10.2-1.mga4 sqlite3-tcl-3.8.10.2-1.mga4 nss-3.19.2-1.mga4 nss-doc-3.19.2-1.mga4 libnss3-3.19.2-1.mga4 libnss-devel-3.19.2-1.mga4 libnss-static-devel-3.19.2-1.mga4 firefox-38.1.0-1.mga4 firefox-devel-38.1.0-1.mga4 firefox-af-38.1.0-1.mga4 firefox-ar-38.1.0-1.mga4 firefox-as-38.1.0-1.mga4 firefox-ast-38.1.0-1.mga4 firefox-az-38.1.0-1.mga4 firefox-be-38.1.0-1.mga4 firefox-bg-38.1.0-1.mga4 firefox-bn_IN-38.1.0-1.mga4 firefox-bn_BD-38.1.0-1.mga4 firefox-br-38.1.0-1.mga4 firefox-bs-38.1.0-1.mga4 firefox-ca-38.1.0-1.mga4 firefox-cs-38.1.0-1.mga4 firefox-cy-38.1.0-1.mga4 firefox-da-38.1.0-1.mga4 firefox-de-38.1.0-1.mga4 firefox-el-38.1.0-1.mga4 firefox-en_GB-38.1.0-1.mga4 firefox-en_US-38.1.0-1.mga4 firefox-en_ZA-38.1.0-1.mga4 firefox-eo-38.1.0-1.mga4 firefox-es_AR-38.1.0-1.mga4 firefox-es_CL-38.1.0-1.mga4 firefox-es_ES-38.1.0-1.mga4 firefox-es_MX-38.1.0-1.mga4 firefox-et-38.1.0-1.mga4 firefox-eu-38.1.0-1.mga4 firefox-fa-38.1.0-1.mga4 firefox-ff-38.1.0-1.mga4 firefox-fi-38.1.0-1.mga4 firefox-fr-38.1.0-1.mga4 firefox-fy_NL-38.1.0-1.mga4 firefox-ga_IE-38.1.0-1.mga4 firefox-gd-38.1.0-1.mga4 firefox-gl-38.1.0-1.mga4 firefox-gu_IN-38.1.0-1.mga4 firefox-he-38.1.0-1.mga4 firefox-hi_IN-38.1.0-1.mga4 firefox-hr-38.1.0-1.mga4 firefox-hsb-38.1.0-1.mga4 firefox-hu-38.1.0-1.mga4 firefox-hy_AM-38.1.0-1.mga4 firefox-id-38.1.0-1.mga4 firefox-is-38.1.0-1.mga4 firefox-it-38.1.0-1.mga4 firefox-ja-38.1.0-1.mga4 firefox-kk-38.1.0-1.mga4 firefox-km-38.1.0-1.mga4 firefox-kn-38.1.0-1.mga4 firefox-ko-38.1.0-1.mga4 firefox-lij-38.1.0-1.mga4 firefox-lt-38.1.0-1.mga4 firefox-lv-38.1.0-1.mga4 firefox-mai-38.1.0-1.mga4 firefox-mk-38.1.0-1.mga4 firefox-ml-38.1.0-1.mga4 firefox-mr-38.1.0-1.mga4 firefox-ms-38.1.0-1.mga4 firefox-nl-38.1.0-1.mga4 firefox-or-38.1.0-1.mga4 firefox-pa_IN-38.1.0-1.mga4 firefox-pl-38.1.0-1.mga4 firefox-pt_BR-38.1.0-1.mga4 firefox-pt_PT-38.1.0-1.mga4 firefox-ro-38.1.0-1.mga4 firefox-ru-38.1.0-1.mga4 firefox-si-38.1.0-1.mga4 firefox-sk-38.1.0-1.mga4 firefox-sl-38.1.0-1.mga4 firefox-sq-38.1.0-1.mga4 firefox-sr-38.1.0-1.mga4 firefox-sv_SE-38.1.0-1.mga4 firefox-ta-38.1.0-1.mga4 firefox-te-38.1.0-1.mga4 firefox-th-38.1.0-1.mga4 firefox-tr-38.1.0-1.mga4 firefox-uk-38.1.0-1.mga4 firefox-uz-38.1.0-1.mga4 firefox-vi-38.1.0-1.mga4 firefox-xh-38.1.0-1.mga4 firefox-zh_CN-38.1.0-1.mga4 firefox-zh_TW-38.1.0-1.mga4 nss-3.19.2-1.mga5 nss-doc-3.19.2-1.mga5 libnss3-3.19.2-1.mga5 libnss-devel-3.19.2-1.mga5 libnss-static-devel-3.19.2-1.mga5 firefox-38.1.0-1.mga5 firefox-devel-38.1.0-1.mga5 firefox-af-38.1.0-1.mga5 firefox-ar-38.1.0-1.mga5 firefox-as-38.1.0-1.mga5 firefox-ast-38.1.0-1.mga5 firefox-az-38.1.0-1.mga5 firefox-be-38.1.0-1.mga5 firefox-bg-38.1.0-1.mga5 firefox-bn_IN-38.1.0-1.mga5 firefox-bn_BD-38.1.0-1.mga5 firefox-br-38.1.0-1.mga5 firefox-bs-38.1.0-1.mga5 firefox-ca-38.1.0-1.mga5 firefox-cs-38.1.0-1.mga5 firefox-cy-38.1.0-1.mga5 firefox-da-38.1.0-1.mga5 firefox-de-38.1.0-1.mga5 firefox-el-38.1.0-1.mga5 firefox-en_GB-38.1.0-1.mga5 firefox-en_US-38.1.0-1.mga5 firefox-en_ZA-38.1.0-1.mga5 firefox-eo-38.1.0-1.mga5 firefox-es_AR-38.1.0-1.mga5 firefox-es_CL-38.1.0-1.mga5 firefox-es_ES-38.1.0-1.mga5 firefox-es_MX-38.1.0-1.mga5 firefox-et-38.1.0-1.mga5 firefox-eu-38.1.0-1.mga5 firefox-fa-38.1.0-1.mga5 firefox-ff-38.1.0-1.mga5 firefox-fi-38.1.0-1.mga5 firefox-fr-38.1.0-1.mga5 firefox-fy_NL-38.1.0-1.mga5 firefox-ga_IE-38.1.0-1.mga5 firefox-gd-38.1.0-1.mga5 firefox-gl-38.1.0-1.mga5 firefox-gu_IN-38.1.0-1.mga5 firefox-he-38.1.0-1.mga5 firefox-hi_IN-38.1.0-1.mga5 firefox-hr-38.1.0-1.mga5 firefox-hsb-38.1.0-1.mga5 firefox-hu-38.1.0-1.mga5 firefox-hy_AM-38.1.0-1.mga5 firefox-id-38.1.0-1.mga5 firefox-is-38.1.0-1.mga5 firefox-it-38.1.0-1.mga5 firefox-ja-38.1.0-1.mga5 firefox-kk-38.1.0-1.mga5 firefox-km-38.1.0-1.mga5 firefox-kn-38.1.0-1.mga5 firefox-ko-38.1.0-1.mga5 firefox-lij-38.1.0-1.mga5 firefox-lt-38.1.0-1.mga5 firefox-lv-38.1.0-1.mga5 firefox-mai-38.1.0-1.mga5 firefox-mk-38.1.0-1.mga5 firefox-ml-38.1.0-1.mga5 firefox-mr-38.1.0-1.mga5 firefox-ms-38.1.0-1.mga5 firefox-nl-38.1.0-1.mga5 firefox-or-38.1.0-1.mga5 firefox-pa_IN-38.1.0-1.mga5 firefox-pl-38.1.0-1.mga5 firefox-pt_BR-38.1.0-1.mga5 firefox-pt_PT-38.1.0-1.mga5 firefox-ro-38.1.0-1.mga5 firefox-ru-38.1.0-1.mga5 firefox-si-38.1.0-1.mga5 firefox-sk-38.1.0-1.mga5 firefox-sl-38.1.0-1.mga5 firefox-sq-38.1.0-1.mga5 firefox-sr-38.1.0-1.mga5 firefox-sv_SE-38.1.0-1.mga5 firefox-ta-38.1.0-1.mga5 firefox-te-38.1.0-1.mga5 firefox-th-38.1.0-1.mga5 firefox-tr-38.1.0-1.mga5 firefox-uk-38.1.0-1.mga5 firefox-uz-38.1.0-1.mga5 firefox-vi-38.1.0-1.mga5 firefox-xh-38.1.0-1.mga5 firefox-zh_CN-38.1.0-1.mga5 firefox-zh_TW-38.1.0-1.mga5 from SRPMS: sqlite3-3.8.10.2-1.mga4.src.rpm nss-3.19.2-1.mga4.src.rpm firefox-38.1.0-1.mga4.src.rpm firefox-l10n-38.1.0-1.mga4.src.rpm nss-3.19.2-1.mga5.src.rpm firefox-38.1.0-1.mga5.src.rpm firefox-l10n-38.1.0-1.mga5.src.rpm
URL: (none) => http://lwn.net/Vulnerabilities/650129/
Blocks: (none) => 16285
The Cauldron build failed, so this is not available yet: http://pkgsubmit.mageia.org/uploads/failure/cauldron/core/release/20150704014129.luigiwalser.valstar.29279/log/firefox-38.1.0-1.mga6/build.0.20150704014204.log
Summary: Firefox and Thunderbird 38 => Firefox 38.1Source RPM: firefox, thunderbird, nss => firefox, nssWhiteboard: MGA4TOO has_procedure => MGA4TOO has_procedure feedback
This one is ready to go. Enjoy :o)
Whiteboard: MGA4TOO has_procedure feedback => MGA4TOO has_procedure
Component: RPM Packages => Security
Tested mga5-64, the usual battery: general browsing, sunspider for javascript, javatester for java, youtube for flash, all OK.
CC: (none) => wrw105Whiteboard: MGA4TOO has_procedure => MGA4TOO has_procedure mga5-64-ok
In VirtualBox, M4, KDE, 32-bit Package(s) under test: firefox firefox-en_GB libnss3 libsqlite3_0 sqlite3-tools default install of firefox et al [root@localhost wilcal]# urpmi firefox Package firefox-31.7.0-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-31.7.0-1.mga4.noarch is already installed [root@localhost wilcal]# urpmi libnss3 Package libnss3-3.19.0-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libsqlite3_0 Package libsqlite3_0-3.8.10.1-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi sqlite3-tools Package sqlite3-tools-3.8.10.1-1.mga4.i586 is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. install firefox, firefox-en_GB, libnss3, libsqlite3_0, sqlite3-tools from updates_testing [root@localhost wilcal]# urpmi firefox Package firefox-38.0.1-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-38.0.1-1.mga4.noarch is already installed [root@localhost wilcal]# urpmi libnss3 Package libnss3-3.19.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libsqlite3_0 Package libsqlite3_0-3.8.10.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi sqlite3-tools Package sqlite3-tools-3.8.10.2-1.mga4.i586 is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. Test platform: Intel Core i7-2600K Sandy Bridge 3.4GHz GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB RTL8111/8168B PCI Express 1Gbit Ethernet DRAM 16GB (4 x 4GB) Mageia 4 64-bit, Nvidia driver virtualbox-4.3.26-1.mga4.x86_64 virtualbox-guest-additions-4.3.26-1.mga4.x86_64
CC: (none) => wilcal.int
Tested mga5-32 as above, including acid3, which I forgot to mention in previous report. All OK.
Whiteboard: MGA4TOO has_procedure mga5-64-ok => MGA4TOO has_procedure mga5-64-ok mga5-32-ok
Everything looks good to me so far (Mageia 4 i586) except YouTube. It'll play a video fine, but on the front page, a search results page, or on the right side of any video where it should show a small screenshot of each video listed, those screenshots do not appear.
(In reply to David Walser from comment #31) > Everything looks good to me so far (Mageia 4 i586) except YouTube. It'll > play a video fine, but on the front page, a search results page, or on the > right side of any video where it should show a small screenshot of each > video listed, those screenshots do not appear. Nevermind, my fault. AdBlock Plus issue. All's good now ;o)
Whiteboard: MGA4TOO has_procedure mga5-64-ok mga5-32-ok => MGA4TOO has_procedure mga5-64-ok mga5-32-ok mga4-32-ok
In VirtualBox, M4, KDE, 64-bit Package(s) under test: firefox firefox-en_GB lib64nss3 lib64sqlite3_0 sqlite3-tools default install of firefox et al [root@localhost wilcal]# urpmi firefox Package firefox-31.7.0-1.mga4.x86_64 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-31.7.0-1.mga4.noarch is already installed [root@localhost wilcal]# urpmi lib64nss3 Package lib64nss3-3.19.0-1.mga4.x86_64 is already installed [root@localhost wilcal]# urpmi lib64sqlite3_0 Package lib64sqlite3_0-3.8.10.1-1.mga4.x86_64 is already installed [root@localhost wilcal]# urpmi sqlite3-tools Package sqlite3-tools-3.8.10.1-1.mga4.x86_64 is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. install firefox, firefox-en_GB, lib64nss3, lib64sqlite3_0, sqlite3-tools from updates_testing [root@localhost wilcal]# urpmi firefox Package firefox-38.0.1-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-38.0.1-1.mga4.noarch is already installed [root@localhost wilcal]# urpmi lib64nss3 Package libnss3-3.19.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi lib64sqlite3_0 Package libsqlite3_0-3.8.10.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi sqlite3-tools Package sqlite3-tools-3.8.10.2-1.mga4.i586 is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. Test platform: Intel Core i7-2600K Sandy Bridge 3.4GHz GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB RTL8111/8168B PCI Express 1Gbit Ethernet DRAM 16GB (4 x 4GB) Mageia 4 64-bit, Nvidia driver virtualbox-4.3.26-1.mga4.x86_64 virtualbox-guest-additions-4.3.26-1.mga4.x86_64
Testing complete and advisory committed to svn. Someone from the sysadmin team please push 16232 to updates.
Keywords: (none) => validated_updateWhiteboard: MGA4TOO has_procedure mga5-64-ok mga5-32-ok mga4-32-ok => MGA4TOO has_procedure mga5-64-ok mga5-32-ok mga4-32-ok mga4-64-ok advisoryCC: (none) => davidwhodgins, sysadmin-bugs
In VirtualBox, M5, KDE, 32-bit Package(s) under test: firefox firefox-en_GB libnss3 libsqlite3_0 sqlite3-tools default install of firefox et al [root@localhost wilcal]# urpmi firefox Package firefox-31.7.0-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-31.7.0-1.mga5.noarch is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. install firefox, firefox-en_GB, libnss3, libsqlite3_0, sqlite3-tools from updates_testing [root@localhost wilcal]# urpmi firefox Package firefox-38.0.1-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-38.0.1-1.mga5.noarch is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. Test platform: Intel Core i7-2600K Sandy Bridge 3.4GHz GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB RTL8111/8168B PCI Express 1Gbit Ethernet DRAM 16GB (4 x 4GB) Mageia 4 64-bit, Nvidia driver virtualbox-4.3.26-1.mga4.x86_64 virtualbox-guest-additions-4.3.26-1.mga4.x86_64
In VirtualBox, M5, KDE, 64-bit Package(s) under test: firefox firefox-en_GB default install of firefox et al [root@localhost wilcal]# urpmi firefox Package firefox-31.7.0-1.mga4.x86_64 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-31.7.0-1.mga4.noarch is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. install firefox, firefox-en_GB, from updates_testing [root@localhost wilcal]# urpmi firefox Package firefox-38.0.1-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi firefox-en_GB Package firefox-en_GB-38.0.1-1.mga5.noarch is already installed Firefox works, common websites are accessible, YouTube/Vimeo videos play, common plugins are active. Test platform: Intel Core i7-2600K Sandy Bridge 3.4GHz GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB RTL8111/8168B PCI Express 1Gbit Ethernet DRAM 16GB (4 x 4GB) Mageia 4 64-bit, Nvidia driver virtualbox-4.3.26-1.mga4.x86_64 virtualbox-guest-additions-4.3.26-1.mga4.x86_64
Seems pretty clean. Check your addon's to see if they have to be reinstalled. This one did: https://addons.mozilla.org/en-US/firefox/addon/password-exporter/
An update for this issue has been pushed to Mageia Updates repository. http://advisories.mageia.org/MGASA-2015-0268.html
Status: NEW => RESOLVEDResolution: (none) => FIXED
LWN reference for CVE-2015-2721 and CVE-2015-2730: http://lwn.net/Vulnerabilities/650300/
There are reports that the Mageia 4 update is missing translations. Mirror issue or really missing translations? Eg nb_NO and nn_NO
(In reply to Samuel VERSCHELDE from comment #40) > There are reports that the Mageia 4 update is missing translations. Mirror > issue or really missing translations? Eg nb_NO and nn_NO We don't have those packaged for 38.1. According to the information in the firefox-l10n SPEC, we're supposed to disable any that don't have a corresponding locales package. So, the real bug here is in glibc that it doesn't have a locales-nb or locales-nn package. In the meantime, people wanting those ones can use: ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/38.1.0esr/linux-i686/xpi/nb-NO.xpi ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/38.1.0esr/linux-i686/xpi/nn-NO.xpi
Um, you are kidding, right ? the ESR 31 had norwegian translations, so the ESR 38 needs them too... and: urpmq --provides locales-no locales-nb[== 2.20-4.mga5] locales-nn[== 2.20-4.mga5] locales-no[== 2.20-4.mga5] locales-no(x86-64)[== 2.20-4.mga5]
CC: (none) => tmb
No, I'm not kidding. I don't know where you're seeing that. We don't have locales-nb or locales-nn, like I said. The only ones with n* are: locales-nds-2.20-4.mga5.i586.rpm locales-ne-2.20-4.mga5.i586.rpm locales-nhn-2.20-4.mga5.i586.rpm locales-niu-2.20-4.mga5.i586.rpm locales-nl-2.20-4.mga5.i586.rpm locales-no-2.20-4.mga5.i586.rpm locales-nr-2.20-4.mga5.i586.rpm locales-nso-2.20-4.mga5.i586.rpm That's all I know. I also read something that said that urpmi somehow knows which firefox-l10n package to install based on which locales package you have installed, so you have to have a matching one. I don't have any history with this package and only got stuck updating it because nobody else would help this time. You can complain to those who do have a history with and/or better understanding of it if there's something I missed (but please do let me know).
(In reply to Thomas Backlund from comment #42) > Um, you are kidding, right ? > > the ESR 31 had norwegian translations, so the ESR 38 needs them too... > > > and: > > urpmq --provides locales-no > locales-nb[== 2.20-4.mga5] > locales-nn[== 2.20-4.mga5] > locales-no[== 2.20-4.mga5] > locales-no(x86-64)[== 2.20-4.mga5] This is mga5, not mga4. However I agree that losing the translations from ESR 31 to ESR 38 is a regression and we should fix it.
(In reply to Thomas Backlund from comment #42) > urpmq --provides locales-no > locales-nb[== 2.20-4.mga5] > locales-nn[== 2.20-4.mga5] > locales-no[== 2.20-4.mga5] > locales-no(x86-64)[== 2.20-4.mga5] This is not about mga4 vs mga5, but locales-nn and locales-nb are virtual provides of the locales-no package.
Anyway, this should be discussed in another bug report as this one is closed and won't be reopened.
(In reply to David Walser from comment #43) > No, I'm not kidding. > > I don't know where you're seeing that. > > We don't have locales-nb or locales-nn, like I said. The only ones with n* > are: > locales-nds-2.20-4.mga5.i586.rpm > locales-ne-2.20-4.mga5.i586.rpm > locales-nhn-2.20-4.mga5.i586.rpm > locales-niu-2.20-4.mga5.i586.rpm > locales-nl-2.20-4.mga5.i586.rpm > locales-no-2.20-4.mga5.i586.rpm > locales-nr-2.20-4.mga5.i586.rpm > locales-nso-2.20-4.mga5.i586.rpm > The packages are there as virtual provides, and has been for years Oh, and disabling packages in an update should have raised a red flag... > That's all I know. I also read something that said that urpmi somehow knows > which firefox-l10n package to install based on which locales package you > have installed, so you have to have a matching one. Yes it does, and the virtual provides covers that... > I don't have any > history with this package and only got stuck updating it because nobody else > would help this time. Yeah, that it not your fault... > You can complain to those who do have a history with > and/or better understanding of it if there's something I missed (but please > do let me know). Well... many locales packages have virtual provides to cover several language variants in the same package so drakx can add the matching locales vs translations... so the check cant be done against physical rpms only, it need to verify virtual provides too (In reply to Samuel VERSCHELDE from comment #44) > (In reply to Thomas Backlund from comment #42) > > Um, you are kidding, right ? > > > > the ESR 31 had norwegian translations, so the ESR 38 needs them too... > > > > > > and: > > > > urpmq --provides locales-no > > locales-nb[== 2.20-4.mga5] > > locales-nn[== 2.20-4.mga5] > > locales-no[== 2.20-4.mga5] > > locales-no(x86-64)[== 2.20-4.mga5] > > This is mga5, not mga4. However I agree that losing the translations from > ESR 31 to ESR 38 is a regression and we should fix it. rpm -qp --provides locales-no-2.18-2.mga4.x86_64.rpm locales-nn = 2.18-2.mga4 locales-nb = 2.18-2.mga4 locales-no = 2.18-2.mga4 locales-no(x86-64) = 2.18-2.mga4
(In reply to Thomas Backlund from comment #47) > The packages are there as virtual provides, and has been for years So those are the only languages that work this way. Exceptions like that are not helpful. > Oh, and disabling packages in an update should have raised a red flag... We tested 38.0.1 before moving onto 38.1 and releasing it. It would have been nice if someone had raised this issue then. This wasn't the only change I had to make in l10n, and I still believe the other changes were correct. This particular one comes from some undocumented exception that I had no way of knowing about. > Yes it does, and the virtual provides covers that... I'm glad you know that. I have no idea how it works. > Yeah, that it not your fault... I'm really dismayed at the increasing lack of help I get from packagers for security updates :o( > Well... many locales packages have virtual provides to cover several > language variants in the same package so drakx can add the matching locales > vs translations... > > so the check cant be done against physical rpms only, it need to verify > virtual provides too With regards to the languages in the Mozilla l10n packages, I wasn't aware of any other such exceptions. I did just find one more by checking package provides. The "an" language is provided by locales-es, so I'll have to re-enable that one too.
Too add "an" I need a language name. What language does "an" correspond to?
(In reply to David Walser from comment #49) > Too add "an" I need a language name. What language does "an" correspond to? Pascal just told me it's Aragonese. Fixing this in SVN now. It'll be fixed in our next update.
Are latest comments in bug 12195 related?
(In reply to Samuel VERSCHELDE from comment #51) > Are latest comments in bug 12195 related? No, but that bug should be fixed now that there's a firefox-en_US package. The dependency error recently posted there looks invalid.