34552 – Update request firefox ESR 128.14.0, fix vulnerabilities

Bug 34552 - Update request firefox ESR 128.14.0, fix vulnerabilities

Summary: Update request firefox ESR 128.14.0, fix vulnerabilities

Status:	RESOLVED FIXED

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	9
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	QA Team
QA Contact:	Sec team

URL:
Whiteboard:	MGA9-32-OK MGA9-64-OK
Keywords:	advisory, validated_update

Depends on:
Blocks:	34415
	Show dependency tree / graph

Reported:	2025-08-09 19:35 CEST by katnatek
Modified:	2025-09-05 20:31 CEST (History)
CC List:	8 users (show)

See Also:
Source RPM:	nspr, rootcerts, nss, firefox, firefox-l10n
CVE:	CVE-2025-8027, CVE-2025-8028, CVE-2025-8029, CVE-2025-8030, CVE-2025-8031, CVE-2025-8032, CVE-2025-8033, CVE-2025-8034, CVE-2025-8035, CVE-2025-9179, CVE-2025-9180, CVE-2025-9181, CVE-2025-9185
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description katnatek 2025-08-09 19:35:26 CEST

Mozilla release Firefox ESR 128.13.0, fixing some vulnerabilities

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58/

katnatek 2025-08-11 20:50:54 CEST

Assignee: bugsquad => pkg-bugs

katnatek 2025-08-20 20:00:25 CEST

Summary: Update request firefox ESR 128.13.0, fix vulnerabilities => Update request firefox ESR 128.14.0, fix vulnerabilities

Comment 1 Nicolas Salguero 2025-08-26 16:21:36 CEST

Suggested advisory:
========================

The updated packages fix security vulnerabilities:

JavaScript engine only wrote partial return value to stack. (CVE-2025-8027)

Large branch table could lead to truncated instruction. (CVE-2025-8028)

Javascript: URLs executed on object and embed tags. (CVE-2025-8029)

Potential user-assisted code execution in “Copy as cURL” command. (CVE-2025-8030)

Incorrect URL stripping in CSP reports. (CVE-2025-8031)

XSLT documents could bypass CSP. (CVE-2025-8032)

Incorrect JavaScript state machine for generators. (CVE-2025-8033)

Memory safety bugs fixed in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. (CVE-2025-8034)

Memory safety bugs fixed in Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. (CVE-2025-8035)

Sandbox escape due to invalid pointer in the Audio/Video: GMP component. (CVE-2025-9179)

Same-origin policy bypass in the Graphics: Canvas2D component. (CVE-2025-9180)

Uninitialized memory in the JavaScript Engine component. (CVE-2025-9181)

Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14, Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142. (CVE-2025-9185)

References:
https://www.firefox.com/en-US/firefox/128.13.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2025-58/
https://www.firefox.com/en-US/firefox/128.14.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2025-66/
https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_114.html
========================

Updated packages in core/updates_testing:
========================
firefox-128.14.0-1.mga9
firefox-af-128.14.0-1.mga9
firefox-an-128.14.0-1.mga9
firefox-ar-128.14.0-1.mga9
firefox-ast-128.14.0-1.mga9
firefox-az-128.14.0-1.mga9
firefox-be-128.14.0-1.mga9
firefox-bg-128.14.0-1.mga9
firefox-bn-128.14.0-1.mga9
firefox-br-128.14.0-1.mga9
firefox-bs-128.14.0-1.mga9
firefox-ca-128.14.0-1.mga9
firefox-cs-128.14.0-1.mga9
firefox-cy-128.14.0-1.mga9
firefox-da-128.14.0-1.mga9
firefox-de-128.14.0-1.mga9
firefox-el-128.14.0-1.mga9
firefox-en_CA-128.14.0-1.mga9
firefox-en_GB-128.14.0-1.mga9
firefox-en_US-128.14.0-1.mga9
firefox-eo-128.14.0-1.mga9
firefox-es_AR-128.14.0-1.mga9
firefox-es_CL-128.14.0-1.mga9
firefox-es_ES-128.14.0-1.mga9
firefox-es_MX-128.14.0-1.mga9
firefox-et-128.14.0-1.mga9
firefox-eu-128.14.0-1.mga9
firefox-fa-128.14.0-1.mga9
firefox-ff-128.14.0-1.mga9
firefox-fi-128.14.0-1.mga9
firefox-fr-128.14.0-1.mga9
firefox-fur-128.14.0-1.mga9
firefox-fy_NL-128.14.0-1.mga9
firefox-ga_IE-128.14.0-1.mga9
firefox-gd-128.14.0-1.mga9
firefox-gl-128.14.0-1.mga9
firefox-gu_IN-128.14.0-1.mga9
firefox-he-128.14.0-1.mga9
firefox-hi_IN-128.14.0-1.mga9
firefox-hr-128.14.0-1.mga9
firefox-hsb-128.14.0-1.mga9
firefox-hu-128.14.0-1.mga9
firefox-hy_AM-128.14.0-1.mga9
firefox-ia-128.14.0-1.mga9
firefox-id-128.14.0-1.mga9
firefox-is-128.14.0-1.mga9
firefox-it-128.14.0-1.mga9
firefox-ja-128.14.0-1.mga9
firefox-ka-128.14.0-1.mga9
firefox-kab-128.14.0-1.mga9
firefox-kk-128.14.0-1.mga9
firefox-km-128.14.0-1.mga9
firefox-kn-128.14.0-1.mga9
firefox-ko-128.14.0-1.mga9
firefox-lij-128.14.0-1.mga9
firefox-lt-128.14.0-1.mga9
firefox-lv-128.14.0-1.mga9
firefox-mk-128.14.0-1.mga9
firefox-mr-128.14.0-1.mga9
firefox-ms-128.14.0-1.mga9
firefox-my-128.14.0-1.mga9
firefox-nb_NO-128.14.0-1.mga9
firefox-nl-128.14.0-1.mga9
firefox-nn_NO-128.14.0-1.mga9
firefox-oc-128.14.0-1.mga9
firefox-pa_IN-128.14.0-1.mga9
firefox-pl-128.14.0-1.mga9
firefox-pt_BR-128.14.0-1.mga9
firefox-pt_PT-128.14.0-1.mga9
firefox-ro-128.14.0-1.mga9
firefox-ru-128.14.0-1.mga9
firefox-sc-128.14.0-1.mga9
firefox-si-128.14.0-1.mga9
firefox-sk-128.14.0-1.mga9
firefox-sl-128.14.0-1.mga9
firefox-sq-128.14.0-1.mga9
firefox-sr-128.14.0-1.mga9
firefox-sv_SE-128.14.0-1.mga9
firefox-szl-128.14.0-1.mga9
firefox-ta-128.14.0-1.mga9
firefox-te-128.14.0-1.mga9
firefox-tg-128.14.0-1.mga9
firefox-th-128.14.0-1.mga9
firefox-tl-128.14.0-1.mga9
firefox-tr-128.14.0-1.mga9
firefox-uk-128.14.0-1.mga9
firefox-ur-128.14.0-1.mga9
firefox-uz-128.14.0-1.mga9
firefox-vi-128.14.0-1.mga9
firefox-xh-128.14.0-1.mga9
firefox-zh_CN-128.14.0-1.mga9
firefox-zh_TW-128.14.0-1.mga9

lib(64)nss-devel-3.114.0-1.mga9
lib(64)nss-static-devel-3.114.0-1.mga9
lib(64)nss3-3.114.0-1.mga9
nss-3.114.0-1.mga9
nss-doc-3.114.0-1.mga9

rootcerts-20250808.00-1.mga9
rootcerts-java-20250808.00-1.mga9

from SRPMS:
firefox-128.14.0-1.mga9.src.rpm
firefox-l10n-128.14.0-1.mga9.src.rpm
nss-3.114.0-1.mga9.src.rpm
rootcerts-20250808.00-1.mga9.src.rpm

Status: NEW => ASSIGNED
Assignee: pkg-bugs => qa-bugs
Source RPM: firefox => rootcerts, nss, firefox, firefox-l10n

Nicolas Salguero 2025-08-26 16:23:40 CEST

CVE: CVE-2025-802[7-9], CVE-2025-803[0-5] => CVE-2025-8027, CVE-2025-8028, CVE-2025-8029, CVE-2025-8030, CVE-2025-8031, CVE-2025-8032, CVE-2025-8033, CVE-2025-8034, CVE-2025-8035, CVE-2025-9179, CVE-2025-9180, CVE-2025-9181, CVE-2025-9185

katnatek 2025-08-26 20:18:09 CEST

Keywords: (none) => advisory

Comment 2 Brian Rockwell 2025-08-26 22:59:49 CEST

MGA9-64, Xfce, core i7 M620, Nvidia GT218M (nouveau) 

The following 9 packages are going to be installed:

- firefox-128.14.0-1.4.mga9.x86_64
- firefox-en_CA-128.14.0-1.mga9.noarch
- firefox-en_GB-128.14.0-1.mga9.noarch
- firefox-en_US-128.14.0-1.mga9.noarch
- lib64nss3-3.114.0-1.mga9.x86_64
- meta-task-9-4.mga9.noarch
- nss-3.114.0-1.mga9.x86_64
- rootcerts-20250808.00-1.mga9.noarch
- rootcerts-java-20250808.00-1.mga9.noarch

297KB of additional disk space will be used.

-- rebooted

$ firefox -v
Mozilla Firefox 128.14.0esr

spending a few hours using it.  No issues

CC: (none) => brtians1

Comment 3 Jose Manuel López 2025-08-27 00:10:49 CEST

Installed in mga9-x64 Plasma Kde.

Works fine for me.

Audio and video ok.
Youtube ok.
Banks ok.
Diginal certificates ok.
Spanish translation ok.

Greetings!

CC: (none) => Joselp

Comment 4 Nicolas Salguero 2025-08-27 09:33:10 CEST

I take back this bug because of new versions of NSPR and NSS.

Keywords: advisory => (none)
Assignee: qa-bugs => nicolas.salguero

Nicolas Salguero 2025-08-27 09:33:24 CEST

Source RPM: rootcerts, nss, firefox, firefox-l10n => nspr, rootcerts, nss, firefox, firefox-l10n

Nicolas Salguero 2025-08-27 10:47:47 CEST

Blocks: (none) => 34415

Comment 5 Nicolas Salguero 2025-08-27 11:06:19 CEST

Suggested advisory:
========================

The updated packages fix security vulnerabilities:

JavaScript engine only wrote partial return value to stack. (CVE-2025-8027)

Large branch table could lead to truncated instruction. (CVE-2025-8028)

Javascript: URLs executed on object and embed tags. (CVE-2025-8029)

Potential user-assisted code execution in “Copy as cURL” command. (CVE-2025-8030)

Incorrect URL stripping in CSP reports. (CVE-2025-8031)

XSLT documents could bypass CSP. (CVE-2025-8032)

Incorrect JavaScript state machine for generators. (CVE-2025-8033)

Memory safety bugs fixed in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. (CVE-2025-8034)

Memory safety bugs fixed in Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. (CVE-2025-8035)

Sandbox escape due to invalid pointer in the Audio/Video: GMP component. (CVE-2025-9179)

Same-origin policy bypass in the Graphics: Canvas2D component. (CVE-2025-9180)

Uninitialized memory in the JavaScript Engine component. (CVE-2025-9181)

Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14, Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142. (CVE-2025-9185)

References:
https://www.firefox.com/en-US/firefox/128.13.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2025-58/
https://www.firefox.com/en-US/firefox/128.14.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2025-66/
https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_114.html
https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_115.html
https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/tA3pkONXpLs
https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/kBdNnkK1upQ
========================

Updated packages in core/updates_testing:
========================
firefox-128.14.0-1.mga9
firefox-af-128.14.0-1.mga9
firefox-an-128.14.0-1.mga9
firefox-ar-128.14.0-1.mga9
firefox-ast-128.14.0-1.mga9
firefox-az-128.14.0-1.mga9
firefox-be-128.14.0-1.mga9
firefox-bg-128.14.0-1.mga9
firefox-bn-128.14.0-1.mga9
firefox-br-128.14.0-1.mga9
firefox-bs-128.14.0-1.mga9
firefox-ca-128.14.0-1.mga9
firefox-cs-128.14.0-1.mga9
firefox-cy-128.14.0-1.mga9
firefox-da-128.14.0-1.mga9
firefox-de-128.14.0-1.mga9
firefox-el-128.14.0-1.mga9
firefox-en_CA-128.14.0-1.mga9
firefox-en_GB-128.14.0-1.mga9
firefox-en_US-128.14.0-1.mga9
firefox-eo-128.14.0-1.mga9
firefox-es_AR-128.14.0-1.mga9
firefox-es_CL-128.14.0-1.mga9
firefox-es_ES-128.14.0-1.mga9
firefox-es_MX-128.14.0-1.mga9
firefox-et-128.14.0-1.mga9
firefox-eu-128.14.0-1.mga9
firefox-fa-128.14.0-1.mga9
firefox-ff-128.14.0-1.mga9
firefox-fi-128.14.0-1.mga9
firefox-fr-128.14.0-1.mga9
firefox-fur-128.14.0-1.mga9
firefox-fy_NL-128.14.0-1.mga9
firefox-ga_IE-128.14.0-1.mga9
firefox-gd-128.14.0-1.mga9
firefox-gl-128.14.0-1.mga9
firefox-gu_IN-128.14.0-1.mga9
firefox-he-128.14.0-1.mga9
firefox-hi_IN-128.14.0-1.mga9
firefox-hr-128.14.0-1.mga9
firefox-hsb-128.14.0-1.mga9
firefox-hu-128.14.0-1.mga9
firefox-hy_AM-128.14.0-1.mga9
firefox-ia-128.14.0-1.mga9
firefox-id-128.14.0-1.mga9
firefox-is-128.14.0-1.mga9
firefox-it-128.14.0-1.mga9
firefox-ja-128.14.0-1.mga9
firefox-ka-128.14.0-1.mga9
firefox-kab-128.14.0-1.mga9
firefox-kk-128.14.0-1.mga9
firefox-km-128.14.0-1.mga9
firefox-kn-128.14.0-1.mga9
firefox-ko-128.14.0-1.mga9
firefox-lij-128.14.0-1.mga9
firefox-lt-128.14.0-1.mga9
firefox-lv-128.14.0-1.mga9
firefox-mk-128.14.0-1.mga9
firefox-mr-128.14.0-1.mga9
firefox-ms-128.14.0-1.mga9
firefox-my-128.14.0-1.mga9
firefox-nb_NO-128.14.0-1.mga9
firefox-nl-128.14.0-1.mga9
firefox-nn_NO-128.14.0-1.mga9
firefox-oc-128.14.0-1.mga9
firefox-pa_IN-128.14.0-1.mga9
firefox-pl-128.14.0-1.mga9
firefox-pt_BR-128.14.0-1.mga9
firefox-pt_PT-128.14.0-1.mga9
firefox-ro-128.14.0-1.mga9
firefox-ru-128.14.0-1.mga9
firefox-sc-128.14.0-1.mga9
firefox-si-128.14.0-1.mga9
firefox-sk-128.14.0-1.mga9
firefox-sl-128.14.0-1.mga9
firefox-sq-128.14.0-1.mga9
firefox-sr-128.14.0-1.mga9
firefox-sv_SE-128.14.0-1.mga9
firefox-szl-128.14.0-1.mga9
firefox-ta-128.14.0-1.mga9
firefox-te-128.14.0-1.mga9
firefox-tg-128.14.0-1.mga9
firefox-th-128.14.0-1.mga9
firefox-tl-128.14.0-1.mga9
firefox-tr-128.14.0-1.mga9
firefox-uk-128.14.0-1.mga9
firefox-ur-128.14.0-1.mga9
firefox-uz-128.14.0-1.mga9
firefox-vi-128.14.0-1.mga9
firefox-xh-128.14.0-1.mga9
firefox-zh_CN-128.14.0-1.mga9
firefox-zh_TW-128.14.0-1.mga9

lib(64)nspr-devel-4.37-1.mga9
lib(64)nspr4-4.37-1.mga9

lib(64)nss-devel-3.115.1-1.mga9
lib(64)nss-static-devel-3.115.1-1.mga9
lib(64)nss3-3.115.1-1.mga9
nss-3.115.1-1.mga9
nss-doc-3.115.1-1.mga9

rootcerts-20250808.00-1.mga9
rootcerts-java-20250808.00-1.mga9

from SRPMS:
firefox-128.14.0-1.mga9.src.rpm
firefox-l10n-128.14.0-1.mga9.src.rpm
nspr-4.37-1.mga9.src.rpm
nss-3.115.1-1.mga9.src.rpm
rootcerts-20250808.00-1.mga9.src.rpm

Assignee: nicolas.salguero => qa-bugs

Comment 6 Brian Rockwell 2025-08-27 23:43:55 CEST

MGA9-32, AMD A6-3420M APU with Radeon(tm) HD Graphics, old Laptop

The following 11 packages are going to be installed:

- firefox-128.14.0-1.4.mga9.i586
- firefox-en_CA-128.14.0-1.mga9.noarch
- firefox-en_GB-128.14.0-1.mga9.noarch
- firefox-en_US-128.14.0-1.mga9.noarch
- glibc-2.36-57.mga9.i586
- libnspr4-4.37-1.mga9.i586
- libnss3-3.115.1-1.mga9.i586
- meta-task-9-4.mga9.noarch
- nss-3.115.1-1.mga9.i586
- rootcerts-20250808.00-1.mga9.noarch
- rootcerts-java-20250808.00-1.mga9.noarch

---rebooted

$ firefox -version
Mozilla Firefox 128.14.0esr
$ uname -a
Linux localhost 6.6.101-desktop-1.mga9 #1 SMP PREEMPT_DYNAMIC Sun Aug  3 00:54:01 UTC 2025 i686 GNU/Linux



spending time using firefox, etc.  - working

Comment 7 Herman Viaene 2025-08-28 11:16:49 CEST

With QArepo:
firefox-128.14.0-1.mga9 not found in the remote repository
I use rpmfind.net as a mirror and yesterday afternoon it had synchronized for all other packages except this one. Turns out comparing Comments 5 and 6 that the name is wrong, it should befirefox-128.14.0-1.4.mga9

CC: (none) => herman.viaene

Comment 8 Nicolas Salguero 2025-08-28 11:30:54 CEST

Ooops, my bad!  I forgot to remove the subrel from the previous version.

Updated packages in core/updates_testing:
========================
firefox-128.14.0-1.4.mga9
firefox-af-128.14.0-1.mga9
firefox-an-128.14.0-1.mga9
firefox-ar-128.14.0-1.mga9
firefox-ast-128.14.0-1.mga9
firefox-az-128.14.0-1.mga9
firefox-be-128.14.0-1.mga9
firefox-bg-128.14.0-1.mga9
firefox-bn-128.14.0-1.mga9
firefox-br-128.14.0-1.mga9
firefox-bs-128.14.0-1.mga9
firefox-ca-128.14.0-1.mga9
firefox-cs-128.14.0-1.mga9
firefox-cy-128.14.0-1.mga9
firefox-da-128.14.0-1.mga9
firefox-de-128.14.0-1.mga9
firefox-el-128.14.0-1.mga9
firefox-en_CA-128.14.0-1.mga9
firefox-en_GB-128.14.0-1.mga9
firefox-en_US-128.14.0-1.mga9
firefox-eo-128.14.0-1.mga9
firefox-es_AR-128.14.0-1.mga9
firefox-es_CL-128.14.0-1.mga9
firefox-es_ES-128.14.0-1.mga9
firefox-es_MX-128.14.0-1.mga9
firefox-et-128.14.0-1.mga9
firefox-eu-128.14.0-1.mga9
firefox-fa-128.14.0-1.mga9
firefox-ff-128.14.0-1.mga9
firefox-fi-128.14.0-1.mga9
firefox-fr-128.14.0-1.mga9
firefox-fur-128.14.0-1.mga9
firefox-fy_NL-128.14.0-1.mga9
firefox-ga_IE-128.14.0-1.mga9
firefox-gd-128.14.0-1.mga9
firefox-gl-128.14.0-1.mga9
firefox-gu_IN-128.14.0-1.mga9
firefox-he-128.14.0-1.mga9
firefox-hi_IN-128.14.0-1.mga9
firefox-hr-128.14.0-1.mga9
firefox-hsb-128.14.0-1.mga9
firefox-hu-128.14.0-1.mga9
firefox-hy_AM-128.14.0-1.mga9
firefox-ia-128.14.0-1.mga9
firefox-id-128.14.0-1.mga9
firefox-is-128.14.0-1.mga9
firefox-it-128.14.0-1.mga9
firefox-ja-128.14.0-1.mga9
firefox-ka-128.14.0-1.mga9
firefox-kab-128.14.0-1.mga9
firefox-kk-128.14.0-1.mga9
firefox-km-128.14.0-1.mga9
firefox-kn-128.14.0-1.mga9
firefox-ko-128.14.0-1.mga9
firefox-lij-128.14.0-1.mga9
firefox-lt-128.14.0-1.mga9
firefox-lv-128.14.0-1.mga9
firefox-mk-128.14.0-1.mga9
firefox-mr-128.14.0-1.mga9
firefox-ms-128.14.0-1.mga9
firefox-my-128.14.0-1.mga9
firefox-nb_NO-128.14.0-1.mga9
firefox-nl-128.14.0-1.mga9
firefox-nn_NO-128.14.0-1.mga9
firefox-oc-128.14.0-1.mga9
firefox-pa_IN-128.14.0-1.mga9
firefox-pl-128.14.0-1.mga9
firefox-pt_BR-128.14.0-1.mga9
firefox-pt_PT-128.14.0-1.mga9
firefox-ro-128.14.0-1.mga9
firefox-ru-128.14.0-1.mga9
firefox-sc-128.14.0-1.mga9
firefox-si-128.14.0-1.mga9
firefox-sk-128.14.0-1.mga9
firefox-sl-128.14.0-1.mga9
firefox-sq-128.14.0-1.mga9
firefox-sr-128.14.0-1.mga9
firefox-sv_SE-128.14.0-1.mga9
firefox-szl-128.14.0-1.mga9
firefox-ta-128.14.0-1.mga9
firefox-te-128.14.0-1.mga9
firefox-tg-128.14.0-1.mga9
firefox-th-128.14.0-1.mga9
firefox-tl-128.14.0-1.mga9
firefox-tr-128.14.0-1.mga9
firefox-uk-128.14.0-1.mga9
firefox-ur-128.14.0-1.mga9
firefox-uz-128.14.0-1.mga9
firefox-vi-128.14.0-1.mga9
firefox-xh-128.14.0-1.mga9
firefox-zh_CN-128.14.0-1.mga9
firefox-zh_TW-128.14.0-1.mga9

lib(64)nspr-devel-4.37-1.mga9
lib(64)nspr4-4.37-1.mga9

lib(64)nss-devel-3.115.1-1.mga9
lib(64)nss-static-devel-3.115.1-1.mga9
lib(64)nss3-3.115.1-1.mga9
nss-3.115.1-1.mga9
nss-doc-3.115.1-1.mga9

rootcerts-20250808.00-1.mga9
rootcerts-java-20250808.00-1.mga9

from SRPMS:
firefox-128.14.0-1.4.mga9.src.rpm
firefox-l10n-128.14.0-1.mga9.src.rpm
nspr-4.37-1.mga9.src.rpm
nss-3.115.1-1.mga9.src.rpm
rootcerts-20250808.00-1.mga9.src.rpm

Comment 9 Herman Viaene 2025-08-28 11:51:38 CEST

MGA9-64 server Plasma Wayland on Compaq H000SB.
No installation issues.
Run this site, youtube, newspaper site, home banking, all works OK.

katnatek 2025-08-28 19:41:47 CEST

Keywords: (none) => advisory

Comment 10 Morgan Leijström 2025-08-28 22:14:42 CEST

OK x86_64, Plasma, on my workstation

- firefox-128.14.0-1.4.mga9.x86_64
- firefox-sv_SE-128.14.0-1.mga9.noarch
- lib64nspr4-4.37-1.mga9.x86_64
- lib64nss3-3.115.1-1.mga9.x86_64
- nss-3.115.1-1.mga9.x86_64
- rootcerts-20250808.00-1.mga9.noarch
- rootcerts-java-20250808.00-1.mga9.noarch

Clean update
Swedish localisation
Settings and tabs kept
Watched internet videos on youtube and svt.se
Some banking sites, tax office, ebay and other shops...
fetched and viewed pdf, printed
Nexcloud server, syncthing panel, Element, facebook
our bugzilla and edited wiki

[morgan@svarten ~]$ inxi -SMCG
System:
  Host: svarten.tribun Kernel: 6.12.43-desktop-1.stable.mga9 arch: x86_64
    bits: 64
  Desktop: KDE Plasma v: 5.27.10 Distro: Mageia 9
Machine:
  Type: Desktop Mobo: ASRock model: P55 Pro serial: <superuser required>
    BIOS: American Megatrends v: P2.60 date: 08/20/2010
CPU:
  Info: quad core model: Intel Core i7 870 bits: 64 type: MT MCP cache:
    L2: 1024 KiB
  Speed (MHz): avg: 3214 min/max: 1200/2934 cores: 1: 3214 2: 3214 3: 3214
    4: 3214 5: 3214 6: 3214 7: 3214 8: 3214
Graphics:
  Device-1: Advanced Micro Devices [AMD/ATI] Navi 24 [Radeon RX 6400/6500
    XT/6500M] driver: amdgpu v: kernel
  Display: x11 server: X.org v: 1.21.1.8 with: Xwayland v: 22.1.9 driver: X:
    loaded: amdgpu,v4l dri: radeonsi gpu: amdgpu resolution: 3840x2160~60Hz
  API: EGL v: 1.5 drivers: kms_swrast,radeonsi,swrast
    platforms: gbm,x11,surfaceless,device
  API: OpenGL v: 4.6 compat-v: 4.5 vendor: amd mesa v: 25.0.7 renderer: AMD
    Radeon RX 6400 (radeonsi navi24 LLVM 15.0.6 DRM 3.61
    6.12.43-desktop-1.stable.mga9)

CC: (none) => fri

Comment 11 Thomas Andrews 2025-08-29 05:31:16 CEST

MGA9-64 Plasma, i5-7500, Nvidia Quadro K620 graphics (nvidia-current), US English version.

No installation issues. Tried a few sites, looked up a part number for my lawn mower engine, shopped around a bit, watched videos on installation (and why I don't want an aftermarket part for this one), reported in here. No issues so far.

CC: (none) => andrewsfarm

Comment 12 Morgan Leijström 2025-08-31 21:39:28 CEST

OK i586 on Thinkpad T43

Clean update
Swedish localisation
Tabs restored
Listening to pod, simple surfing, video works too if small...

Running on kernel desktop 6.6.103-1

Comment 13 katnatek 2025-09-04 23:06:09 CEST

What is holding thee packages?

Comment 14 Thomas Andrews 2025-09-05 01:25:06 CEST

Mostly a real life distraction for me. It's been a difficult week.

But enough about me. Validating.

CC: (none) => sysadmin-bugs
Keywords: (none) => validated_update
Whiteboard: (none) => MGA9-32-OK MGA9-64-OK

Comment 15 Dan Fandrich 2025-09-05 08:00:38 CEST

Looks like the .adv file needs to be updated for the new RPMs in comment 8.

CC: (none) => dan

Comment 16 katnatek 2025-09-05 18:51:21 CEST

(In reply to Dan Fandrich from comment #15)
> Looks like the .adv file needs to be updated for the new RPMs in comment 8.
Fixed, was just a mistake in firefox version-release

Comment 17 Mageia Robot 2025-09-05 20:31:20 CEST

An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2025-0227.html

Resolution: (none) => FIXED
Status: ASSIGNED => RESOLVED

Note You need to log in before you can comment on or make changes to this bug.