[#380009] TESTED firefox.git=137.0-alt1

Girar awaiter (rauty) girar-builder at altlinux.org
Wed Apr 2 15:09:15 MSK 2025 

https://git.altlinux.org/tasks/380009/logs/events.1.1.log
https://packages.altlinux.org/tasks/380009

subtask  name     aarch64   i586  x86_64
   #100  firefox    54:20  25:57   29:57

2025-Apr-02 11:04:43 :: test-only task #380009 for sisyphus started by rauty:
#100 build 137.0-alt1 from /people/rauty/packages/firefox.git fetched at 2025-Apr-02 11:04:34
2025-Apr-02 11:04:44 :: [aarch64] #100 firefox.git 137.0-alt1: build start
2025-Apr-02 11:04:44 :: [i586] #100 firefox.git 137.0-alt1: build start
2025-Apr-02 11:04:44 :: [x86_64] #100 firefox.git 137.0-alt1: build start
2025-Apr-02 11:30:41 :: [i586] #100 firefox.git 137.0-alt1: build OK
2025-Apr-02 11:34:41 :: [x86_64] #100 firefox.git 137.0-alt1: build OK
2025-Apr-02 11:59:04 :: [aarch64] #100 firefox.git 137.0-alt1: build OK
2025-Apr-02 11:59:42 :: #100: firefox.git 137.0-alt1: build check OK
2025-Apr-02 11:59:43 :: build check OK
warning (#100): firefox-config-privacy-137.0-alt1.x86_64.rpm should be .noarch.rpm
2025-Apr-02 12:01:57 :: noarch check OK
2025-Apr-02 12:01:58 :: plan: src +1 -1 =20045, aarch64 +3 -3 =34835, i586 +3 -3 =33701, x86_64 +3 -3 =35640
#100 firefox 136.0.2-alt1 -> 137.0-alt1
 Tue Apr 01 2025 Ajrat Makhmutov <rauty at altlinux> 137.0-alt1
 - New version (137.0).
 - Security fixes:
   + CVE-2025-2857: Incorrect handle could lead to sandbox escapes
   + CVE-2025-3028: Use-after-free triggered by XSLTProcessor
   + CVE-2025-3031: JIT optimization bug with different stack slot sizes
   + CVE-2025-3032: Leaking file descriptors from the fork server
   + CVE-2025-3029: URL bar spoofing via non-BMP Unicode characters
   + CVE-2025-3035: Tab title disclosure across pages when using AI chatbot
   + CVE-2025-3033: Opening local .url files could lead to another file being opened
 [...]
2025-Apr-02 12:01:59 :: firefox: mentions vulnerabilities: CVE-2025-2857 CVE-2025-3028 CVE-2025-3031 CVE-2025-3032 CVE-2025-3029 CVE-2025-3035 CVE-2025-3033 CVE-2025-3030 CVE-2025-3034
2025-Apr-02 12:03:05 :: patched apt indices
2025-Apr-02 12:03:16 :: created next repo
2025-Apr-02 12:03:28 :: duplicate provides check OK
2025-Apr-02 12:04:18 :: dependencies check OK
2025-Apr-02 12:05:05 :: [x86_64 i586 aarch64] ELF symbols check OK
	x86_64: firefox=137.0-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2025-Apr-02 12:05:32 :: [x86_64] #100 firefox: install check OK
	i586: firefox=137.0-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2025-Apr-02 12:05:34 :: [i586] #100 firefox: install check OK
	aarch64: firefox=137.0-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2025-Apr-02 12:05:45 :: [aarch64] #100 firefox: install check OK
2025-Apr-02 12:05:51 :: [x86_64] #100 firefox-config-privacy: install check OK
2025-Apr-02 12:05:55 :: [i586] #100 firefox-config-privacy: install check OK
2025-Apr-02 12:06:12 :: [aarch64] #100 firefox-config-privacy: install check OK
2025-Apr-02 12:06:27 :: [i586] #100 firefox-debuginfo: install check OK
2025-Apr-02 12:06:47 :: [x86_64] #100 firefox-debuginfo: install check OK
2025-Apr-02 12:07:34 :: [aarch64] #100 firefox-debuginfo: install check OK
2025-Apr-02 12:07:35 :: [x86_64-i586] plan: #1 +1 -1 =11602
2025-Apr-02 12:08:10 :: [x86_64-i586] arepo build OK
2025-Apr-02 12:08:30 :: [x86_64-i586] generated apt indices
2025-Apr-02 12:08:32 :: [x86_64-i586] created next repo
2025-Apr-02 12:08:44 :: [x86_64-i586] dependencies check OK
2025-Apr-02 12:08:46 :: gears inheritance check OK
2025-Apr-02 12:08:46 :: srpm inheritance check OK
girar-check-perms: access to firefox ALLOWED for rauty: approved builder
check-subtask-perms: #100: firefox: allowed for rauty
2025-Apr-02 12:08:46 :: acl check OK
2025-Apr-02 12:08:59 :: created contents_index files
2025-Apr-02 12:09:11 :: created hash files: aarch64 i586 src x86_64-i586 x86_64
2025-Apr-02 12:09:14 :: task #380009 for sisyphus TESTED

More information about the Sisyphus-incominger mailing list