- really lower sandbox level to 2 for glibc 2.34, rel 3

diff --git a/firefox.spec b/firefox.spec
index 9a4113388f5501990d120e8a03b4b0bdd3ffd422..7af62a87d34d7470c3324b7604d8d86d106270c3 100644 (file)
--- a/firefox.spec
+++ b/firefox.spec
@@ -49,7 +49,7 @@ Summary(hu.UTF-8):    Firefox web böngésző
 Summary(pl.UTF-8):     Firefox - przeglądarka WWW
 Name:          firefox
 Version:       93.0
-Release:       2
+Release:       3
 License:       MPL v2.0
 Group:         X11/Applications/Networking
 Source0:       https://releases.mozilla.org/pub/firefox/releases/%{version}/source/firefox-%{version}.source.tar.xz

diff --git a/glibc-2.34.patch b/glibc-2.34.patch
index d2cef942a9bd9938d469406493b4bdcd81e10f3a..916a87933e52a37fb8ae944e8388bb2e8d32d1fc 100644 (file)
--- a/glibc-2.34.patch
+++ b/glibc-2.34.patch
@@ -12,3 +12,17 @@
  pref("general.useragent.compatMode.firefox", false);
  
  pref("general.config.obscure_value", 13); // for MCD .cfg files
+--- firefox-93.0/browser/app/profile/firefox.js~       2021-10-06 09:50:42.000000000 +0200
++++ firefox-93.0/browser/app/profile/firefox.js        2021-10-06 19:19:15.409293732 +0200
+@@ -1233,7 +1233,10 @@
+   // the sandbox while we fix their problems, or to allow running Firefox with
+   // exotic configurations we can't reasonably support out of the box.
+   //
+-  pref("security.sandbox.content.level", 4);
++// Lower from 4 to 2 due to extension problems on glibc 2.34
++// https://lists.pld-linux.org/mailman/pipermail/pld-devel-en/2021-October/026375.html
++// https://wiki.mozilla.org/Security/Sandbox#Content_Levels
++  pref("security.sandbox.content.level", 2);
+   // Introduced as part of bug 1608558.  Linux is currently the only platform
+   // that uses a sandbox level for the socket process.  There are currently
+   // only 2 levels: