Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 643834

Summary: =www-client/firefox-52.6: spectre vulnerability mitigation (future bump/stable req)
Product: Gentoo Linux Reporter: pva <peter.volkov>
Component: StabilizationAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: normal CC: alexander, mozilla
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description pva 2018-01-07 22:44:10 UTC
Firefox 52.6 is scheduled to be released on January 23, 2018. Reporting this bug to track spectre mitigation inclusion progress. 

In accordance with https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/

Firefox 52 ESR does not support SharedArrayBuffer and is less at risk; the performance.now() mitigations will be included in the regularly scheduled Firefox 52.6 ESR release on January 23, 2018.
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2018-01-26 18:33:01 UTC
Moved into bug 645510.

*** This bug has been marked as a duplicate of bug 645510 ***