1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Fri Mar 9 21:49:05 UTC 2012 - wr@rosenauer.org |
2 Fri Mar 9 21:49:05 UTC 2012 - wr@rosenauer.org |
3 |
3 |
4 - update to version 11.0 (bnc#750044) |
4 - update to version 11.0 (bnc#750044) |
|
5 * MFSA 2012-13/CVE-2012-0455 (bmo#704354) |
|
6 XSS with Drag and Drop and Javascript: URL |
|
7 * MFSA 2012-14/CVE-2012-0456/CVE-2012-0457 (bmo#711653, #720103) |
|
8 SVG issues found with Address Sanitizer |
|
9 * MFSA 2012-15/CVE-2012-0451 (bmo#717511) |
|
10 XSS with multiple Content Security Policy headers |
|
11 * MFSA 2012-16/CVE-2012-0458 |
|
12 Escalation of privilege with Javascript: URL as home page |
|
13 * MFSA 2012-17/CVE-2012-0459 (bmo#723446) |
|
14 Crash when accessing keyframe cssText after dynamic modification |
|
15 * MFSA 2012-18/CVE-2012-0460 (bmo#727303) |
|
16 window.fullScreen writeable by untrusted content |
|
17 * MFSA 2012-19/CVE-2012-0461/CVE-2012-0462/CVE-2012-0464/ |
|
18 CVE-2012-0463 |
|
19 Miscellaneous memory safety hazards |
5 - fix build on ARM |
20 - fix build on ARM |
6 - disable jemalloc on s390(x) |
21 - disable jemalloc on s390(x) |
7 |
22 |
8 ------------------------------------------------------------------- |
23 ------------------------------------------------------------------- |
9 Thu Feb 16 08:51:42 UTC 2012 - wr@rosenauer.org |
24 Thu Feb 16 08:51:42 UTC 2012 - wr@rosenauer.org |