1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Mon Aug 30 17:34:28 CEST 2010 - wr@rosenauer.org |
2 Mon Aug 30 17:34:28 CEST 2010 - wr@rosenauer.org |
3 |
3 |
4 - security update to 1.9.2.9 |
4 - security update to 1.9.2.9 (bnc#637303) |
|
5 * MFSA 2010-49/CVE-2010-3169 |
|
6 Miscellaneous memory safety hazards |
|
7 * MFSA 2010-50/CVE-2010-2765 (bmo#576447) |
|
8 Frameset integer overflow vulnerability |
|
9 * MFSA 2010-51/CVE-2010-2767 (bmo#584512) |
|
10 Dangling pointer vulnerability using DOM plugin array |
|
11 * MFSA 2010-53/CVE-2010-3166 (bmo#579655) |
|
12 Heap buffer overflow in nsTextFrameUtils::TransformText |
|
13 * MFSA 2010-54/CVE-2010-2760 (bmo#585815) |
|
14 Dangling pointer vulnerability in nsTreeSelection |
|
15 * MFSA 2010-55/CVE-2010-3168 (bmo#576075) |
|
16 XUL tree removal crash and remote code execution |
|
17 * MFSA 2010-56/CVE-2010-3167 (bmo#576070) |
|
18 Dangling pointer vulnerability in nsTreeContentView |
|
19 * MFSA 2010-57/CVE-2010-2766 (bmo#580445) |
|
20 Crash and remote code execution in normalizeDocument |
|
21 * MFSA 2010-59/CVE-2010-2762 (bmo#584180) |
|
22 SJOW creates scope chains ending in outer object |
|
23 * MFSA 2010-61/CVE-2010-2768 (bmo#579744) |
|
24 UTF-7 XSS by overriding document charset using <object> type |
|
25 attribute |
|
26 * MFSA 2010-62/CVE-2010-2769 (bmo#520189) |
|
27 Copy-and-paste or drag-and-drop into designMode document allows |
|
28 XSS |
|
29 * MFSA 2010-63/CVE-2010-2764 (bmo#552090) |
|
30 Information leak via XMLHttpRequest statusText |
5 - honor LANGUAGE environment variable for UI locale (bmo#583793) |
31 - honor LANGUAGE environment variable for UI locale (bmo#583793) |
6 |
32 |
7 ------------------------------------------------------------------- |
33 ------------------------------------------------------------------- |
8 Mon Aug 30 17:32:20 CEST 2010 - wr@rosenauer.org |
34 Mon Aug 30 17:32:20 CEST 2010 - wr@rosenauer.org |
9 |
35 |