|
1 ------------------------------------------------------------------- |
|
2 Wed Oct 27 07:12:14 CEST 2010 - wr@rosenauer.org |
|
3 |
|
4 - security update to 3.6.12 (bnc#649492) |
|
5 * MFSA 2010-73/CVE-2010-3765 (bmo#607222) |
|
6 Heap buffer overflow mixing document.write and DOM insertion |
|
7 |
|
8 ------------------------------------------------------------------- |
|
9 Wed Oct 6 07:13:52 CEST 2010 - wr@rosenauer.org |
|
10 |
|
11 - security update to 3.6.11 (bnc#645315) |
|
12 * MFSA 2010-64/CVE-2010-3174/CVE-2010-3175/CVE-2010-3176 |
|
13 Miscellaneous memory safety hazards |
|
14 * MFSA 2010-65/CVE-2010-3179 (bmo#583077) |
|
15 Buffer overflow and memory corruption using document.write |
|
16 * MFSA 2010-66/CVE-2010-3180 (bmo#588929) |
|
17 Use-after-free error in nsBarProp |
|
18 * MFSA 2010-67/CVE-2010-3183 (bmo#598669) |
|
19 Dangling pointer vulnerability in LookupGetterOrSetter |
|
20 * MFSA 2010-68/CVE-2010-3177 (bmo#556734) |
|
21 XSS in gopher parser when parsing hrefs |
|
22 * MFSA 2010-69/CVE-2010-3178 (bmo#576616) |
|
23 Cross-site information disclosure via modal calls |
|
24 * MFSA 2010-70/CVE-2010-3170 (bmo#578697) |
|
25 SSL wildcard certificate matching IP addresses |
|
26 * MFSA 2010-71/CVE-2010-3182 (bmo#590753) |
|
27 Unsafe library loading vulnerabilities |
|
28 * MFSA 2010-72/CVE-2010-3173 |
|
29 Insecure Diffie-Hellman key exchange |
|
30 |
|
31 ------------------------------------------------------------------- |
|
32 Wed Sep 15 07:39:22 CEST 2010 - wr@rosenauer.org |
|
33 |
|
34 - update to 3.6.10 |
|
35 * fixing startup topcrash (bmo#594699) |
|
36 |
|
37 ------------------------------------------------------------------- |
|
38 Thu Aug 26 07:40:28 CEST 2010 - wr@rosenauer.org |
|
39 |
|
40 - security update to 3.6.9 (bnc#637303) |
|
41 * MFSA 2010-49/CVE-2010-3169 |
|
42 Miscellaneous memory safety hazards |
|
43 * MFSA 2010-50/CVE-2010-2765 (bmo#576447) |
|
44 Frameset integer overflow vulnerability |
|
45 * MFSA 2010-51/CVE-2010-2767 (bmo#584512) |
|
46 Dangling pointer vulnerability using DOM plugin array |
|
47 * MFSA 2010-53/CVE-2010-3166 (bmo#579655) |
|
48 Heap buffer overflow in nsTextFrameUtils::TransformText |
|
49 * MFSA 2010-54/CVE-2010-2760 (bmo#585815) |
|
50 Dangling pointer vulnerability in nsTreeSelection |
|
51 * MFSA 2010-55/CVE-2010-3168 (bmo#576075) |
|
52 XUL tree removal crash and remote code execution |
|
53 * MFSA 2010-56/CVE-2010-3167 (bmo#576070) |
|
54 Dangling pointer vulnerability in nsTreeContentView |
|
55 * MFSA 2010-57/CVE-2010-2766 (bmo#580445) |
|
56 Crash and remote code execution in normalizeDocument |
|
57 * MFSA 2010-59/CVE-2010-2762 (bmo#584180) |
|
58 SJOW creates scope chains ending in outer object |
|
59 * MFSA 2010-61/CVE-2010-2768 (bmo#579744) |
|
60 UTF-7 XSS by overriding document charset using <object> type |
|
61 attribute |
|
62 * MFSA 2010-62/CVE-2010-2769 (bmo#520189) |
|
63 Copy-and-paste or drag-and-drop into designMode document allows |
|
64 XSS |
|
65 * MFSA 2010-63/CVE-2010-2764 (bmo#552090) |
|
66 Information leak via XMLHttpRequest statusText |
|
67 |
|
68 ------------------------------------------------------------------- |
|
69 Wed Jul 28 08:33:14 CEST 2010 - meissner@suse.de |
|
70 |
|
71 - disable crash reporter for non x86/x86_64 to make it build. |
|
72 |
|
73 ------------------------------------------------------------------- |
|
74 Sat Jul 24 12:42:58 CEST 2010 - wr@rosenauer.org |
|
75 |
|
76 - security update to 3.6.8 (bnc#622506) |
|
77 * MFSA 2010-48/CVE-2010-2755 (bmo#575836) |
|
78 Dangling pointer crash regression from plugin parameter array |
|
79 fix |
|
80 |
|
81 ------------------------------------------------------------------- |
|
82 Fri Jul 16 06:48:44 CEST 2010 - wr@rosenauer.org |
|
83 |
|
84 - security update to 3.6.7 (bnc#622506) |
|
85 * MFSA 2010-34/CVE-2010-1211/CVE-2010-1212 |
|
86 Miscellaneous memory safety hazards |
|
87 * MFSA 2010-35/CVE-2010-1208 (bmo#572986) |
|
88 DOM attribute cloning remote code execution vulnerability |
|
89 * MFSA 2010-36/CVE-2010-1209 (bmo#552110) |
|
90 Use-after-free error in NodeIterator |
|
91 * MFSA 2010-37/CVE-2010-1214 (bmo#572985) |
|
92 Plugin parameter EnsureCachedAttrParamArrays remote code |
|
93 execution vulnerability |
|
94 * MFSA 2010-38/CVE-2010-1215 (bmo#567069) |
|
95 Arbitrary code execution using SJOW and fast native function |
|
96 * MFSA 2010-39/CVE-2010-2752 (bmo#574059) |
|
97 nsCSSValue::Array index integer overflow |
|
98 * MFSA 2010-40/CVE-2010-2753 (bmo#571106) |
|
99 nsTreeSelection dangling pointer remote code execution |
|
100 vulnerability |
|
101 * MFSA 2010-41/CVE-2010-1205 (bmo#570451) |
|
102 Remote code execution using malformed PNG image |
|
103 * MFSA 2010-42/CVE-2010-1213 (bmo#568148) |
|
104 Cross-origin data disclosure via Web Workers and importScripts |
|
105 * MFSA 2010-43/CVE-2010-1207 (bmo#571287) |
|
106 Same-origin bypass using canvas context |
|
107 * MFSA 2010-44/CVE-2010-1210 (bmo#564679) |
|
108 Characters mapped to U+FFFD in 8 bit encodings cause subsequent |
|
109 character to vanish |
|
110 * MFSA 2010-45/CVE-2010-1206/CVE-2010-2751 (bmo#536466,556957) |
|
111 Multiple location bar spoofing vulnerabilities |
|
112 * MFSA 2010-46/CVE-2010-0654 (bmo#524223) |
|
113 Cross-domain data theft using CSS |
|
114 * MFSA 2010-47/CVE-2010-2754 (bmo#568564) |
|
115 Cross-origin data leakage from script filename in error messages |
|
116 |
|
117 ------------------------------------------------------------------- |
|
118 Sun Jun 27 20:24:31 CEST 2010 - wr@rosenauer.org |
|
119 |
|
120 - update to 3.6.6 release |
|
121 * modifies the crash protection feature to increase the amount |
|
122 of time that plugins are allowed to be non-responsive before |
|
123 being terminated. |
|
124 |
|
125 ------------------------------------------------------------------- |
|
126 Wed Jun 23 14:40:35 CEST 2010 - wr@rosenauer.org |
|
127 |
|
128 - update to final 3.6.4 release (bnc#603356) |
|
129 * MFSA 2010-26/CVE-2010-1200/CVE-2010-1201/CVE-2010-1202/ |
|
130 CVE-2010-1203 |
|
131 Crashes with evidence of memory corruption (rv:1.9.2.4) |
|
132 * MFSA 2010-28/CVE-2010-1198 (bmo#532246) |
|
133 Freed object reuse across plugin instances |
|
134 * MFSA 2010-29/CVE-2010-1196 (bmo#534666) |
|
135 Heap buffer overflow in nsGenericDOMDataNode::SetTextInternal |
|
136 * MFSA 2010-30/CVE-2010-1199 (bmo#554255) |
|
137 Integer Overflow in XSLT Node Sorting |
|
138 * MFSA 2010-31/CVE-2010-1125 (bmo#552255) |
|
139 focus() behavior can be used to inject or steal keystrokes |
|
140 * MFSA 2010-32/CVE-2010-1197 (bmo#537120) |
|
141 Content-Disposition: attachment ignored if |
|
142 Content-Type: multipart also present |
|
143 * MFSA 2010-33/CVE-2008-5913 (bmo#475585) |
|
144 User tracking across sites using Math.random() |
|
145 |
|
146 ------------------------------------------------------------------- |
|
147 Mon Jun 7 07:07:33 CEST 2010 - wr@rosenauer.org |
|
148 |
|
149 - update to 3.6.4(build6) |
|
150 |
1 ------------------------------------------------------------------- |
151 ------------------------------------------------------------------- |
2 Sun Apr 18 09:42:40 CEST 2010 - wr@rosenauer.org |
152 Sun Apr 18 09:42:40 CEST 2010 - wr@rosenauer.org |
3 |
153 |
4 - security update to 3.6.4 (Lorentz) |
154 - security update to 3.6.4 (Lorentz) |
5 * enable crashreporter also for x86-64 |
155 * enable crashreporter also for x86-64 |