1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Sat Dec 7 17:30:18 UTC 2013 - wr@rosenauer.org |
2 Sat Dec 7 17:30:18 UTC 2013 - wr@rosenauer.org |
3 |
3 |
4 - update to Firefox 24.2.0esr (bnc#) |
4 - update to Firefox 24.2.0esr (bnc#854367, bnc#854370) |
5 * requires NSPR 4.10.2 and NSS 3.15.3.1 or higher |
5 * requires NSPR 4.10.2 and NSS 3.15.3.1 or higher |
|
6 * MFSA 2013-104/CVE-2013-5609/CVE-2013-5610 |
|
7 Miscellaneous memory safety hazards |
|
8 * MFSA 2013-108/CVE-2013-5616 (bmo#938341) |
|
9 Use-after-free in event listeners |
|
10 * MFSA 2013-109/CVE-2013-5618 (bmo#926361) |
|
11 Use-after-free during Table Editing |
|
12 * MFSA 2013-111/CVE-2013-6671 (bmo#930281) |
|
13 Segmentation violation when replacing ordered list elements |
|
14 * MFSA 2013-113/CVE-2013-6673 (bmo#970380) |
|
15 Trust settings for built-in roots ignored during EV certificate |
|
16 validation |
|
17 * MFSA 2013-114/CVE-2013-5613 (bmo#930381, bmo#932449) |
|
18 Use-after-free in synthetic mouse movement |
|
19 * MFSA 2013-115/CVE-2013-5615 (bmo#929261) |
|
20 GetElementIC typed array stubs can be generated outside observed |
|
21 typesets |
|
22 * MFSA 2013-116/CVE-2013-6629/CVE-2013-6630 (bmo#891693) |
|
23 JPEG information leak |
|
24 * MFSA 2013-117 (bmo#946351) |
|
25 Mis-issued ANSSI/DCSSI certificate |
|
26 (fixed via NSS 3.15.3.1) |
6 |
27 |
7 ------------------------------------------------------------------- |
28 ------------------------------------------------------------------- |
8 Thu Oct 24 16:46:31 UTC 2013 - wr@rosenauer.org |
29 Thu Oct 24 16:46:31 UTC 2013 - wr@rosenauer.org |
9 |
30 |
10 - update to Firefox 24.1.0esr (bnc#847708) |
31 - update to Firefox 24.1.0esr (bnc#847708) |