1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Mon Jun 25 20:13:06 UTC 2012 - wr@rosenauer.org |
2 Thu Jul 19 18:24:48 UTC 2012 - wr@rosenauer.org |
3 |
3 |
4 - update to Aurora 15 (20120625) |
4 - update to Firefox 15.0b1 |
5 - fix crashreporter restart option (bmo#762780) |
|
6 - fix HTML5 video crash with GStreamer enabled (bmo#761030) |
5 - fix HTML5 video crash with GStreamer enabled (bmo#761030) |
7 - updated filelist |
6 - updated filelist |
8 |
7 |
9 ------------------------------------------------------------------- |
8 ------------------------------------------------------------------- |
10 Mon Jun 25 19:16:07 UTC 2012 - wr@rosenauer.org |
9 Sat Jul 14 19:31:51 UTC 2012 - wr@rosenauer.org |
11 |
10 |
12 - update to 14.0b9 |
11 - update to 14.0.1 (bnc#771583) |
|
12 * MFSA 2012-42/CVE-2012-1949/CVE-2012-1948 |
|
13 Miscellaneous memory safety hazards |
|
14 * MFSA 2012-43/CVE-2012-1950 |
|
15 Incorrect URL displayed in addressbar through drag and drop |
|
16 * MFSA 2012-44/CVE-2012-1951/CVE-2012-1954/CVE-2012-1953/CVE-2012-1952 |
|
17 Gecko memory corruption |
|
18 * MFSA 2012-45/CVE-2012-1955 (bmo#757376) |
|
19 Spoofing issue with location |
|
20 * MFSA 2012-46/CVE-2012-1966 (bmo#734076) |
|
21 XSS through data: URLs |
|
22 * MFSA 2012-47/CVE-2012-1957 (bmo#750096) |
|
23 Improper filtering of javascript in HTML feed-view |
|
24 * MFSA 2012-48/CVE-2012-1958 (bmo#750820) |
|
25 use-after-free in nsGlobalWindow::PageHidden |
|
26 * MFSA 2012-49/CVE-2012-1959 (bmo#754044, bmo#737559) |
|
27 Same-compartment Security Wrappers can be bypassed |
|
28 * MFSA 2012-50/CVE-2012-1960 (bmo#761014) |
|
29 Out of bounds read in QCMS |
|
30 * MFSA 2012-51/CVE-2012-1961 (bmo#761655) |
|
31 X-Frame-Options header ignored when duplicated |
|
32 * MFSA 2012-52/CVE-2012-1962 (bmo#764296) |
|
33 JSDependentString::undepend string conversion results in memory |
|
34 corruption |
|
35 * MFSA 2012-53/CVE-2012-1963 (bmo#767778) |
|
36 Content Security Policy 1.0 implementation errors cause data |
|
37 leakage |
|
38 * MFSA 2012-55/CVE-2012-1965 (bmo#758990) |
|
39 feed: URLs with an innerURI inherit security context of page |
|
40 * MFSA 2012-56/CVE-2012-1967 (bmo#758344) |
|
41 Code execution through javascript: URLs |
13 - license change from tri license to MPL-2.0 |
42 - license change from tri license to MPL-2.0 |
14 - fix crashreporter restart option (bmo#762780) |
43 - fix crashreporter restart option (bmo#762780) |
15 - reenabled mozilla-yarr-pcre.patch to fix build for PPC |
|
16 - require NSS 3.13.5 |
44 - require NSS 3.13.5 |
17 - remove mozjs pacrunner obsoletes again for now |
45 - remove mozjs pacrunner obsoletes again for now |
18 - adopted mozilla-prefer_plugin_pref.patch |
46 - adopted mozilla-prefer_plugin_pref.patch |
|
47 - PPC fixes: |
|
48 * reenabled mozilla-yarr-pcre.patch to fix build for PPC |
|
49 * add patches for bmo#750620 and bmo#746112 |
|
50 * fix xpcshell segfault on ppc |
19 |
51 |
20 ------------------------------------------------------------------- |
52 ------------------------------------------------------------------- |
21 Fri Jun 15 12:37:09 UTC 2012 - wr@rosenauer.org |
53 Fri Jun 15 12:37:09 UTC 2012 - wr@rosenauer.org |
22 |
54 |
23 - update to Firefox 13.0.1 |
55 - update to Firefox 13.0.1 |