diff -r efc8a8a62a09 -r ef3b8d075242 MozillaFirefox/firefox-esr.changes
--- a/MozillaFirefox/firefox-esr.changes	Sat Sep 14 21:02:47 2013 +0200
+++ b/MozillaFirefox/firefox-esr.changes	Thu Oct 24 18:41:12 2013 +0200
@@ -1,7 +1,29 @@
 -------------------------------------------------------------------
+Thu Oct 24 09:46:52 UTC 2013 - wr@rosenauer.org
+
+- update to Firefox 17.0.10esr (bnc#)
+  * requires NSS 3.14.4 or above
+
+-------------------------------------------------------------------
 Wed Sep 11 18:43:15 UTC 2013 - wr@rosenauer.org
 
-- update to Firefox 17.0.9esr (bnc#)
+- update to Firefox 17.0.9esr (bnc#840485)
+  * MFSA 2013-65/CVE-2013-1705 (bmo#882865)
+    Buffer underflow when generating CRMF requests
+  * MFSA 2013-76/CVE-2013-1718
+    Miscellaneous memory safety hazards
+  * MFSA 2013-79/CVE-2013-1722 (bmo#893308)
+    Use-after-free in Animation Manager during stylesheet cloning
+  * MFSA 2013-82/CVE-2013-1725 (bmo#876762)
+    Calling scope for new Javascript objects can lead to memory corruption
+  * MFSA 2013-88/CVE-2013-1730 (bmo#851353)
+    Compartment mismatch re-attaching XBL-backed nodes
+  * MFSA 2013-89/CVE-2013-1732 (bmo#883514)
+    Buffer overflow with multi-column, lists, and floats
+  * MFSA 2013-90/CVE-2013-1735/CVE-2013-1736 (bmo#898871, bmo#906301)
+    Memory corruption involving scrolling
+  * MFSA 2013-91/CVE-2013-1737 (bmo#907727)
+    User-defined properties on DOM proxies get the wrong "this" object
 
 -------------------------------------------------------------------
 Fri Aug  2 09:58:06 UTC 2013 - wr@rosenauer.org