# HG changeset patch # User Wolfgang Rosenauer # Date 1331880515 -3600 # Node ID 0af1b0003b9f4b9fda38468d2366aad8bed0a56f # Parent ff30593d2daa750655af24db81b19de7944983cf working 12.0b1 diff -r ff30593d2daa -r 0af1b0003b9f MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Thu Mar 15 10:33:22 2012 +0100 +++ b/MozillaFirefox/MozillaFirefox.changes Fri Mar 16 07:48:35 2012 +0100 @@ -2,6 +2,21 @@ Fri Mar 9 21:47:07 UTC 2012 - wr@rosenauer.org - update to Firefox 11.0 (bnc#750044) + * MFSA 2012-13/CVE-2012-0455 (bmo#704354) + XSS with Drag and Drop and Javascript: URL + * MFSA 2012-14/CVE-2012-0456/CVE-2012-0457 (bmo#711653, #720103) + SVG issues found with Address Sanitizer + * MFSA 2012-15/CVE-2012-0451 (bmo#717511) + XSS with multiple Content Security Policy headers + * MFSA 2012-16/CVE-2012-0458 + Escalation of privilege with Javascript: URL as home page + * MFSA 2012-17/CVE-2012-0459 (bmo#723446) + Crash when accessing keyframe cssText after dynamic modification + * MFSA 2012-18/CVE-2012-0460 (bmo#727303) + window.fullScreen writeable by untrusted content + * MFSA 2012-19/CVE-2012-0461/CVE-2012-0462/CVE-2012-0464/ + CVE-2012-0463 + Miscellaneous memory safety hazards - ported and reenabled KDE integration (bnc#746591) - explicitely build-require X libs diff -r ff30593d2daa -r 0af1b0003b9f MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Thu Mar 15 10:33:22 2012 +0100 +++ b/MozillaFirefox/MozillaFirefox.spec Fri Mar 16 07:48:35 2012 +0100 @@ -91,7 +91,6 @@ Patch12: mozilla-linux3.patch Patch14: mozilla-disable-neon-option.patch Patch15: mozilla-yarr-pcre.patch -Patch16: mozilla-sle11-gcc.patch # Firefox/browser Patch31: firefox-browser-css.patch Patch32: firefox-cross-desktop.patch @@ -220,7 +219,6 @@ %patch12 -p1 %patch14 -p1 #%patch15 -p1 -%patch16 -p1 # %patch31 -p1 %patch32 -p1 @@ -425,6 +423,7 @@ rm -f $RPM_BUILD_ROOT%{progdir}/precomplete rm -f $RPM_BUILD_ROOT%{progdir}/dictionaries/en-US* rm -f $RPM_BUILD_ROOT%{progdir}/firefox +rm -f $RPM_BUILD_ROOT%{progdir}/update-settings.ini # devel mkdir -p %{buildroot}%{_bindir} install -m 755 %SOURCE12 %{buildroot}%{_bindir} diff -r ff30593d2daa -r 0af1b0003b9f MozillaFirefox/mozilla-sle11-gcc.patch --- a/MozillaFirefox/mozilla-sle11-gcc.patch Thu Mar 15 10:33:22 2012 +0100 +++ /dev/null Thu Jan 01 00:00:00 1970 +0000 @@ -1,1 +0,0 @@ -../mozilla-sle11-gcc.patch \ No newline at end of file diff -r ff30593d2daa -r 0af1b0003b9f firefox-kde.patch --- a/firefox-kde.patch Thu Mar 15 10:33:22 2012 +0100 +++ b/firefox-kde.patch Fri Mar 16 07:48:35 2012 +0100 @@ -2,7 +2,7 @@ new file mode 100644 --- /dev/null +++ b/browser/base/content/browser-kde.xul -@@ -0,0 +1,1125 @@ +@@ -0,0 +1,1118 @@ +#filter substitution + +# -*- Mode: HTML -*- @@ -396,27 +396,27 @@ + +