# HG changeset patch # User Wolfgang Rosenauer # Date 1391580975 -3600 # Node ID 5561a483919bfb69b409c29fa98c25fba041db27 # Parent ab93666f5ff78bff2b711b1acf907c3af70a9e65 24.3.0 release diff -r ab93666f5ff7 -r 5561a483919b MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Thu Jan 30 22:17:50 2014 +0100 +++ b/MozillaFirefox/MozillaFirefox.changes Wed Feb 05 07:16:15 2014 +0100 @@ -1,4 +1,25 @@ -+------------------------------------------------------------------- +------------------------------------------------------------------- +Thu Jan 30 21:21:09 UTC 2014 - wr@rosenauer.org + +- update to Firefox 24.3.0esr (bnc#861847) + * MFSA 2014-01/CVE-2014-1477/CVE-2014-1478 + Miscellaneous memory safety hazards (rv:27.0 / rv:24.3) + * MFSA 2014-02/CVE-2014-1479 (bmo#911864) + Clone protected content with XBL scopes + * MFSA 2014-04/CVE-2014-1482 (bmo#943803) + Incorrect use of discarded images by RasterImage + * MFSA 2014-08/CVE-2014-1486 (bmo#942164) + Use-after-free with imgRequestProxy and image proccessing + * MFSA 2014-09/CVE-2014-1487 (bmo#947592) + Cross-origin information leak through web workers + * MFSA 2014-12/CVE-2014-1490/CVE-2014-1491 + (bmo#934545, bmo#930874, bmo#930857) + NSS ticket handling issues + * MFSA 2014-13/CVE-2014-1481(bmo#936056) + Inconsistent JavaScript handling of access to Window objects +- requires NSS 3.15.4 + +------------------------------------------------------------------- Sat Dec 7 17:30:18 UTC 2013 - wr@rosenauer.org - update to Firefox 24.2.0esr (bnc#854367, bnc#854370) diff -r ab93666f5ff7 -r 5561a483919b MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Thu Jan 30 22:17:50 2014 +0100 +++ b/MozillaFirefox/MozillaFirefox.spec Wed Feb 05 07:16:15 2014 +0100 @@ -1,8 +1,8 @@ # # spec file for package MozillaFirefox # -# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. -# 2006-2013 Wolfgang Rosenauer +# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. +# 2006-2014 Wolfgang Rosenauer # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -18,7 +18,7 @@ %define major 24 -%define mainver %major.2.0 +%define mainver %major.3.0 %define update_channel esr24 %if %suse_version > 1220 @@ -51,7 +51,7 @@ BuildRequires: wireless-tools %endif BuildRequires: mozilla-nspr-devel >= 4.10.2 -BuildRequires: mozilla-nss-devel >= 3.15.3.1 +BuildRequires: mozilla-nss-devel >= 3.15.4 BuildRequires: nss-shared-helper-devel %if %suse_version > 1210 BuildRequires: pkgconfig(gstreamer-%gstreamer_ver) @@ -63,7 +63,7 @@ %endif Version: %{mainver} Release: 0 -%define releasedate 2013120700 +%define releasedate 2014013000 Provides: firefox = %{mainver} Provides: firefox = %{version}-%{release} Provides: web_browser diff -r ab93666f5ff7 -r 5561a483919b MozillaFirefox/create-tar.sh --- a/MozillaFirefox/create-tar.sh Thu Jan 30 22:17:50 2014 +0100 +++ b/MozillaFirefox/create-tar.sh Wed Feb 05 07:16:15 2014 +0100 @@ -2,8 +2,8 @@ CHANNEL="esr24" BRANCH="releases/mozilla-$CHANNEL" -RELEASE_TAG="FIREFOX_24_2_0esr_RELEASE" -VERSION="24.2.0" +RELEASE_TAG="FIREFOX_24_3_0esr_RELEASE" +VERSION="24.3.0" # mozilla if [ -d mozilla ]; then diff -r ab93666f5ff7 -r 5561a483919b MozillaFirefox/firefox-esr.changes --- a/MozillaFirefox/firefox-esr.changes Thu Jan 30 22:17:50 2014 +0100 +++ b/MozillaFirefox/firefox-esr.changes Wed Feb 05 07:16:15 2014 +0100 @@ -1,4 +1,25 @@ ------------------------------------------------------------------- +Thu Jan 30 21:21:09 UTC 2014 - wr@rosenauer.org + +- update to Firefox 24.3.0esr (bnc#861847) + * MFSA 2014-01/CVE-2014-1477/CVE-2014-1478 + Miscellaneous memory safety hazards (rv:27.0 / rv:24.3) + * MFSA 2014-02/CVE-2014-1479 (bmo#911864) + Clone protected content with XBL scopes + * MFSA 2014-04/CVE-2014-1482 (bmo#943803) + Incorrect use of discarded images by RasterImage + * MFSA 2014-08/CVE-2014-1486 (bmo#942164) + Use-after-free with imgRequestProxy and image proccessing + * MFSA 2014-09/CVE-2014-1487 (bmo#947592) + Cross-origin information leak through web workers + * MFSA 2014-12/CVE-2014-1490/CVE-2014-1491 + (bmo#934545, bmo#930874, bmo#930857) + NSS ticket handling issues + * MFSA 2014-13/CVE-2014-1481(bmo#936056) + Inconsistent JavaScript handling of access to Window objects +- requires NSS 3.15.4 + +------------------------------------------------------------------- Sat Dec 7 17:30:18 UTC 2013 - wr@rosenauer.org - update to Firefox 24.2.0esr (bnc#854367, bnc#854370) diff -r ab93666f5ff7 -r 5561a483919b MozillaFirefox/firefox-esr.spec --- a/MozillaFirefox/firefox-esr.spec Thu Jan 30 22:17:50 2014 +0100 +++ b/MozillaFirefox/firefox-esr.spec Wed Feb 05 07:16:15 2014 +0100 @@ -1,8 +1,8 @@ # # spec file for package firefox-esr # -# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. -# 2006-2013 Wolfgang Rosenauer +# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. +# 2006-2014 Wolfgang Rosenauer # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -18,7 +18,7 @@ %define major 24 -%define mainver %major.2.0 +%define mainver %major.3.0 %define update_channel release %define gstreamer_ver 0.10 @@ -47,7 +47,7 @@ BuildRequires: wireless-tools %endif BuildRequires: mozilla-nspr-devel >= 4.10.2 -BuildRequires: mozilla-nss-devel >= 3.15.3.1 +BuildRequires: mozilla-nss-devel >= 3.15.4 BuildRequires: nss-shared-helper-devel %if %suse_version > 1210 BuildRequires: pkgconfig(gstreamer-%gstreamer_ver) @@ -59,7 +59,7 @@ %endif Version: %{mainver} Release: 0 -%define releasedate 2013120700 +%define releasedate 2014013000 Provides: firefox-esr = %{mainver} Provides: firefox-esr = %{version}-%{release} Provides: web_browser