1.1 --- a/MozillaFirefox/MozillaFirefox.changes Sun Feb 24 23:01:35 2013 +0100
1.2 +++ b/MozillaFirefox/MozillaFirefox.changes Sun Feb 24 23:04:23 2013 +0100
1.3 @@ -1,10 +1,28 @@
1.4 -------------------------------------------------------------------
1.5 Sat Feb 16 07:08:55 UTC 2013 - wr@rosenauer.org
1.6
1.7 -- update to Firefox 19.0
1.8 - * removed obsolete patches
1.9 - - mozilla-webrtc.patch
1.10 - - mozilla-gstreamer-803287.patch
1.11 +- update to Firefox 19.0 (bnc#804248)
1.12 + * MFSA 2013-21/CVE-2013-0783/2013-0784
1.13 + Miscellaneous memory safety hazards
1.14 + * MFSA 2013-22/CVE-2013-0772 (bmo#801366)
1.15 + Out-of-bounds read in image rendering
1.16 + * MFSA 2013-23/CVE-2013-0765 (bmo#830614)
1.17 + Wrapped WebIDL objects can be wrapped again
1.18 + * MFSA 2013-24/CVE-2013-0773 (bmo#809652)
1.19 + Web content bypass of COW and SOW security wrappers
1.20 + * MFSA 2013-25/CVE-2013-0774 (bmo#827193)
1.21 + Privacy leak in JavaScript Workers
1.22 + * MFSA 2013-26/CVE-2013-0775 (bmo#831095)
1.23 + Use-after-free in nsImageLoadingContent
1.24 + * MFSA 2013-27/CVE-2013-0776 (bmo#796475)
1.25 + Phishing on HTTPS connection through malicious proxy
1.26 + * MFSA 2013-28/CVE-2013-0780/CVE-2013-0782/CVE-2013-0777/
1.27 + CVE-2013-0778/CVE-2013-0779/CVE-2013-0781
1.28 + Use-after-free, out of bounds read, and buffer overflow issues
1.29 + found using Address Sanitizer
1.30 +- removed obsolete patches
1.31 + * mozilla-webrtc.patch
1.32 + * mozilla-gstreamer-803287.patch
1.33 - added patch to fix session restore window order (bmo#712763)
1.34
1.35 -------------------------------------------------------------------
2.1 --- a/MozillaFirefox/MozillaFirefox.spec Sun Feb 24 23:01:35 2013 +0100
2.2 +++ b/MozillaFirefox/MozillaFirefox.spec Sun Feb 24 23:04:23 2013 +0100
2.3 @@ -54,7 +54,7 @@
2.4 %endif
2.5 Version: %{mainver}
2.6 Release: 0
2.7 -%define releasedate 2013020200
2.8 +%define releasedate 2013021500
2.9 Provides: firefox = %{mainver}
2.10 Provides: firefox = %{version}-%{release}
2.11 Provides: web_browser