mozilla: MozillaFirefox/MozillaFirefox.changes@52284fd63667 (annotated)

539 b1134fe91f9a merge latest changes from firefox16 Wolfgang Rosenauer <wr@rosenauer.org> parents: 536 diff changeset	1	-------------------------------------------------------------------
699 f810fbe5fece update to 27.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 697 diff changeset	2	Tue Jan 28 15:45:41 UTC 2014 - wr@rosenauer.org
f810fbe5fece update to 27.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 697 diff changeset	3
700 52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	4	- update to Firefox 27.0 (bnc#861847)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	5	* MFSA 2014-01/CVE-2014-1477/CVE-2014-1478
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	6	Miscellaneous memory safety hazards (rv:27.0 / rv:24.3)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	7	* MFSA 2014-02/CVE-2014-1479 (bmo#911864)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	8	Clone protected content with XBL scopes
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	9	* MFSA 2014-03/CVE-2014-1480 (bmo#916726)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	10	UI selection timeout missing on download prompts
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	11	* MFSA 2014-04/CVE-2014-1482 (bmo#943803)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	12	Incorrect use of discarded images by RasterImage
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	13	* MFSA 2014-05/CVE-2014-1483 (bmo#950427)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	14	Information disclosure with *FromPoint on iframes
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	15	* MFSA 2014-06/CVE-2014-1484 (bmo#953993)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	16	Profile path leaks to Android system log
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	17	* MFSA 2014-07/CVE-2014-1485 (bmo#910139)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	18	XSLT stylesheets treated as styles in Content Security Policy
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	19	* MFSA 2014-08/CVE-2014-1486 (bmo#942164)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	20	Use-after-free with imgRequestProxy and image proccessing
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	21	* MFSA 2014-09/CVE-2014-1487 (bmo#947592)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	22	Cross-origin information leak through web workers
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	23	* MFSA 2014-10/CVE-2014-1489 (bmo#959531)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	24	Firefox default start page UI content invokable by script
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	25	* MFSA 2014-11/CVE-2014-1488 (bmo#950604)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	26	Crash when using web workers with asm.js
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	27	* MFSA 2014-12/CVE-2014-1490/CVE-2014-1491
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	28	(bmo#934545, bmo#930874, bmo#930857)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	29	NSS ticket handling issues
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	30	* MFSA 2014-13/CVE-2014-1481(bmo#936056)
52284fd63667 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 699 diff changeset	31	Inconsistent JavaScript handling of access to Window objects
691 18c2dc922e51 update to Firefox 27.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 689 diff changeset	32	- requires NSS 3.15.4 or higher
18c2dc922e51 update to Firefox 27.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 689 diff changeset	33	- rebased/reworked patches
697 0118161f4c11 changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 696 diff changeset	34	- removed obsolete mozilla-bug929439.patch
691 18c2dc922e51 update to Firefox 27.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 689 diff changeset	35
18c2dc922e51 update to Firefox 27.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 689 diff changeset	36	-------------------------------------------------------------------
692 8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	37	Thu Dec 12 21:19:54 UTC 2013 - uweigand@de.ibm.com
8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	38
8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	39	- Add support for powerpc64le-linux.
8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	40	* mozilla-ppc64le.patch: general support
8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	41	* mozilla-libffi-ppc64le.patch: libffi backport
8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	42	* mozilla-xpcom-ppc64le.patch: port xpcom
697 0118161f4c11 changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 696 diff changeset	43	- Add build fix from mainline.
0118161f4c11 changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 696 diff changeset	44	* mozilla-bug929439.patch
692 8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	45
8add0ba12be5 PPC64LE support Wolfgang Rosenauer <wr@rosenauer.org> parents: 691 diff changeset	46	-------------------------------------------------------------------
688 d09dea6b31b1 26.0 final Wolfgang Rosenauer <wr@rosenauer.org> parents: 686 diff changeset	47	Sun Dec 8 20:26:23 UTC 2013 - wr@rosenauer.org
d09dea6b31b1 26.0 final Wolfgang Rosenauer <wr@rosenauer.org> parents: 686 diff changeset	48
689 afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	49	- update to Firefox 26.0 (bnc#854367, bnc#854370)
686 ab25aac2aa83 Firefox 26.0b5 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 682 diff changeset	50	* rebased patches
688 d09dea6b31b1 26.0 final Wolfgang Rosenauer <wr@rosenauer.org> parents: 686 diff changeset	51	* requires NSPR 4.10.2 and NSS 3.15.3.1
689 afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	52	* MFSA 2013-104/CVE-2013-5609/CVE-2013-5610
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	53	Miscellaneous memory safety hazards
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	54	* MFSA 2013-105/CVE-2013-5611 (bmo#771294)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	55	Application Installation doorhanger persists on navigation
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	56	* MFSA 2013-106/CVE-2013-5612 (bmo#871161)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	57	Character encoding cross-origin XSS attack
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	58	* MFSA 2013-107/CVE-2013-5614 (bmo#886262)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	59	Sandbox restrictions not applied to nested object elements
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	60	* MFSA 2013-108/CVE-2013-5616 (bmo#938341)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	61	Use-after-free in event listeners
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	62	* MFSA 2013-109/CVE-2013-5618 (bmo#926361)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	63	Use-after-free during Table Editing
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	64	* MFSA 2013-110/CVE-2013-5619 (bmo#917841)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	65	Potential overflow in JavaScript binary search algorithms
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	66	* MFSA 2013-111/CVE-2013-6671 (bmo#930281)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	67	Segmentation violation when replacing ordered list elements
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	68	* MFSA 2013-112/CVE-2013-6672 (bmo#894736)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	69	Linux clipboard information disclosure though selection paste
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	70	* MFSA 2013-113/CVE-2013-6673 (bmo#970380)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	71	Trust settings for built-in roots ignored during EV certificate
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	72	validation
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	73	* MFSA 2013-114/CVE-2013-5613 (bmo#930381, bmo#932449)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	74	Use-after-free in synthetic mouse movement
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	75	* MFSA 2013-115/CVE-2013-5615 (bmo#929261)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	76	GetElementIC typed array stubs can be generated outside observed
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	77	typesets
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	78	* MFSA 2013-116/CVE-2013-6629/CVE-2013-6630 (bmo#891693)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	79	JPEG information leak
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	80	* MFSA 2013-117 (bmo#946351)
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	81	Mis-issued ANSSI/DCSSI certificate
afcaf2131b0e changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 688 diff changeset	82	(fixed via NSS 3.15.3.1)
686 ab25aac2aa83 Firefox 26.0b5 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 682 diff changeset	83	- removed gecko.js preference file as GStreamer is enabled by
ab25aac2aa83 Firefox 26.0b5 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 682 diff changeset	84	default now
ab25aac2aa83 Firefox 26.0b5 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 682 diff changeset	85
ab25aac2aa83 Firefox 26.0b5 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 682 diff changeset	86	-------------------------------------------------------------------
681 856a85f3dc36 prepare 25.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 680 diff changeset	87	Thu Oct 24 18:16:19 UTC 2013 - wr@rosenauer.org
856a85f3dc36 prepare 25.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 680 diff changeset	88
682 a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	89	- update to Firefox 25.0 (bnc#847708)
680 be770d3cbc02 Firefox 25 beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 676 diff changeset	90	* rebased patches
681 856a85f3dc36 prepare 25.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 680 diff changeset	91	* requires NSS 3.15.2 or above
682 a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	92	* MFSA 2013-93/CVE-2013-5590/CVE-2013-5591/CVE-2013-5592
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	93	Miscellaneous memory safety hazards
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	94	* MFSA 2013-94/CVE-2013-5593 (bmo#868327)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	95	Spoofing addressbar through SELECT element
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	96	* MFSA 2013-95/CVE-2013-5604 (bmo#914017)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	97	Access violation with XSLT and uninitialized data
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	98	* MFSA 2013-96/CVE-2013-5595 (bmo#916580)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	99	Improperly initialized memory and overflows in some JavaScript
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	100	functions
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	101	* MFSA 2013-97/CVE-2013-5596 (bmo#910881)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	102	Writing to cycle collected object during image decoding
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	103	* MFSA 2013-98/CVE-2013-5597 (bmo#918864)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	104	Use-after-free when updating offline cache
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	105	* MFSA 2013-99/CVE-2013-5598 (bmo#920515)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	106	Security bypass of PDF.js checks using iframes
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	107	* MFSA 2013-100/CVE-2013-5599/CVE-2013-5600/CVE-2013-5601
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	108	(bmo#915210, bmo#915576, bmo#916685)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	109	Miscellaneous use-after-free issues found through ASAN fuzzing
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	110	* MFSA 2013-101/CVE-2013-5602 (bmo#897678)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	111	Memory corruption in workers
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	112	* MFSA 2013-102/CVE-2013-5603 (bmo#916404)
a15c18cb0ee6 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 681 diff changeset	113	Use-after-free in HTML document templates
676 ed32bb3eb2f0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 672 diff changeset	114
ed32bb3eb2f0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 672 diff changeset	115	-------------------------------------------------------------------
672 2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	116	Tue Sep 24 07:31:30 UTC 2013 - wr@rosenauer.org
2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	117
2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	118	- as GStreamer is not automatically required anymore but loaded
2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	119	dynamically if available, require it explicitely
2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	120	- recommend optional GStreamer plugins for comprehensive media
2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	121	support
2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	122
2268d308dc15 minor polishing Wolfgang Rosenauer <wr@rosenauer.org> parents: 667 diff changeset	123	-------------------------------------------------------------------
666 0d913ca30238 move greek to the translations-common package (bnc#840551) Ludwig Nussel <lnussel@suse.de> parents: 664 diff changeset	124	Mon Sep 16 11:59:18 UTC 2013 - lnussel@suse.de
0d913ca30238 move greek to the translations-common package (bnc#840551) Ludwig Nussel <lnussel@suse.de> parents: 664 diff changeset	125
0d913ca30238 move greek to the translations-common package (bnc#840551) Ludwig Nussel <lnussel@suse.de> parents: 664 diff changeset	126	- move greek to the translations-common package (bnc#840551)
0d913ca30238 move greek to the translations-common package (bnc#840551) Ludwig Nussel <lnussel@suse.de> parents: 664 diff changeset	127
0d913ca30238 move greek to the translations-common package (bnc#840551) Ludwig Nussel <lnussel@suse.de> parents: 664 diff changeset	128	-------------------------------------------------------------------
664 1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	129	Sat Sep 14 14:39:58 UTC 2013 - wr@rosenauer.org
1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	130
666 0d913ca30238 move greek to the translations-common package (bnc#840551) Ludwig Nussel <lnussel@suse.de> parents: 664 diff changeset	131	- update to Firefox 24.0 (bnc#840485)
667 6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	132	* MFSA 2013-76/CVE-2013-1718/CVE-2013-1719
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	133	Miscellaneous memory safety hazards
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	134	* MFSA 2013-77/CVE-2013-1720 (bmo#888820)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	135	Improper state in HTML5 Tree Builder with templates
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	136	* MFSA 2013-78/CVE-2013-1721 (bmo#890277)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	137	Integer overflow in ANGLE library
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	138	* MFSA 2013-79/CVE-2013-1722 (bmo#893308)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	139	Use-after-free in Animation Manager during stylesheet cloning
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	140	* MFSA 2013-80/CVE-2013-1723 (bmo#891292)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	141	NativeKey continues handling key messages after widget is destroyed
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	142	* MFSA 2013-81/CVE-2013-1724 (bmo#894137)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	143	Use-after-free with select element
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	144	* MFSA 2013-82/CVE-2013-1725 (bmo#876762)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	145	Calling scope for new Javascript objects can lead to memory corruption
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	146	* MFSA 2013-85/CVE-2013-1728 (bmo#883686)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	147	Uninitialized data in IonMonkey
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	148	* MFSA 2013-88/CVE-2013-1730 (bmo#851353)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	149	Compartment mismatch re-attaching XBL-backed nodes
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	150	* MFSA 2013-89/CVE-2013-1732 (bmo#883514)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	151	Buffer overflow with multi-column, lists, and floats
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	152	* MFSA 2013-90/CVE-2013-1735/CVE-2013-1736 (bmo#898871, bmo#906301)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	153	Memory corruption involving scrolling
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	154	* MFSA 2013-91/CVE-2013-1737 (bmo#907727)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	155	User-defined properties on DOM proxies get the wrong "this" object
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	156	* MFSA 2013-92/CVE-2013-1738 (bmo#887334, bmo#882897)
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	157	GC hazard with default compartments and frame chain restoration
6c1407488870 24.0 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 666 diff changeset	158	- enable gstreamer explicitely via pref (gecko.js)
663 faf4f017af5c require NSS 3.15.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 661 diff changeset	159	- require NSS 3.15.1
661 aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	160
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	161	-------------------------------------------------------------------
664 1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	162	Mon Aug 26 07:35:36 UTC 2013 - wr@rosenauer.org
1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	163
1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	164	- update to Firefox 23.0.1
1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	165	* Audio static/"burble"/breakup in Firefox to Firefox WebRTC calls
1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	166	(bmo#901527)
1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	167
1276f5ff4bcb 24.0rc Wolfgang Rosenauer <wr@rosenauer.org> parents: 663 diff changeset	168	-------------------------------------------------------------------
661 aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	169	Sun Aug 4 18:30:11 UTC 2013 - wr@rosenauer.org
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	170
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	171	- update to Firefox 23.0 (bnc#833389)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	172	* MFSA 2013-63/CVE-2013-1701/CVE-2013-1702
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	173	Miscellaneous memory safety hazards
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	174	* MFSA 2013-64/CVE-2013-1704 (bmo#883313)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	175	Use after free mutating DOM during SetBody
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	176	* MFSA 2013-65/CVE-2013-1705 (bmo#882865)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	177	Buffer underflow when generating CRMF requests
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	178	* MFSA 2013-67/CVE-2013-1708 (bmo#879924)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	179	Crash during WAV audio file decoding
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	180	* MFSA 2013-68/CVE-2013-1709 (bmo#838253)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	181	Document URI misrepresentation and masquerading
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	182	* MFSA 2013-69/CVE-2013-1710 (bmo#871368)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	183	CRMF requests allow for code execution and XSS attacks
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	184	* MFSA 2013-70/CVE-2013-1711 (bmo#843829)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	185	Bypass of XrayWrappers using XBL Scopes
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	186	* MFSA 2013-72/CVE-2013-1713 (bmo#887098)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	187	Wrong principal used for validating URI for some Javascript
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	188	components
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	189	* MFSA 2013-73/CVE-2013-1714 (bmo#879787)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	190	Same-origin bypass with web workers and XMLHttpRequest
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	191	* MFSA 2013-75/CVE-2013-1717 (bmo#406541, bmo#738397)
aac91d5705b1 prepare 24.0beta Wolfgang Rosenauer <wr@rosenauer.org> parents: 659 diff changeset	192	Local Java applets may read contents of local file system
653 38c67b6b2f37 Aurora 23 (20130616) Wolfgang Rosenauer <wr@rosenauer.org> parents: 650 diff changeset	193	- requires NSPR 4.10 and NSS 3.15
659 fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	194
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	195	-------------------------------------------------------------------
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	196	Wed Jul 3 17:14:35 UTC 2013 - dmueller@suse.com
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	197
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	198	- fix build on ARM (/-g/ matches /-grecord-switches/)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	199
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	200	-------------------------------------------------------------------
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	201	Sat Jun 22 17:48:06 UTC 2013 - wr@rosenauer.org
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	202
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	203	- update to Firefox 22.0 (bnc#825935)
650 e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	204	* removed obsolete patches
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	205	+ mozilla-qcms-ppc.patch
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	206	+ mozilla-gstreamer-760140.patch
659 fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	207	* GStreamer support does not build on 12.1 anymore (build only
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	208	on 12.2 and later)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	209	* MFSA 2013-49/CVE-2013-1682/CVE-2013-1683
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	210	Miscellaneous memory safety hazards
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	211	* MFSA 2013-50/CVE-2013-1684/CVE-2013-1685/CVE-2013-1686
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	212	Memory corruption found using Address Sanitizer
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	213	* MFSA 2013-51/CVE-2013-1687 (bmo#863933, bmo#866823)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	214	Privileged content access and execution via XBL
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	215	* MFSA 2013-52/CVE-2013-1688 (bmo#873966)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	216	Arbitrary code execution within Profiler
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	217	* MFSA 2013-53/CVE-2013-1690 (bmo#857883)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	218	Execution of unmapped memory through onreadystatechange event
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	219	* MFSA 2013-54/CVE-2013-1692 (bmo#866915)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	220	Data in the body of XHR HEAD requests leads to CSRF attacks
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	221	* MFSA 2013-55/CVE-2013-1693 (bmo#711043)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	222	SVG filters can lead to information disclosure
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	223	* MFSA 2013-56/CVE-2013-1694 (bmo#848535)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	224	PreserveWrapper has inconsistent behavior
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	225	* MFSA 2013-57/CVE-2013-1695 (bmo#849791)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	226	Sandbox restrictions not applied to nested frame elements
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	227	* MFSA 2013-58/CVE-2013-1696 (bmo#761667)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	228	X-Frame-Options ignored when using server push with multi-part
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	229	responses
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	230	* MFSA 2013-59/CVE-2013-1697 (bmo#858101)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	231	XrayWrappers can be bypassed to run user defined methods in a
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	232	privileged context
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	233	* MFSA 2013-60/CVE-2013-1698 (bmo#876044)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	234	getUserMedia permission dialog incorrectly displays location
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	235	* MFSA 2013-61/CVE-2013-1699 (bmo#840882)
fa96cf6ffd14 Aurora 24 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 653 diff changeset	236	Homograph domain spoofing in .com, .net and .name
650 e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	237
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	238	-------------------------------------------------------------------
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	239	Tue Jun 11 21:06:58 UTC 2013 - dvaleev@suse.com
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	240
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	241	- Fix qcms altivec include (mozilla-qcms-ppc.patch)
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	242
e8c83b144fd1 22.0b4 update Wolfgang Rosenauer <wr@rosenauer.org> parents: 647 diff changeset	243	-------------------------------------------------------------------
647 9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	244	Fri May 10 05:25:39 UTC 2013 - wr@rosenauer.org
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	245
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	246	- update to Firefox 21.0 (bnc#819204)
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	247	* removed upstreamed patch firefox-712763.patch
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	248	* removed disabled mozilla-disable-neon-option.patch
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	249	* MFSA 2013-41/CVE-2013-0801/CVE-2013-1669
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	250	Miscellaneous memory safety hazards
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	251	* MFSA 2013-42/CVE-2013-1670 (bmo#853709)
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	252	Privileged access for content level constructor
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	253	* MFSA 2013-43/CVE-2013-1671 (bmo#842255)
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	254	File input control has access to full path
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	255	* MFSA 2013-46/CVE-2013-1674 (bmo#860971)
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	256	Use-after-free with video and onresize event
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	257	* MFSA 2013-47/CVE-2013-1675 (bmo#866825)
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	258	Uninitialized functions in DOMSVGZoomEvent
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	259	* MFSA 2013-48/CVE-2013-1676/CVE-2013-1677/CVE-2013-1678/
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	260	CVE-2013-1679/CVE-2013-1680/CVE-2013-1681
9d8bdcdd4d2a 21.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 645 diff changeset	261	Memory corruption found using Address Sanitizer
645 a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	262
a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	263	-------------------------------------------------------------------
a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	264	Tue Apr 9 06:41:31 UTC 2013 - wr@rosenauer.org
a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	265
a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	266	- revert to use GStreamer 0.10 on 12.3 (bnc#814101)
a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	267	(remove mozilla-gstreamer-1.patch)
a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	268
a9f3d5963cc0 21.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 640 diff changeset	269	-------------------------------------------------------------------
640 68ead6c93b7d Explicitly disable WebRTC support on non-x86, the configure script schwab@linux-m68k.org parents: 639 diff changeset	270	Fri Apr 5 17:04:11 UTC 2013 - schwab@linux-m68k.org
68ead6c93b7d Explicitly disable WebRTC support on non-x86, the configure script schwab@linux-m68k.org parents: 639 diff changeset	271
68ead6c93b7d Explicitly disable WebRTC support on non-x86, the configure script schwab@linux-m68k.org parents: 639 diff changeset	272	- Explicitly disable WebRTC support on non-x86, the configure script
68ead6c93b7d Explicitly disable WebRTC support on non-x86, the configure script schwab@linux-m68k.org parents: 639 diff changeset	273	disables it only half-heartedly
68ead6c93b7d Explicitly disable WebRTC support on non-x86, the configure script schwab@linux-m68k.org parents: 639 diff changeset	274
68ead6c93b7d Explicitly disable WebRTC support on non-x86, the configure script schwab@linux-m68k.org parents: 639 diff changeset	275	-------------------------------------------------------------------
639 0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	276	Fri Mar 29 22:15:21 UTC 2013 - wr@rosenauer.org
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	277
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	278	- update to Firefox 20.0 (bnc#813026)
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	279	* requires NSPR 4.9.5 and NSS 3.14.3
640 68ead6c93b7d Explicitly disable WebRTC support on non-x86, the configure script schwab@linux-m68k.org parents: 639 diff changeset	280	* mozilla-webrtc-ppc.patch included upstream
639 0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	281	* MFSA 2013-30/CVE-2013-0788/CVE-2013-0789
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	282	Miscellaneous memory safety hazards
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	283	* MFSA 2013-31/CVE-2013-0800 (bmo#825721)
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	284	Out-of-bounds write in Cairo library
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	285	* MFSA 2013-35/CVE-2013-0796 (bmo#827106)
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	286	WebGL crash with Mesa graphics driver on Linux
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	287	* MFSA 2013-36/CVE-2013-0795 (bmo#825697)
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	288	Bypass of SOW protections allows cloning of protected nodes
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	289	* MFSA 2013-37/CVE-2013-0794 (bmo#626775)
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	290	Bypass of tab-modal dialog origin disclosure
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	291	* MFSA 2013-38/CVE-2013-0793 (bmo#803870)
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	292	Cross-site scripting (XSS) using timed history navigations
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	293	* MFSA 2013-39/CVE-2013-0792 (bmo#722831)
0cb8814119b0 20.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 633 diff changeset	294	Memory corruption while rendering grayscale PNG images
625 9f6e14430916 Bug 806917 - support GStreamer 1.0 Wolfgang Rosenauer <wr@rosenauer.org> parents: 624 diff changeset	295	- use GStreamer 1.0 starting with 12.3 (mozilla-gstreamer-1.patch)
633 7c6f56a37ed6 armv7hl build fixes Wolfgang Rosenauer <wr@rosenauer.org> parents: 629 631 diff changeset	296
7c6f56a37ed6 armv7hl build fixes Wolfgang Rosenauer <wr@rosenauer.org> parents: 629 631 diff changeset	297	-------------------------------------------------------------------
631 e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	298	Tue Mar 12 23:08:15 UTC 2013 - dmueller@suse.com
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	299
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	300	- build fixes for armv7hl:
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	301	* disable debug build as armv7hl does not have enough memory
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	302	* disable webrtc on armv7hl as it is non-compiling
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	303
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	304	-------------------------------------------------------------------
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	305	Thu Mar 7 19:03:32 UTC 2013 - wr@rosenauer.org
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	306
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	307	- update to Firefox 19.0.2 (bnc#808243)
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	308	* MFSA 2013-29/CVE-2013-0787 (bmo#848644)
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	309	Use-after-free in HTML Editor
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	310
e5ead5bc3360 19.0.2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 623 diff changeset	311	-------------------------------------------------------------------
623 9bf0a4872e3d 19.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 619 diff changeset	312	Thu Feb 28 22:06:36 UTC 2013 - wr@rosenauer.org
9bf0a4872e3d 19.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 619 diff changeset	313
9bf0a4872e3d 19.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 619 diff changeset	314	- update to Firefox 19.0.1
9bf0a4872e3d 19.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 619 diff changeset	315	* blocklist updates
9bf0a4872e3d 19.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 619 diff changeset	316
9bf0a4872e3d 19.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 619 diff changeset	317	-------------------------------------------------------------------
615 fb49ee6e3828 Firefox 19.0 goes release Wolfgang Rosenauer <wr@rosenauer.org> parents: 613 diff changeset	318	Sat Feb 16 07:08:55 UTC 2013 - wr@rosenauer.org
fb49ee6e3828 Firefox 19.0 goes release Wolfgang Rosenauer <wr@rosenauer.org> parents: 613 diff changeset	319
619 666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	320	- update to Firefox 19.0 (bnc#804248)
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	321	* MFSA 2013-21/CVE-2013-0783/2013-0784
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	322	Miscellaneous memory safety hazards
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	323	* MFSA 2013-22/CVE-2013-0772 (bmo#801366)
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	324	Out-of-bounds read in image rendering
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	325	* MFSA 2013-23/CVE-2013-0765 (bmo#830614)
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	326	Wrapped WebIDL objects can be wrapped again
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	327	* MFSA 2013-24/CVE-2013-0773 (bmo#809652)
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	328	Web content bypass of COW and SOW security wrappers
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	329	* MFSA 2013-25/CVE-2013-0774 (bmo#827193)
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	330	Privacy leak in JavaScript Workers
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	331	* MFSA 2013-26/CVE-2013-0775 (bmo#831095)
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	332	Use-after-free in nsImageLoadingContent
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	333	* MFSA 2013-27/CVE-2013-0776 (bmo#796475)
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	334	Phishing on HTTPS connection through malicious proxy
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	335	* MFSA 2013-28/CVE-2013-0780/CVE-2013-0782/CVE-2013-0777/
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	336	CVE-2013-0778/CVE-2013-0779/CVE-2013-0781
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	337	Use-after-free, out of bounds read, and buffer overflow issues
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	338	found using Address Sanitizer
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	339	- removed obsolete patches
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	340	* mozilla-webrtc.patch
666cf9899b82 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 616 diff changeset	341	* mozilla-gstreamer-803287.patch
616 f46af22f1079 Bug 712763 - Backout changes from bug 669272 to keep original window order when restoring a session Wolfgang Rosenauer <wr@rosenauer.org> parents: 615 diff changeset	342	- added patch to fix session restore window order (bmo#712763)
613 95cdc8e23716 19.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 611 diff changeset	343
95cdc8e23716 19.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 611 diff changeset	344	-------------------------------------------------------------------
611 bcb3d1af73f7 19.0b4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 609 diff changeset	345	Sat Feb 2 08:40:52 UTC 2013 - wr@rosenauer.org
bcb3d1af73f7 19.0b4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 609 diff changeset	346
bcb3d1af73f7 19.0b4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 609 diff changeset	347	- update to Firefox 18.0.2
bcb3d1af73f7 19.0b4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 609 diff changeset	348	* blocklist and CTP updates
bcb3d1af73f7 19.0b4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 609 diff changeset	349	* fixes in JS engine
bcb3d1af73f7 19.0b4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 609 diff changeset	350
bcb3d1af73f7 19.0b4 Wolfgang Rosenauer <wr@rosenauer.org> parents: 609 diff changeset	351	-------------------------------------------------------------------
604 127a01719356 update to 18.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 603 diff changeset	352	Wed Jan 16 20:51:55 UTC 2013 - wr@rosenauer.org
127a01719356 update to 18.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 603 diff changeset	353
127a01719356 update to 18.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 603 diff changeset	354	- update to Firefox 18.0.1
127a01719356 update to 18.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 603 diff changeset	355	* blocklist updates
127a01719356 update to 18.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 603 diff changeset	356	* backed out bmo#677092 (removed patch)
609 d2bfc69375aa 19.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 604 diff changeset	357	* fixed problems involving HTTP proxy transactions
604 127a01719356 update to 18.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 603 diff changeset	358
127a01719356 update to 18.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 603 diff changeset	359	-------------------------------------------------------------------
603 cfcae96df099 imported patch to fix PPC build Wolfgang Rosenauer <wr@rosenauer.org> parents: 601 diff changeset	360	Sat Jan 12 17:25:11 UTC 2013 - schwab@linux-m68k.org
cfcae96df099 imported patch to fix PPC build Wolfgang Rosenauer <wr@rosenauer.org> parents: 601 diff changeset	361
cfcae96df099 imported patch to fix PPC build Wolfgang Rosenauer <wr@rosenauer.org> parents: 601 diff changeset	362	- Fix WebRTC to build on powerpc
cfcae96df099 imported patch to fix PPC build Wolfgang Rosenauer <wr@rosenauer.org> parents: 601 diff changeset	363
cfcae96df099 imported patch to fix PPC build Wolfgang Rosenauer <wr@rosenauer.org> parents: 601 diff changeset	364	-------------------------------------------------------------------
600 5eb2128332e5 18.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 595 diff changeset	365	Sun Jan 6 21:54:18 UTC 2013 - wr@rosenauer.org
5eb2128332e5 18.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 595 diff changeset	366
5eb2128332e5 18.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 595 diff changeset	367	- update to Firefox 18.0 (bnc#796895)
601 006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	368	* MFSA 2013-01/CVE-2013-0749/CVE-2013-0769/CVE-2013-0770
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	369	Miscellaneous memory safety hazards
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	370	* MFSA 2013-02/CVE-2013-0760/CVE-2013-0762/CVE-2013-0766/CVE-2013-0767
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	371	CVE-2013-0761/CVE-2013-0763/CVE-2013-0771/CVE-2012-5829
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	372	Use-after-free and buffer overflow issues found using Address Sanitizer
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	373	* MFSA 2013-03/CVE-2013-0768 (bmo#815795)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	374	Buffer Overflow in Canvas
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	375	* MFSA 2013-04/CVE-2012-0759 (bmo#802026)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	376	URL spoofing in addressbar during page loads
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	377	* MFSA 2013-05/CVE-2013-0744 (bmo#814713)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	378	Use-after-free when displaying table with many columns and column groups
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	379	* MFSA 2013-06/CVE-2013-0751 (bmo#790454)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	380	Touch events are shared across iframes
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	381	* MFSA 2013-07/CVE-2013-0764 (bmo#804237)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	382	Crash due to handling of SSL on threads
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	383	* MFSA 2013-08/CVE-2013-0745 (bmo#794158)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	384	AutoWrapperChanger fails to keep objects alive during garbage collection
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	385	* MFSA 2013-09/CVE-2013-0746 (bmo#816842)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	386	Compartment mismatch with quickstubs returned values
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	387	* MFSA 2013-10/CVE-2013-0747 (bmo#733305)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	388	Event manipulation in plugin handler to bypass same-origin policy
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	389	* MFSA 2013-11/CVE-2013-0748 (bmo#806031)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	390	Address space layout leaked in XBL objects
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	391	* MFSA 2013-12/CVE-2013-0750 (bmo#805121)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	392	Buffer overflow in Javascript string concatenation
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	393	* MFSA 2013-13/CVE-2013-0752 (bmo#805024)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	394	Memory corruption in XBL with XML bindings containing SVG
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	395	* MFSA 2013-14/CVE-2013-0757 (bmo#813901)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	396	Chrome Object Wrapper (COW) bypass through changing prototype
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	397	* MFSA 2013-15/CVE-2013-0758 (bmo#813906)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	398	Privilege escalation through plugin objects
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	399	* MFSA 2013-16/CVE-2013-0753 (bmo#814001)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	400	Use-after-free in serializeToStream
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	401	* MFSA 2013-17/CVE-2013-0754 (bmo#814026)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	402	Use-after-free in ListenerManager
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	403	* MFSA 2013-18/CVE-2013-0755 (bmo#814027)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	404	Use-after-free in Vibrate
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	405	* MFSA 2013-19/CVE-2013-0756 (bmo#814029)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	406	Use-after-free in Javascript Proxy objects
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	407	- requires NSS 3.14.1 (MFSA 2013-20, CVE-2013-0743)
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	408	- removed obsolete SLE11 patches (mozilla-gcc43*)
585 5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	409	- reenable WebRTC
600 5eb2128332e5 18.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 595 diff changeset	410	- added mozilla-libproxy-compat.patch for libproxy API compat
5eb2128332e5 18.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 595 diff changeset	411	on openSUSE 11.2 and earlier
601 006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	412	- backed out restartless language packs as it broke multi-locale
006c98ae8607 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 600 diff changeset	413	setup (bmo#677092, bmo#818468)
585 5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	414
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	415	-------------------------------------------------------------------
595 31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	416	Thu Nov 29 19:56:51 UTC 2012 - wr@rosenauer.org
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	417
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	418	- update to Firefox 17.0.1
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	419	* revert some useragent changes introduced in 17.0
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	420	* leaving private browsing with social enabled doesn't reset all
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	421	social components (bmo#815042)
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	422	- fix KDE integration for file dialogs
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	423
31f273919032 18.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 585 diff changeset	424	-------------------------------------------------------------------
585 5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	425	Tue Nov 20 19:52:02 UTC 2012 - wr@rosenauer.org
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	426
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	427	- update to Firefox 17.0 (bnc#790140)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	428	* MFSA 2012-91/CVE-2012-5842/CVE-2012-5843
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	429	Miscellaneous memory safety hazards
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	430	* MFSA 2012-92/CVE-2012-4202 (bmo#758200)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	431	Buffer overflow while rendering GIF images
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	432	* MFSA 2012-93/CVE-2012-4201 (bmo#747607)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	433	evalInSanbox location context incorrectly applied
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	434	* MFSA 2012-94/CVE-2012-5836 (bmo#792857)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	435	Crash when combining SVG text on path with CSS
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	436	* MFSA 2012-95/CVE-2012-4203 (bmo#765628)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	437	Javascript: URLs run in privileged context on New Tab page
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	438	* MFSA 2012-96/CVE-2012-4204 (bmo#778603)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	439	Memory corruption in str_unescape
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	440	* MFSA 2012-97/CVE-2012-4205 (bmo#779821)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	441	XMLHttpRequest inherits incorrect principal within sandbox
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	442	* MFSA 2012-99/CVE-2012-4208 (bmo#798264)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	443	XrayWrappers exposes chrome-only properties when not in chrome
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	444	compartment
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	445	* MFSA 2012-100/CVE-2012-5841 (bmo#805807)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	446	Improper security filtering for cross-origin wrappers
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	447	* MFSA 2012-101/CVE-2012-4207 (bmo#801681)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	448	Improper character decoding in HZ-GB-2312 charset
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	449	* MFSA 2012-102/CVE-2012-5837 (bmo#800363)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	450	Script entered into Developer Toolbar runs with chrome privileges
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	451	* MFSA 2012-103/CVE-2012-4209 (bmo#792405)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	452	Frames can shadow top.location
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	453	* MFSA 2012-104/CVE-2012-4210 (bmo#796866)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	454	CSS and HTML injection through Style Inspector
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	455	* MFSA 2012-105/CVE-2012-4214/CVE-2012-4215/CVE-2012-4216/
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	456	CVE-2012-5829/CVE-2012-5839/CVE-2012-5840/CVE-2012-4212/
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	457	CVE-2012-4213/CVE-2012-4217/CVE-2012-4218
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	458	Use-after-free and buffer overflow issues found using Address
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	459	Sanitizer
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	460	* MFSA 2012-106/CVE-2012-5830/CVE-2012-5833/CVE-2012-5835/CVE-2012-5838
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	461	Use-after-free, buffer overflow, and memory corruption issues
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	462	found using Address Sanitizer
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	463	- rebased patches
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	464	- disabled WebRTC since build is broken (bmo#776877)
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	465
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	466	-------------------------------------------------------------------
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	467	Tue Nov 20 15:42:55 UTC 2012 - pcerny@suse.com
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	468
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	469	- build on SLE11
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	470	* mozilla-gcc43-enums.patch
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	471	* mozilla-gcc43-template_hacks.patch
5a44d417c9b5 prepare for Beta 18 phase Wolfgang Rosenauer <wr@rosenauer.org> parents: 572 diff changeset	472	* mozilla-gcc43-templates_instantiation.patch
568 2c74c5927ea2 first working Aurora 18 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 563 diff changeset	473
2c74c5927ea2 first working Aurora 18 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 563 diff changeset	474	-------------------------------------------------------------------
572 edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	475	Wed Oct 24 08:27:29 UTC 2012 - wr@rosenauer.org
edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	476
edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	477	- update to Firefox 16.0.2 (bnc#786522)
edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	478	* MFSA 2012-90/CVE-2012-4194/CVE-2012-4195/CVE-2012-4196
edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	479	(bmo#800666, bmo#793121, bmo#802557)
edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	480	Fixes for Location object issues
edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	481	- bring back Obsoletes for libproxy's mozjs plugin for distributions
edcb48108200 changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 568 diff changeset	482	before 12.2 to avoid crashes
539 b1134fe91f9a merge latest changes from firefox16 Wolfgang Rosenauer <wr@rosenauer.org> parents: 536 diff changeset	483
414 88a71e903038 update to 12.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 410 diff changeset	484	-------------------------------------------------------------------
563 8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	485	Thu Oct 11 01:51:16 UTC 2012 - wr@rosenauer.org
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	486
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	487	- update to Firefox 16.0.1 (bnc#783533)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	488	* MFSA 2012-88/CVE-2012-4191 (bmo#798045)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	489	Miscellaneous memory safety hazards
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	490	* MFSA 2012-89/CVE-2012-4192/CVE-2012-4193 (bmo#799952, bmo#720619)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	491	defaultValue security checks not applied
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	492
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	493	-------------------------------------------------------------------
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	494	Sun Oct 7 21:40:14 UTC 2012 - wr@rosenauer.org
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	495
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	496	- update to Firefox 16.0 (bnc#783533)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	497	* MFSA 2012-74/CVE-2012-3982/CVE-2012-3983
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	498	Miscellaneous memory safety hazards
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	499	* MFSA 2012-75/CVE-2012-3984 (bmo#575294)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	500	select element persistance allows for attacks
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	501	* MFSA 2012-76/CVE-2012-3985 (bmo#655649)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	502	Continued access to initial origin after setting document.domain
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	503	* MFSA 2012-77/CVE-2012-3986 (bmo#775868)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	504	Some DOMWindowUtils methods bypass security checks
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	505	* MFSA 2012-79/CVE-2012-3988 (bmo#725770)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	506	DOS and crash with full screen and history navigation
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	507	* MFSA 2012-80/CVE-2012-3989 (bmo#783867)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	508	Crash with invalid cast when using instanceof operator
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	509	* MFSA 2012-81/CVE-2012-3991 (bmo#783260)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	510	GetProperty function can bypass security checks
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	511	* MFSA 2012-82/CVE-2012-3994 (bmo#765527)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	512	top object and location property accessible by plugins
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	513	* MFSA 2012-83/CVE-2012-3993/CVE-2012-4184 (bmo#768101, bmo#780370)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	514	Chrome Object Wrapper (COW) does not disallow acces to privileged
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	515	functions or properties
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	516	* MFSA 2012-84/CVE-2012-3992 (bmo#775009)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	517	Spoofing and script injection through location.hash
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	518	* MFSA 2012-85/CVE-2012-3995/CVE-2012-4179/CVE-2012-4180/
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	519	CVE-2012-4181/CVE-2012-4182/CVE-2012-4183
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	520	Use-after-free, buffer overflow, and out of bounds read issues
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	521	found using Address Sanitizer
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	522	* MFSA 2012-86/CVE-2012-4185/CVE-2012-4186/CVE-2012-4187/
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	523	CVE-2012-4188
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	524	Heap memory corruption issues found using Address Sanitizer
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	525	* MFSA 2012-87/CVE-2012-3990 (bmo#787704)
8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	526	Use-after-free in the IME State Manager
533 6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	527	- requires NSPR 4.9.2
529 4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	528	- improve GStreamer integration (bmo#760140)
533 6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	529	- removed upstreamed mozilla-crashreporter-restart-args.patch
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	530	- webapprt now included
536 66730e3b1735 16.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 533 diff changeset	531	- use kmozillahelper's new REVEAL command (bnc#777415)
538 be682f8c9361 revert API version change for kmozillahelper Wolfgang Rosenauer <wr@rosenauer.org> parents: 536 diff changeset	532	(requires mozilla-kde4-integration >= 0.6.4)
563 8349c239bff9 preparing Aurora 18 Wolfgang Rosenauer <wr@rosenauer.org> parents: 547 diff changeset	533	- updated translations-other with new languages
529 4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	534
4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	535	-------------------------------------------------------------------
541 830e50bbfc79 working Aurora 17.0 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 540 diff changeset	536	Mon Sep 10 19:37:56 UTC 2012 - wr@rosenauer.org
830e50bbfc79 working Aurora 17.0 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 540 diff changeset	537
830e50bbfc79 working Aurora 17.0 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 540 diff changeset	538	- update to Firefox 15.0.1 (bnc#779936)
830e50bbfc79 working Aurora 17.0 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 540 diff changeset	539	* Sites visited while in Private Browsing mode could be found
547 65364282c9bc Aurora 20121003 Wolfgang Rosenauer <wr@rosenauer.org> parents: 543 diff changeset	540	through manual browser cache inspection (bmo#787743)
541 830e50bbfc79 working Aurora 17.0 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 540 diff changeset	541
830e50bbfc79 working Aurora 17.0 build Wolfgang Rosenauer <wr@rosenauer.org> parents: 540 diff changeset	542	-------------------------------------------------------------------
533 6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	543	Sun Aug 26 13:47:43 UTC 2012 - wr@rosenauer.org
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	544
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	545	- update to Firefox 15.0 (bnc#777588)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	546	* MFSA 2012-57/CVE-2012-1970
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	547	Miscellaneous memory safety hazards
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	548	* MFSA 2012-58/CVE-2012-1972/CVE-2012-1973/CVE-2012-1974/CVE-2012-1975
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	549	CVE-2012-1976/CVE-2012-3956/CVE-2012-3957/CVE-2012-3958/CVE-2012-3959
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	550	CVE-2012-3960/CVE-2012-3961/CVE-2012-3962/CVE-2012-3963/CVE-2012-3964
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	551	Use-after-free issues found using Address Sanitizer
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	552	* MFSA 2012-59/CVE-2012-1956 (bmo#756719)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	553	Location object can be shadowed using Object.defineProperty
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	554	* MFSA 2012-60/CVE-2012-3965 (bmo#769108)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	555	Escalation of privilege through about:newtab
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	556	* MFSA 2012-61/CVE-2012-3966 (bmo#775794, bmo#775793)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	557	Memory corruption with bitmap format images with negative height
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	558	* MFSA 2012-62/CVE-2012-3967/CVE-2012-3968
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	559	WebGL use-after-free and memory corruption
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	560	* MFSA 2012-63/CVE-2012-3969/CVE-2012-3970
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	561	SVG buffer overflow and use-after-free issues
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	562	* MFSA 2012-64/CVE-2012-3971
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	563	Graphite 2 memory corruption
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	564	* MFSA 2012-65/CVE-2012-3972 (bmo#746855)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	565	Out-of-bounds read in format-number in XSLT
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	566	* MFSA 2012-66/CVE-2012-3973 (bmo#757128)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	567	HTTPMonitor extension allows for remote debugging without explicit
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	568	activation
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	569	* MFSA 2012-68/CVE-2012-3975 (bmo#770684)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	570	DOMParser loads linked resources in extensions when parsing
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	571	text/html
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	572	* MFSA 2012-69/CVE-2012-3976 (bmo#768568)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	573	Incorrect site SSL certificate data display
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	574	* MFSA 2012-70/CVE-2012-3978 (bmo#770429)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	575	Location object security checks bypassed by chrome code
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	576	* MFSA 2012-72/CVE-2012-3980 (bmo#771859)
6bcb1bfae08e 16.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 529 diff changeset	577	Web console eval capable of executing chrome-privileged code
471 73b631ab214b adding fixes to spec file and changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 463 diff changeset	578	- fix HTML5 video crash with GStreamer enabled (bmo#761030)
513 7a651f368dd8 changelog update Wolfgang Rosenauer <wr@rosenauer.org> parents: 500 diff changeset	579	- GStreamer is only used for MP4 (no WebM, OGG)
491 43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	580	- updated filelist
529 4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	581	- moved browser specific preferences to correct location
4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	582
4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	583	-------------------------------------------------------------------
4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	584	Sun Jul 29 08:34:39 UTC 2012 - aj@suse.de
4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	585
4812378b5646 import GStreamer improvement from bmo#760140 (support mpeg audio) Wolfgang Rosenauer <wr@rosenauer.org> parents: 513 diff changeset	586	- Fix mozilla-kde.patch to include sys/resource.h for getrlimit etc (glibc 2.16)
491 43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	587
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	588	-------------------------------------------------------------------
500 c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	589	Sat Jul 14 19:31:51 UTC 2012 - wr@rosenauer.org
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	590
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	591	- update to 14.0.1 (bnc#771583)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	592	* MFSA 2012-42/CVE-2012-1949/CVE-2012-1948
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	593	Miscellaneous memory safety hazards
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	594	* MFSA 2012-43/CVE-2012-1950
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	595	Incorrect URL displayed in addressbar through drag and drop
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	596	* MFSA 2012-44/CVE-2012-1951/CVE-2012-1954/CVE-2012-1953/CVE-2012-1952
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	597	Gecko memory corruption
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	598	* MFSA 2012-45/CVE-2012-1955 (bmo#757376)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	599	Spoofing issue with location
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	600	* MFSA 2012-46/CVE-2012-1966 (bmo#734076)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	601	XSS through data: URLs
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	602	* MFSA 2012-47/CVE-2012-1957 (bmo#750096)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	603	Improper filtering of javascript in HTML feed-view
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	604	* MFSA 2012-48/CVE-2012-1958 (bmo#750820)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	605	use-after-free in nsGlobalWindow::PageHidden
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	606	* MFSA 2012-49/CVE-2012-1959 (bmo#754044, bmo#737559)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	607	Same-compartment Security Wrappers can be bypassed
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	608	* MFSA 2012-50/CVE-2012-1960 (bmo#761014)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	609	Out of bounds read in QCMS
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	610	* MFSA 2012-51/CVE-2012-1961 (bmo#761655)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	611	X-Frame-Options header ignored when duplicated
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	612	* MFSA 2012-52/CVE-2012-1962 (bmo#764296)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	613	JSDependentString::undepend string conversion results in memory
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	614	corruption
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	615	* MFSA 2012-53/CVE-2012-1963 (bmo#767778)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	616	Content Security Policy 1.0 implementation errors cause data
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	617	leakage
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	618	* MFSA 2012-55/CVE-2012-1965 (bmo#758990)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	619	feed: URLs with an innerURI inherit security context of page
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	620	* MFSA 2012-56/CVE-2012-1967 (bmo#758344)
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	621	Code execution through javascript: URLs
491 43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	622	- license change from tri license to MPL-2.0
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	623	- fix crashreporter restart option (bmo#762780)
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	624	- require NSS 3.13.5
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	625	- remove mozjs pacrunner obsoletes again for now
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	626	- adopted mozilla-prefer_plugin_pref.patch
500 c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	627	- PPC fixes:
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	628	* reenabled mozilla-yarr-pcre.patch to fix build for PPC
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	629	* add patches for bmo#750620 and bmo#746112
c2c5bb5248b0 changelogs Wolfgang Rosenauer <wr@rosenauer.org> parents: 491 diff changeset	630	* fix xpcshell segfault on ppc
491 43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	631
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	632	-------------------------------------------------------------------
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	633	Fri Jun 15 12:37:09 UTC 2012 - wr@rosenauer.org
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	634
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	635	- update to Firefox 13.0.1
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	636	* bugfix release
43deb5e6462d snapshot 20120625 Wolfgang Rosenauer <wr@rosenauer.org> parents: 471 diff changeset	637	- obsolete libproxy's mozjs pacrunner (bnc#759123)
457 0c2249d015b6 fixed ARM build Adrian Schröter <adrian@suse.de> parents: 447 diff changeset	638
0c2249d015b6 fixed ARM build Adrian Schröter <adrian@suse.de> parents: 447 diff changeset	639	-------------------------------------------------------------------
462 2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	640	Sat Jun 2 08:22:51 UTC 2012 - wr@rosenauer.org
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	641
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	642	- update to Firefox 13.0 (bnc#765204)
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	643	* MFSA 2012-34/CVE-2012-1938/CVE-2012-1937/CVE-2011-3101
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	644	Miscellaneous memory safety hazards
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	645	* MFSA 2012-36/CVE-2012-1944 (bmo#751422)
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	646	Content Security Policy inline-script bypass
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	647	* MFSA 2012-37/CVE-2012-1945 (bmo#670514)
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	648	Information disclosure though Windows file shares and shortcut
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	649	files
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	650	* MFSA 2012-38/CVE-2012-1946 (bmo#750109)
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	651	Use-after-free while replacing/inserting a node in a document
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	652	* MFSA 2012-40/CVE-2012-1947/CVE-2012-1940/CVE-2012-1941
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	653	Buffer overflow and use-after-free issues found using Address
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	654	Sanitizer
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	655	- require NSS 3.13.4
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	656	* MFSA 2012-39/CVE-2012-0441 (bmo#715073)
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	657	- fix sound notifications when filename/path contains a whitespace
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	658	(bmo#749739)
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	659
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	660	-------------------------------------------------------------------
457 0c2249d015b6 fixed ARM build Adrian Schröter <adrian@suse.de> parents: 447 diff changeset	661	Wed May 23 14:40:16 UTC 2012 - adrian@suse.de
0c2249d015b6 fixed ARM build Adrian Schröter <adrian@suse.de> parents: 447 diff changeset	662
0c2249d015b6 fixed ARM build Adrian Schröter <adrian@suse.de> parents: 447 diff changeset	663	- fix build on arm
435 df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	664
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	665	-------------------------------------------------------------------
462 2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	666	Wed May 16 05:34:01 UTC 2012 - wr@rosenauer.org
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	667
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	668	- reenabled crashreporter for Factory/12.2
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	669	(fix in mozilla-gcc47.patch)
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	670
2d86bdb4277f 14.0b6 (Aurora->Beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 457 diff changeset	671	-------------------------------------------------------------------
435 df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	672	Sat Apr 21 10:02:37 UTC 2012 - wr@rosenauer.org
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	673
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	674	- update to Firefox 12.0 (bnc#758408)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	675	* rebased patches
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	676	* MFSA 2012-20/CVE-2012-0467/CVE-2012-0468
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	677	Miscellaneous memory safety hazards
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	678	* MFSA 2012-22/CVE-2012-0469 (bmo#738985)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	679	use-after-free in IDBKeyRange
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	680	* MFSA 2012-23/CVE-2012-0470 (bmo#734288)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	681	Invalid frees causes heap corruption in gfxImageSurface
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	682	* MFSA 2012-24/CVE-2012-0471 (bmo#715319)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	683	Potential XSS via multibyte content processing errors
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	684	* MFSA 2012-25/CVE-2012-0472 (bmo#744480)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	685	Potential memory corruption during font rendering using cairo-dwrite
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	686	* MFSA 2012-26/CVE-2012-0473 (bmo#743475)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	687	WebGL.drawElements may read illegal video memory due to
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	688	FindMaxUshortElement error
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	689	* MFSA 2012-27/CVE-2012-0474 (bmo#687745, bmo#737307)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	690	Page load short-circuit can lead to XSS
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	691	* MFSA 2012-28/CVE-2012-0475 (bmo#694576)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	692	Ambiguous IPv6 in Origin headers may bypass webserver access
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	693	restrictions
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	694	* MFSA 2012-29/CVE-2012-0477 (bmo#718573)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	695	Potential XSS through ISO-2022-KR/ISO-2022-CN decoding issues
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	696	* MFSA 2012-30/CVE-2012-0478 (bmo#727547)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	697	Crash with WebGL content using textImage2D
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	698	* MFSA 2012-31/CVE-2011-3062 (bmo#739925)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	699	Off-by-one error in OpenType Sanitizer
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	700	* MFSA 2012-32/CVE-2011-1187 (bmo#624621)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	701	HTTP Redirections and remote content can be read by javascript errors
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	702	* MFSA 2012-33/CVE-2012-0479 (bmo#714631)
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	703	Potential site identity spoofing when loading RSS and Atom feeds
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	704	- added mozilla-libnotify.patch to allow fallback from libnotify
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	705	to xul based events if no notification-daemon is running
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	706	- gcc 4.7 fixes
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	707	* mozilla-gcc47.patch
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	708	* disabled crashreporter temporarily for Factory
df9c4a6e84f8 update version/tree information for Aurora 14 cycle Wolfgang Rosenauer <wr@rosenauer.org> parents: 423 diff changeset	709	- recommend libcanberra0 for proper sound notifications
414 88a71e903038 update to 12.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 410 diff changeset	710
407 b85eacef913b 11.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 404 diff changeset	711	-------------------------------------------------------------------
408 475395d00191 Firefox 11 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 407 diff changeset	712	Fri Mar 9 21:47:07 UTC 2012 - wr@rosenauer.org
475395d00191 Firefox 11 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 407 diff changeset	713
475395d00191 Firefox 11 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 407 diff changeset	714	- update to Firefox 11.0 (bnc#750044)
410 0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	715	* MFSA 2012-13/CVE-2012-0455 (bmo#704354)
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	716	XSS with Drag and Drop and Javascript: URL
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	717	* MFSA 2012-14/CVE-2012-0456/CVE-2012-0457 (bmo#711653, #720103)
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	718	SVG issues found with Address Sanitizer
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	719	* MFSA 2012-15/CVE-2012-0451 (bmo#717511)
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	720	XSS with multiple Content Security Policy headers
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	721	* MFSA 2012-16/CVE-2012-0458
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	722	Escalation of privilege with Javascript: URL as home page
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	723	* MFSA 2012-17/CVE-2012-0459 (bmo#723446)
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	724	Crash when accessing keyframe cssText after dynamic modification
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	725	* MFSA 2012-18/CVE-2012-0460 (bmo#727303)
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	726	window.fullScreen writeable by untrusted content
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	727	* MFSA 2012-19/CVE-2012-0461/CVE-2012-0462/CVE-2012-0464/
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	728	CVE-2012-0463
0af1b0003b9f working 12.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 408 diff changeset	729	Miscellaneous memory safety hazards
407 b85eacef913b 11.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 404 diff changeset	730	- ported and reenabled KDE integration (bnc#746591)
b85eacef913b 11.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 404 diff changeset	731	- explicitely build-require X libs
b85eacef913b 11.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 404 diff changeset	732
404 5f3bccaf6d52 provide browser(npapi) Wolfgang Rosenauer <wr@rosenauer.org> parents: 401 diff changeset	733	-------------------------------------------------------------------
5f3bccaf6d52 provide browser(npapi) Wolfgang Rosenauer <wr@rosenauer.org> parents: 401 diff changeset	734	Mon Mar 5 13:31:48 UTC 2012 - vdziewiecki@suse.com
5f3bccaf6d52 provide browser(npapi) Wolfgang Rosenauer <wr@rosenauer.org> parents: 401 diff changeset	735
5f3bccaf6d52 provide browser(npapi) Wolfgang Rosenauer <wr@rosenauer.org> parents: 401 diff changeset	736	- add Provides: browser(npapi) FATE#313084
5f3bccaf6d52 provide browser(npapi) Wolfgang Rosenauer <wr@rosenauer.org> parents: 401 diff changeset	737
398 937669e1c537 ported and reenabled KDE integration (bnc#746591) Wolfgang Rosenauer <wr@rosenauer.org> parents: 387 diff changeset	738	-------------------------------------------------------------------
937669e1c537 ported and reenabled KDE integration (bnc#746591) Wolfgang Rosenauer <wr@rosenauer.org> parents: 387 diff changeset	739	Fri Feb 17 17:41:11 UTC 2012 - pcerny@suse.com
937669e1c537 ported and reenabled KDE integration (bnc#746591) Wolfgang Rosenauer <wr@rosenauer.org> parents: 387 diff changeset	740
937669e1c537 ported and reenabled KDE integration (bnc#746591) Wolfgang Rosenauer <wr@rosenauer.org> parents: 387 diff changeset	741	- better plugin directory resolution (bnc#747320)
937669e1c537 ported and reenabled KDE integration (bnc#746591) Wolfgang Rosenauer <wr@rosenauer.org> parents: 387 diff changeset	742
386 7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	743	-------------------------------------------------------------------
387 5f37cb170013 11.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 386 diff changeset	744	Thu Feb 16 08:47:31 UTC 2012 - wr@rosenauer.org
5f37cb170013 11.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 386 diff changeset	745
5f37cb170013 11.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 386 diff changeset	746	- update to Firefox 10.0.2 (bnc#747328)
5f37cb170013 11.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 386 diff changeset	747	* CVE-2011-3026 (bmo#727401)
5f37cb170013 11.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 386 diff changeset	748	libpng: integer overflow leading to heap-buffer overflow
386 7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	749
7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	750	-------------------------------------------------------------------
7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	751	Thu Feb 9 09:26:11 UTC 2012 - wr@rosenauer.org
7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	752
7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	753	- update to Firefox 10.0.1 (bnc#746616)
7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	754	* MFSA 2012-10/CVE-2012-0452 (bmo#724284)
7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	755	use after free in nsXBLDocumentInfo::ReadPrototypeBindings
7784e72b1a3a 11.0b2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 378 diff changeset	756
378 dfb824794771 import upstream patches to fix PPC64 Dinar Valeev parents: 375 diff changeset	757	-------------------------------------------------------------------
dfb824794771 import upstream patches to fix PPC64 Dinar Valeev parents: 375 diff changeset	758	Tue Feb 7 10:40:58 UTC 2012 - dvaleev@suse.com
dfb824794771 import upstream patches to fix PPC64 Dinar Valeev parents: 375 diff changeset	759
dfb824794771 import upstream patches to fix PPC64 Dinar Valeev parents: 375 diff changeset	760	- Use YARR interpreter instead of PCRE on platforms where YARR JIT
dfb824794771 import upstream patches to fix PPC64 Dinar Valeev parents: 375 diff changeset	761	is not supported, since PCRE doesnt build (bmo#691898)
dfb824794771 import upstream patches to fix PPC64 Dinar Valeev parents: 375 diff changeset	762	- fix ppc64 build (bmo#703534)
dfb824794771 import upstream patches to fix PPC64 Dinar Valeev parents: 375 diff changeset	763
373 db704efaedab Firefox 10.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 371 diff changeset	764	-------------------------------------------------------------------
db704efaedab Firefox 10.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 371 diff changeset	765	Mon Jan 30 09:41:59 UTC 2012 - wr@rosenauer.org
db704efaedab Firefox 10.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 371 diff changeset	766
375 d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	767	- update to Firefox 10.0 (bnc#744275)
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	768	* MFSA 2012-01/CVE-2012-0442/CVE-2012-0443
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	769	Miscellaneous memory safety hazards
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	770	* MFSA 2012-03/CVE-2012-0445 (bmo#701071)
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	771	<iframe> element exposed across domains via name attribute
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	772	* MFSA 2012-04/CVE-2011-3659 (bmo#708198)
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	773	Child nodes from nsDOMAttribute still accessible after removal
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	774	of nodes
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	775	* MFSA 2012-05/CVE-2012-0446 (bmo#705651)
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	776	Frame scripts calling into untrusted objects bypass security
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	777	checks
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	778	* MFSA 2012-06/CVE-2012-0447 (bmo#710079)
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	779	Uninitialized memory appended when encoding icon images may
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	780	cause information disclosure
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	781	* MFSA 2012-07/CVE-2012-0444 (bmo#719612)
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	782	Potential Memory Corruption When Decoding Ogg Vorbis files
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	783	* MFSA 2012-08/CVE-2012-0449 (bmo#701806, bmo#702466)
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	784	Crash with malformed embedded XSLT stylesheets
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	785	- KDE integration has been disabled since it needs refactoring
d75cd0dac058 final 10.0 updates (changelog) Wolfgang Rosenauer <wr@rosenauer.org> parents: 373 diff changeset	786	- removed obsolete ppc64 patch
373 db704efaedab Firefox 10.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 371 diff changeset	787
371 ead21d122ed0 introduce --disable-neon option and use on ARM Joop Boonen <joop.boonen@opensuse.org> parents: 366 diff changeset	788	-------------------------------------------------------------------
ead21d122ed0 introduce --disable-neon option and use on ARM Joop Boonen <joop.boonen@opensuse.org> parents: 366 diff changeset	789	Sun Jan 22 12:08:07 UTC 2012 - joop.boonen@opensuse.org
ead21d122ed0 introduce --disable-neon option and use on ARM Joop Boonen <joop.boonen@opensuse.org> parents: 366 diff changeset	790
ead21d122ed0 introduce --disable-neon option and use on ARM Joop Boonen <joop.boonen@opensuse.org> parents: 366 diff changeset	791	- Disable neon for arm as it doesn't build correctly
ead21d122ed0 introduce --disable-neon option and use on ARM Joop Boonen <joop.boonen@opensuse.org> parents: 366 diff changeset	792
ead21d122ed0 introduce --disable-neon option and use on ARM Joop Boonen <joop.boonen@opensuse.org> parents: 366 diff changeset	793	-------------------------------------------------------------------
366 15d0aa5d4b63 9.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 364 diff changeset	794	Fri Dec 23 17:02:01 UTC 2011 - wr@rosenauer.org
15d0aa5d4b63 9.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 364 diff changeset	795
15d0aa5d4b63 9.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 364 diff changeset	796	- update to Firefox 9.0.1
15d0aa5d4b63 9.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 364 diff changeset	797	* (strongparent) parentNode of element gets lost (bmo#335998)
15d0aa5d4b63 9.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 364 diff changeset	798
364 0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	799	-------------------------------------------------------------------
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	800	Sun Dec 18 09:58:52 UTC 2011 - adrian@suse.de
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	801
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	802	- fix arm build, don't package crashreporter there
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	803
363 48596576f932 update to 9.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 358 diff changeset	804	-------------------------------------------------------------------
48596576f932 update to 9.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 358 diff changeset	805	Sun Dec 18 09:52:08 UTC 2011 - wr@rosenauer.org
48596576f932 update to 9.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 358 diff changeset	806
364 0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	807	- update to Firefox 9 (bnc#737533)
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	808	* MFSA 2011-53/CVE-2011-3660
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	809	Miscellaneous memory safety hazards (rv:9.0)
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	810	* MFSA 2011-54/CVE-2011-3661 (bmo#691299)
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	811	Potentially exploitable crash in the YARR regular expression
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	812	library
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	813	* MFSA 2011-55/CVE-2011-3658 (bmo#708186)
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	814	nsSVGValue out-of-bounds access
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	815	* MFSA 2011-56/CVE-2011-3663 (bmo#704482)
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	816	Key detection without JavaScript via SVG animation
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	817	* MFSA 2011-58/VE-2011-3665 (bmo#701259)
0f5c150b9dcd merge changes from mozilla:Factory including full changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 363 diff changeset	818	Crash scaling <video> to extreme sizes
363 48596576f932 update to 9.0 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 358 diff changeset	819
358 b28670af14d5 Read a11y status from Gnome3 Michael Gorse <mgorse@suse.com> parents: 355 diff changeset	820	-------------------------------------------------------------------
b28670af14d5 Read a11y status from Gnome3 Michael Gorse <mgorse@suse.com> parents: 355 diff changeset	821	Sun Nov 27 03:51:54 UTC 2011 - mgorse@suse.com
b28670af14d5 Read a11y status from Gnome3 Michael Gorse <mgorse@suse.com> parents: 355 diff changeset	822
b28670af14d5 Read a11y status from Gnome3 Michael Gorse <mgorse@suse.com> parents: 355 diff changeset	823	- Fix accessibility under GNOME 3 (bnc#732898)
b28670af14d5 Read a11y status from Gnome3 Michael Gorse <mgorse@suse.com> parents: 355 diff changeset	824
355 91b462c0fd72 fix ppc64 build Dinar Valeev <dvaleev@suse.com> parents: 354 diff changeset	825	-------------------------------------------------------------------
91b462c0fd72 fix ppc64 build Dinar Valeev <dvaleev@suse.com> parents: 354 diff changeset	826	Sat Nov 12 15:16:38 UTC 2011 - dvaleev@suse.com
91b462c0fd72 fix ppc64 build Dinar Valeev <dvaleev@suse.com> parents: 354 diff changeset	827
91b462c0fd72 fix ppc64 build Dinar Valeev <dvaleev@suse.com> parents: 354 diff changeset	828	- fix ppc64 build
91b462c0fd72 fix ppc64 build Dinar Valeev <dvaleev@suse.com> parents: 354 diff changeset	829
350 9d46eaac2549 update to Firefox 8 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 344 diff changeset	830	-------------------------------------------------------------------
9d46eaac2549 update to Firefox 8 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 344 diff changeset	831	Sun Nov 6 08:20:59 UTC 2011 - wr@rosenauer.org
9d46eaac2549 update to Firefox 8 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 344 diff changeset	832
9d46eaac2549 update to Firefox 8 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 344 diff changeset	833	- update to Firefox 8 (bnc#728520)
354 7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	834	* MFSA 2011-47/CVE-2011-3648 (bmo#690225)
7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	835	Potential XSS against sites using Shift-JIS
7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	836	* MFSA 2011-48/CVE-2011-3651/CVE-2011-3652/CVE-2011-3654
7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	837	Miscellaneous memory safety hazards
7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	838	* MFSA 2011-49/CVE-2011-3650 (bmo#674776)
7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	839	Memory corruption while profiling using Firebug
7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	840	* MFSA 2011-52/CVE-2011-3655 (bmo#672182)
7044f3366d64 changelog updates Wolfgang Rosenauer <wr@rosenauer.org> parents: 353 diff changeset	841	Code execution via NoWaiverWrapper
350 9d46eaac2549 update to Firefox 8 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 344 diff changeset	842	- rebased patches
9d46eaac2549 update to Firefox 8 release Wolfgang Rosenauer <wr@rosenauer.org> parents: 344 diff changeset	843
344 880a90eb0f92 enable telemetry opt-in prompt Wolfgang Rosenauer <wr@rosenauer.org> parents: 339 diff changeset	844	-------------------------------------------------------------------
880a90eb0f92 enable telemetry opt-in prompt Wolfgang Rosenauer <wr@rosenauer.org> parents: 339 diff changeset	845	Thu Oct 20 12:34:47 UTC 2011 - wr@rosenauer.org
880a90eb0f92 enable telemetry opt-in prompt Wolfgang Rosenauer <wr@rosenauer.org> parents: 339 diff changeset	846
880a90eb0f92 enable telemetry opt-in prompt Wolfgang Rosenauer <wr@rosenauer.org> parents: 339 diff changeset	847	- enable telemetry prompt
880a90eb0f92 enable telemetry opt-in prompt Wolfgang Rosenauer <wr@rosenauer.org> parents: 339 diff changeset	848
337 cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	849	-------------------------------------------------------------------
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	850	Fri Sep 30 10:52:36 UTC 2011 - wr@rosenauer.org
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	851
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	852	- update to minor release 7.0.1
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	853	* fixed staged addon updates
339 db8b891eeb1e locale should always match the system one in a package environment Wolfgang Rosenauer <wr@rosenauer.org> parents: 337 diff changeset	854	- set intl.locale.matchOS=true in the base package as it causes
db8b891eeb1e locale should always match the system one in a package environment Wolfgang Rosenauer <wr@rosenauer.org> parents: 337 diff changeset	855	too much confusion when it's only available with branding-openSUSE
337 cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	856
334 1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	857	-------------------------------------------------------------------
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	858	Fri Sep 23 11:22:22 UTC 2011 - wr@rosenauer.org
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	859
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	860	- update to Firefox 7 (bnc#720264)
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	861	including
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	862	* Improve Responsiveness with Memory Reductions
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	863	* Instant Sync
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	864	* WebSocket protocol 8
337 cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	865	* MFSA 2011-36/CVE-2011-2995/CVE-2011-2996/CVE-2011-2997
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	866	Miscellaneous memory safety hazards
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	867	* MFSA 2011-39/CVE-2011-3000 (bmo#655389)
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	868	Defense against multiple Location headers due to CRLF Injection
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	869	* MFSA 2011-40/CVE-2011-2372/CVE-2011-3001
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	870	Code installation through holding down Enter
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	871	* MFSA 2011-41/CVE-2011-3002/CVE-2011-3003 (bmo#680840, bmo#682335)
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	872	Potentially exploitable WebGL crashes
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	873	* MFSA 2011-42/CVE-2011-3232 (bmo#653672)
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	874	Potentially exploitable crash in the YARR regular expression
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	875	library
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	876	* MFSA 2011-43/CVE-2011-3004 (bmo#653926)
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	877	loadSubScript unwraps XPCNativeWrapper scope parameter
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	878	* MFSA 2011-44/CVE-2011-3005 (bmo#675747)
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	879	Use after free reading OGG headers
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	880	* MFSA 2011-45
cf16b6560dd1 update to 7.0.1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 334 diff changeset	881	Inferring keystrokes from motion data
334 1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	882	- removed obsolete mozilla-cairo-lcd.patch
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	883	- rebased patches
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	884	- removed XLIB_SKIP_ARGB_VISUALS=1 from environment in
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	885	mozilla.sh.in (bnc#680758)
1256d8842872 update to version 7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 327 diff changeset	886
327 34013ee9fafd fixed loading of kde.js under KDE (bnc#718311) Wolfgang Rosenauer <wr@rosenauer.org> parents: 316 diff changeset	887	-------------------------------------------------------------------
34013ee9fafd fixed loading of kde.js under KDE (bnc#718311) Wolfgang Rosenauer <wr@rosenauer.org> parents: 316 diff changeset	888	Fri Sep 16 06:57:38 UTC 2011 - wr@rosenauer.org
34013ee9fafd fixed loading of kde.js under KDE (bnc#718311) Wolfgang Rosenauer <wr@rosenauer.org> parents: 316 diff changeset	889
34013ee9fafd fixed loading of kde.js under KDE (bnc#718311) Wolfgang Rosenauer <wr@rosenauer.org> parents: 316 diff changeset	890	- fixed loading of kde.js under KDE (bnc#718311)
34013ee9fafd fixed loading of kde.js under KDE (bnc#718311) Wolfgang Rosenauer <wr@rosenauer.org> parents: 316 diff changeset	891
312 fab4bf560637 add dbus-1-glib-devel to BuildRequires (not pulled in automatically anymore on 12.1) Wolfgang Rosenauer <wr@rosenauer.org> parents: 311 diff changeset	892	-------------------------------------------------------------------
316 a5e121de2e2f changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 312 diff changeset	893	Wed Sep 14 07:02:04 UTC 2011 - wr@rosenauer.org
312 fab4bf560637 add dbus-1-glib-devel to BuildRequires (not pulled in automatically anymore on 12.1) Wolfgang Rosenauer <wr@rosenauer.org> parents: 311 diff changeset	894
fab4bf560637 add dbus-1-glib-devel to BuildRequires (not pulled in automatically anymore on 12.1) Wolfgang Rosenauer <wr@rosenauer.org> parents: 311 diff changeset	895	- add dbus-1-glib-devel to BuildRequires (not pulled in
fab4bf560637 add dbus-1-glib-devel to BuildRequires (not pulled in automatically anymore on 12.1) Wolfgang Rosenauer <wr@rosenauer.org> parents: 311 diff changeset	896	automatically anymore on 12.1)
316 a5e121de2e2f changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 312 diff changeset	897	- increase minversions for NSPR and NSS
a5e121de2e2f changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 312 diff changeset	898
a5e121de2e2f changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 312 diff changeset	899	-------------------------------------------------------------------
a5e121de2e2f changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 312 diff changeset	900	Fri Sep 9 20:44:15 UTC 2011 - wr@rosenauer.org
a5e121de2e2f changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 312 diff changeset	901
a5e121de2e2f changelog sync Wolfgang Rosenauer <wr@rosenauer.org> parents: 312 diff changeset	902	- recreated source archive to get correct source-stamp.txt
312 fab4bf560637 add dbus-1-glib-devel to BuildRequires (not pulled in automatically anymore on 12.1) Wolfgang Rosenauer <wr@rosenauer.org> parents: 311 diff changeset	903
311 861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	904	-------------------------------------------------------------------
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	905	Wed Sep 7 14:30:34 UTC 2011 - pcerny@suse.com
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	906
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	907	- security update to 6.0.2 (bnc#714931)
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	908	* Complete blocking of certificates issued by DigiNotar
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	909	(bmo#683449)
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	910
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	911	-------------------------------------------------------------------
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	912	Fri Sep 2 14:40:07 UTC 2011 - pcerny@suse.com
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	913
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	914	- security update to 6.0.1 (bnc#714931)
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	915	* MFSA 2011-34
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	916	Protection against fraudulent DigiNotar certificates
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	917	(bmo#682927)
861ec6217558 version 7.0b5 Wolfgang Rosenauer <wr@rosenauer.org> parents: 306 diff changeset	918
306 e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	919	-------------------------------------------------------------------
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	920	Fri Aug 12 21:16:19 UTC 2011 - wr@rosenauer.org
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	921
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	922	- update to 6.0 (bnc#712224)
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	923	included security fixes MFSA 2011-29
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	924	* CVE-2011-2989/CVE-2011-2991/CVE-2011-2992/CVE-2011-2985
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	925	Miscellaneous memory safety hazards
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	926	* CVE-2011-2993 (bmo#657267)
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	927	Unsigned scripts can call script inside signed JAR
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	928	* CVE-2011-2988 (bmo#665934)
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	929	Heap overflow in ANGLE library
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	930	* CVE-2011-0084 (bmo#648094)
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	931	Crash in SVGTextElement.getCharNumAtPosition()
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	932	* CVE-2011-2990
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	933	Credential leakage using Content Security Policy reports
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	934	* CVE-2011-2986 (bmo#655836)
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	935	Cross-origin data theft using canvas and Windows D2D
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	936	- removed obsolete curl header dependency (mozilla-curl.patch)
e6df4625c730 update to 7.0b1 (aurora->beta) Wolfgang Rosenauer <wr@rosenauer.org> parents: 293 diff changeset	937
289 3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	938	-------------------------------------------------------------------
292 058eaa15d5d8 update to 6.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 291 diff changeset	939	Fri Jul 22 13:34:12 UTC 2011 - wr@rosenauer.org
058eaa15d5d8 update to 6.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 291 diff changeset	940
058eaa15d5d8 update to 6.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 291 diff changeset	941	- update to 6.0b3
289 3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	942	* removed obsolete patches
3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	943	- firefox-shellservice.patch
3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	944	- mozilla-gio.patch
3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	945	- mozilla-ppc-ipc.patch
3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	946	- firefox-linkorder.patch
3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	947	- firefox-no-sync-l10n.patch
293 3fd4e37e5e52 fix symbolstore.py for linux3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 292 diff changeset	948	- recognize linux3 as platform for symbolstore.py
289 3c0dff7ca9c4 Update to version 6.0b1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 288 diff changeset	949
288 d51f3999a1c2 make Firefox an ftp handler Wolfgang Rosenauer <wr@rosenauer.org> parents: 286 diff changeset	950	-------------------------------------------------------------------
d51f3999a1c2 make Firefox an ftp handler Wolfgang Rosenauer <wr@rosenauer.org> parents: 286 diff changeset	951	Fri Jul 1 19:53:18 CEST 2011 - vuntz@opensuse.org
d51f3999a1c2 make Firefox an ftp handler Wolfgang Rosenauer <wr@rosenauer.org> parents: 286 diff changeset	952
d51f3999a1c2 make Firefox an ftp handler Wolfgang Rosenauer <wr@rosenauer.org> parents: 286 diff changeset	953	- Add x-scheme-handler/ftp to the MimeType key in the .desktop, to
d51f3999a1c2 make Firefox an ftp handler Wolfgang Rosenauer <wr@rosenauer.org> parents: 286 diff changeset	954	let desktops know that Firefox can deal with ftp: URIs.
d51f3999a1c2 make Firefox an ftp handler Wolfgang Rosenauer <wr@rosenauer.org> parents: 286 diff changeset	955
286 b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	956	-------------------------------------------------------------------
b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	957	Fri Jul 1 06:45:08 UTC 2011 - wr@rosenauer.org
b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	958
b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	959	- create upstream branding package again (supposedly empty)
b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	960	(bnc#703401)
b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	961	- fix build on SLE11 (changes do not affect/are not applied for
b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	962	later versions)
b1d254616456 reenable branding-upstream package Wolfgang Rosenauer <wr@rosenauer.org> parents: 283 diff changeset	963
283 418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	964	-------------------------------------------------------------------
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	965	Wed Jun 22 06:41:17 UTC 2011 - wr@rosenauer.org
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	966
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	967	- enable startup notification (bnc#701465)
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	968
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	969	-------------------------------------------------------------------
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	970	Mon Jun 20 19:37:01 UTC 2011 - wr@rosenauer.org
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	971
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	972	- update to 5.0 final
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	973	- included fixes for security issues: (bnc#701296, bnc#700578)
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	974	* MFSA 2011-19/CVE-2011-2374 CVE-2011-2375
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	975	Miscellaneous memory safety hazards
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	976	* MFSA 2011-20/CVE-2011-2373 (bmo#617247)
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	977	Use-after-free vulnerability when viewing XUL document with
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	978	script disabled
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	979	* MFSA 2011-21/CVE-2011-2377 (bmo#638018, bmo#639303)
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	980	Memory corruption due to multipart/x-mixed-replace images
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	981	* MFSA 2011-22/CVE-2011-2371 (bmo#664009)
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	982	Integer overflow and arbitrary code execution in
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	983	Array.reduceRight()
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	984	* MFSA 2011-25/CVE-2011-2366
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	985	Stealing of cross-domain images using WebGL textures
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	986	* MFSA 2011-26/CVE-2011-2367 CVE-2011-2368
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	987	Multiple WebGL crashes
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	988	* MFSA 2011-27/CVE-2011-2369 (bmo#650001)
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	989	XSS encoding hazard with inline SVG
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	990	* MFSA 2011-28/CVE-2011-2370 (bmo#645699)
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	991	Non-whitelisted site can trigger xpinstall
418b5f502ff2 update to 5.0final Wolfgang Rosenauer <wr@rosenauer.org> parents: 282 diff changeset	992
279 eb9e33036fb4 update to 5.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 277 diff changeset	993	-------------------------------------------------------------------
282 78a523efc513 fix build for 12.1 and above by building dump_syms dynamic Wolfgang Rosenauer <wr@rosenauer.org> parents: 281 diff changeset	994	Mon Jun 20 09:17:42 UTC 2011 - wr@rosenauer.org
281 0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	995
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	996	- update to 5.0b7
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	997	* updated supported locales
282 78a523efc513 fix build for 12.1 and above by building dump_syms dynamic Wolfgang Rosenauer <wr@rosenauer.org> parents: 281 diff changeset	998	- do not build dump_syms static (not needed for us)
78a523efc513 fix build for 12.1 and above by building dump_syms dynamic Wolfgang Rosenauer <wr@rosenauer.org> parents: 281 diff changeset	999	-> fix build for openSUSE 12.1 and above
281 0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1000
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1001	-------------------------------------------------------------------
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1002	Wed Jun 15 14:59:32 UTC 2011 - wr@rosenauer.org
279 eb9e33036fb4 update to 5.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 277 diff changeset	1003
eb9e33036fb4 update to 5.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 277 diff changeset	1004	- update to 5.0b6
eb9e33036fb4 update to 5.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 277 diff changeset	1005	- include proper revision information into the build
eb9e33036fb4 update to 5.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 277 diff changeset	1006	- speedier find-external-requires.sh
eb9e33036fb4 update to 5.0b6 Wolfgang Rosenauer <wr@rosenauer.org> parents: 277 diff changeset	1007
263 64adf7ca3005 standalone firefox building now; runtime untested Wolfgang Rosenauer <wr@rosenauer.org> parents: 252 diff changeset	1008	-------------------------------------------------------------------
277 37db3d6540b8 update to 5.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 276 diff changeset	1009	Tue May 31 06:53:55 UTC 2011 - wr@rosenauer.org
37db3d6540b8 update to 5.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 276 diff changeset	1010
37db3d6540b8 update to 5.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 276 diff changeset	1011	- update to 5.0b3
263 64adf7ca3005 standalone firefox building now; runtime untested Wolfgang Rosenauer <wr@rosenauer.org> parents: 252 diff changeset	1012	- transformed to standalone Firefox (not xulrunner based)
64adf7ca3005 standalone firefox building now; runtime untested Wolfgang Rosenauer <wr@rosenauer.org> parents: 252 diff changeset	1013	(with new Firefox rapid release cycle it makes no sense anymore)
64adf7ca3005 standalone firefox building now; runtime untested Wolfgang Rosenauer <wr@rosenauer.org> parents: 252 diff changeset	1014	* imported all relevant xulrunner patches
277 37db3d6540b8 update to 5.0b3 Wolfgang Rosenauer <wr@rosenauer.org> parents: 276 diff changeset	1015	- do not compile in build timestamp
263 64adf7ca3005 standalone firefox building now; runtime untested Wolfgang Rosenauer <wr@rosenauer.org> parents: 252 diff changeset	1016
252 5477a696d8f6 install all icons Wolfgang Rosenauer <wr@rosenauer.org> parents: 247 diff changeset	1017	-------------------------------------------------------------------
281 0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1018	Fri Apr 15 07:08:53 UTC 2011 - wr@rosenauer.org
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1019
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1020	- security update to 4.0.1 (bnc#689281)
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1021	* MFSA 2011-12/ CVE-2011-0069 CVE-2011-0070 CVE-2011-0079
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1022	CVE-2011-0080 CVE-2011-0081
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1023	Miscellaneous memory safety hazards
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1024	* MFSA 2011-17/CVE-2011-0068 (bmo#623791)
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1025	WebGLES vulnerabilities
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1026	* MFSA 2011-18/CVE-2011-1202 (bmo#640339)
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1027	XSLT generate-id() function heap address leak
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1028
0bdc059f7280 update for 5.0b7 Wolfgang Rosenauer <wr@rosenauer.org> parents: 279 diff changeset	1029	-------------------------------------------------------------------
252 5477a696d8f6 install all icons Wolfgang Rosenauer <wr@rosenauer.org> parents: 247 diff changeset	1030	Wed Mar 30 11:24:36 UTC 2011 - wr@rosenauer.org
5477a696d8f6 install all icons Wolfgang Rosenauer <wr@rosenauer.org> parents: 247 diff changeset	1031
5477a696d8f6 install all icons Wolfgang Rosenauer <wr@rosenauer.org> parents: 247 diff changeset	1032	- add all available icon sizes
5477a696d8f6 install all icons Wolfgang Rosenauer <wr@rosenauer.org> parents: 247 diff changeset	1033
247 71521dfedb0b license update: MPLv1.1 or GPLv2+ or LGPLv2+ cfarrell@novell.com parents: 239 diff changeset	1034	-------------------------------------------------------------------
71521dfedb0b license update: MPLv1.1 or GPLv2+ or LGPLv2+ cfarrell@novell.com parents: 239 diff changeset	1035	Tue Mar 29 11:55:53 UTC 2011 - cfarrell@novell.com
71521dfedb0b license update: MPLv1.1 or GPLv2+ or LGPLv2+ cfarrell@novell.com parents: 239 diff changeset	1036
71521dfedb0b license update: MPLv1.1 or GPLv2+ or LGPLv2+ cfarrell@novell.com parents: 239 diff changeset	1037	- license update: MPLv1.1 or GPLv2+ or LGPLv2+
71521dfedb0b license update: MPLv1.1 or GPLv2+ or LGPLv2+ cfarrell@novell.com parents: 239 diff changeset	1038	Sync licenses with Fedora. MPL does not state ^or later^
71521dfedb0b license update: MPLv1.1 or GPLv2+ or LGPLv2+ cfarrell@novell.com parents: 239 diff changeset	1039
236 a4f5954df3a3 update for 2.0/4.0rc1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 230 diff changeset	1040	-------------------------------------------------------------------
239 99a267a3f1d3 update to rc2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 238 diff changeset	1041	Fri Mar 18 08:49:15 UTC 2011 - wr@rosenauer.org
99a267a3f1d3 update to rc2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 238 diff changeset	1042
99a267a3f1d3 update to rc2 Wolfgang Rosenauer <wr@rosenauer.org> parents: 238 diff changeset	1043	- update to version 4.0rc2
238 d537c4a65693 fixed rpm macros (bnc#679950) Wolfgang Rosenauer <wr@rosenauer.org> parents: 236 diff changeset	1044	- fixed rpm macros delivered with devel package (bnc#679950)
236 a4f5954df3a3 update for 2.0/4.0rc1 Wolfgang Rosenauer <wr@rosenauer.org> parents: 230 diff changeset	1045
230 e4846f1b81c5 real update to 4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 229 diff changeset	1046	-------------------------------------------------------------------
e4846f1b81c5 real update to 4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 229 diff changeset	1047	Wed Feb 23 07:52:04 UTC 2011 - wr@rosenauer.org
e4846f1b81c5 real update to 4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 229 diff changeset	1048
e4846f1b81c5 real update to 4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 229 diff changeset	1049	- update to version 4.0b12
e4846f1b81c5 real update to 4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 229 diff changeset	1050	- rebased patches
e4846f1b81c5 real update to 4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 229 diff changeset	1051
223 4555a5d0d661 patch reorganization Wolfgang Rosenauer <wr@rosenauer.org> parents: 221 diff changeset	1052	-------------------------------------------------------------------
229 298263f797be update to 2.0b12/4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 226 diff changeset	1053	Fri Feb 4 09:32:50 UTC 2011 - wr@rosenauer.org
226 6bf3bb4c115e update for 2.0b11/4.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 225 diff changeset	1054
6bf3bb4c115e update for 2.0b11/4.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 225 diff changeset	1055	- update to version 4.0b11
229 298263f797be update to 2.0b12/4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 226 diff changeset	1056	* loads of bugfixes compared to last beta
298263f797be update to 2.0b12/4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 226 diff changeset	1057	* added "Do Not Track" option
298263f797be update to 2.0b12/4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 226 diff changeset	1058	- rebased patches
298263f797be update to 2.0b12/4.0b12 Wolfgang Rosenauer <wr@rosenauer.org> parents: 226 diff changeset	1059	- disable testpilot
226 6bf3bb4c115e update for 2.0b11/4.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 225 diff changeset	1060
6bf3bb4c115e update for 2.0b11/4.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 225 diff changeset	1061	-------------------------------------------------------------------
6bf3bb4c115e update for 2.0b11/4.0b11 Wolfgang Rosenauer <wr@rosenauer.org> parents: 225 diff changeset	1062	Fri Jan 28 08:56:12 UTC 2011 - wr@rosenauer.org
223 4555a5d0d661 patch reorganization Wolfgang Rosenauer <wr@rosenauer.org> parents: 221 diff changeset	1063
4555a5d0d661 patch reorganization Wolfgang Rosenauer <wr@rosenauer.org> parents: 221 diff changeset	1064	- set correct desktop file name within KDE for 11.4 and up
225 5a7504b93699 Provide devel package with helper script and rpm macros for easier addon packaging. (patch submitted from Ludwig Nussel) Wolfgang Rosenauer <wr@rosenauer.org> parents: 223 diff changeset	1065	- add devel package with macros for extensions (from lnussel@suse.de)
223 4555a5d0d661 patch reorganization Wolfgang Rosenauer <wr@rosenauer.org> parents: 221 diff changeset	1066
221 488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1067	-------------------------------------------------------------------
488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1068	Sat Jan 22 22:21:52 UTC 2011 - wr@rosenauer.org
488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1069
488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1070	- update to version 4.0b10
488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1071	- removed obsolete firefox-shell-bmo624267.patch
488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1072	- testpilot moved to distribution/extensions
488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1073	- updated locale provides and removed bn-IN from locales
488440b896fe fixed testpilot packaging Wolfgang Rosenauer <wr@rosenauer.org> parents: 217 diff changeset	1074
210 f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1075	-------------------------------------------------------------------
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1076	Tue Jan 11 06:13:40 UTC 2011 - wr@rosenauer.org
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1077
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1078	- update to version 4.0b9
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1079	- added x-scheme-handler for http and https to desktop file for
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1080	newer Gnome environments
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1081	- fixed default browser check/set for GIO (bmo#611953)
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1082	(mozilla-shellservice.patch)
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1083	- removed obsolete firefox-appname.patch (integrated into
f4f4388b26a8 update to 2.0b9/4.0b9 Wolfgang Rosenauer <wr@rosenauer.org> parents: 207 diff changeset	1084	shellservice patch)
217 4b1284f6082b changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 210 diff changeset	1085	- renamed desktop file to firefox.desktop for 11.4 and newer
4b1284f6082b changelog Wolfgang Rosenauer <wr@rosenauer.org> parents: 210 diff changeset	1086	(bnc#664211)
4b1284f6082b changelog Wolfgang Rosenauer <wr@rosenauer.org> parents:

author	Wolfgang Rosenauer <wr@rosenauer.org>
	Wed, 05 Feb 2014 07:13:27 +0100
changeset 700	52284fd63667
parent 699	f810fbe5fece
child 703	c4aab80e472f
child 704	72225e57f863
permissions	-rw-r--r--