1 ------------------------------------------------------------------- |
1 ------------------------------------------------------------------- |
2 Fri Jul 16 06:48:44 CEST 2010 - wr@rosenauer.org |
2 Fri Jul 16 06:48:44 CEST 2010 - wr@rosenauer.org |
3 |
3 |
4 - security update to 3.6.7 (bnc#622506) |
4 - security update to 3.6.7 (bnc#622506) |
|
5 * MFSA 2010-34/CVE-2010-1211/CVE-2010-1212 |
|
6 Miscellaneous memory safety hazards |
|
7 * MFSA 2010-35/CVE-2010-1208 (bmo#572986) |
|
8 DOM attribute cloning remote code execution vulnerability |
|
9 * MFSA 2010-36/CVE-2010-1209 (bmo#552110) |
|
10 Use-after-free error in NodeIterator |
|
11 * MFSA 2010-37/CVE-2010-1214 (bmo#572985) |
|
12 Plugin parameter EnsureCachedAttrParamArrays remote code |
|
13 execution vulnerability |
|
14 * MFSA 2010-38/CVE-2010-1215 (bmo#567069) |
|
15 Arbitrary code execution using SJOW and fast native function |
|
16 * MFSA 2010-39/CVE-2010-2752 (bmo#574059) |
|
17 nsCSSValue::Array index integer overflow |
|
18 * MFSA 2010-40/CVE-2010-2753 (bmo#571106) |
|
19 nsTreeSelection dangling pointer remote code execution |
|
20 vulnerability |
|
21 * MFSA 2010-41/CVE-2010-1205 (bmo#570451) |
|
22 Remote code execution using malformed PNG image |
|
23 * MFSA 2010-42/CVE-2010-1213 (bmo#568148) |
|
24 Cross-origin data disclosure via Web Workers and importScripts |
|
25 * MFSA 2010-43/CVE-2010-1207 (bmo#571287) |
|
26 Same-origin bypass using canvas context |
|
27 * MFSA 2010-44/CVE-2010-1210 (bmo#564679) |
|
28 Characters mapped to U+FFFD in 8 bit encodings cause subsequent |
|
29 character to vanish |
|
30 * MFSA 2010-45/CVE-2010-1206/CVE-2010-2751 (bmo#536466,556957) |
|
31 Multiple location bar spoofing vulnerabilities |
|
32 * MFSA 2010-46/CVE-2010-0654 (bmo#524223) |
|
33 Cross-domain data theft using CSS |
|
34 * MFSA 2010-47/CVE-2010-2754 (bmo#568564) |
|
35 Cross-origin data leakage from script filename in error messages |
5 |
36 |
6 ------------------------------------------------------------------- |
37 ------------------------------------------------------------------- |
7 Sun Jun 27 20:24:31 CEST 2010 - wr@rosenauer.org |
38 Sun Jun 27 20:24:31 CEST 2010 - wr@rosenauer.org |
8 |
39 |
9 - update to 3.6.6 release |
40 - update to 3.6.6 release |