Mercurial Mercurial > hg > mozilla / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mozilla-xulrunner192/mozilla-xulrunner192.changes
branchmozilla-1.9.2
changeset 159 416b9e491c6f
parent 151 4b31c799a73f
child 160 2a08bb18befb
equal deleted inserted replaced
152:8f9e6663d94c 159:416b9e491c6f 
     1 -------------------------------------------------------------------
 
     1 -------------------------------------------------------------------
 
     2 Mon Aug 30 17:34:28 CEST 2010 - wr@rosenauer.org
 
     2 Mon Aug 30 17:34:28 CEST 2010 - wr@rosenauer.org
 
     3 
     3 
     4 - security update to 1.9.2.9
 
     4 - security update to 1.9.2.9 (bnc#637303)
 
       
     5   * MFSA 2010-49/CVE-2010-3169
 
       
     6     Miscellaneous memory safety hazards
 
       
     7   * MFSA 2010-50/CVE-2010-2765 (bmo#576447)
 
       
     8     Frameset integer overflow vulnerability
 
       
     9   * MFSA 2010-51/CVE-2010-2767 (bmo#584512)
 
       
    10     Dangling pointer vulnerability using DOM plugin array
 
       
    11   * MFSA 2010-53/CVE-2010-3166 (bmo#579655)
 
       
    12     Heap buffer overflow in nsTextFrameUtils::TransformText
 
       
    13   * MFSA 2010-54/CVE-2010-2760 (bmo#585815)
 
       
    14     Dangling pointer vulnerability in nsTreeSelection
 
       
    15   * MFSA 2010-55/CVE-2010-3168 (bmo#576075)
 
       
    16     XUL tree removal crash and remote code execution
 
       
    17   * MFSA 2010-56/CVE-2010-3167 (bmo#576070)
 
       
    18     Dangling pointer vulnerability in nsTreeContentView
 
       
    19   * MFSA 2010-57/CVE-2010-2766 (bmo#580445)
 
       
    20     Crash and remote code execution in normalizeDocument
 
       
    21   * MFSA 2010-59/CVE-2010-2762 (bmo#584180)
 
       
    22     SJOW creates scope chains ending in outer object
 
       
    23   * MFSA 2010-61/CVE-2010-2768 (bmo#579744)
 
       
    24     UTF-7 XSS by overriding document charset using <object> type 
       
    25     attribute
 
       
    26   * MFSA 2010-62/CVE-2010-2769 (bmo#520189)
 
       
    27     Copy-and-paste or drag-and-drop into designMode document allows 
       
    28     XSS
 
       
    29   * MFSA 2010-63/CVE-2010-2764 (bmo#552090)
 
       
    30     Information leak via XMLHttpRequest statusText
 
     5 - honor LANGUAGE environment variable for UI locale (bmo#583793)
 
    31 - honor LANGUAGE environment variable for UI locale (bmo#583793)
 
     6 
    32 
     7 -------------------------------------------------------------------
 
    33 -------------------------------------------------------------------
 
     8 Mon Aug 30 17:32:20 CEST 2010 - wr@rosenauer.org
 
    34 Mon Aug 30 17:32:20 CEST 2010 - wr@rosenauer.org
 
     9 
    35
mozilla