Mercurial Mercurial > hg > mozilla / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mozilla-xulrunner192/mozilla-xulrunner192.changes
branchmozilla-1.9.2
changeset 63 9213a0672227
parent 62 cbbe8d04403d
child 64 7bb1edb78dd5
equal deleted inserted replaced
62:cbbe8d04403d 63:9213a0672227 
       
     1 -------------------------------------------------------------------
 
       
     2 Thu Apr  1 11:15:38 UTC 2010 - wr@rosenauer.org
 
       
     3 
       
     4 - security update to 1.9.2.3
 
       
     5   * MFSA 2010-25/CVE-2010-1121 (bmo#555109)
 
       
     6     Re-use of freed object due to scope confusion
 
       
     7 
     1 -------------------------------------------------------------------
 
     8 -------------------------------------------------------------------
 
     2 Thu Mar 25 20:04:41 CET 2010 - wr@rosenauer.org
 
     9 Thu Mar 25 20:04:41 CET 2010 - wr@rosenauer.org
 
     3 
    10 
     4 - security update to 1.9.2.2 (bnc#586567)
 
    11 - security update to 1.9.2.2 (bnc#586567)
 
     5   * requires NSS 3.12.6
 
    12   * MFSA 2010-08/CVE-2010-1028
 
     6   * MFSA 2010-08/CVE-2010-1028 (bmo#552216)
 
       
     7     WOFF heap corruption due to integer overflow
 
    13     WOFF heap corruption due to integer overflow
 
       
    14   * MFSA 2010-09/CVE-2010-0164 (bmo#547143)
 
       
    15     Deleted frame reuse in multipart/x-mixed-replace image
 
       
    16   * MFSA 2010-10/CVE-2010-0170 (bmo#541530)
 
       
    17     XSS via plugins and unprotected Location object
 
       
    18   * MFSA 2010-11/CVE-2010-0165/CVE-2010-0166/CVE-2010-0167
 
       
    19     Crashes with evidence of memory corruption
 
       
    20   * MFSA 2010-12/CVE-2010-0171 (bmo#531364)
 
       
    21     XSS using addEventListener and setTimeout on a wrapped object
 
       
    22   * MFSA 2010-13/CVE-2010-0168 (bmo#540642)
 
       
    23     Content policy bypass with image preloading
 
       
    24   * MFSA 2010-14/CVE-2010-0169 (bmo#535806)
 
       
    25     Browser chrome defacement via cached XUL stylesheets
 
       
    26   * MFSA 2010-15/CVE-2010-0172 (bmo#537862)
 
       
    27     Asynchronous Auth Prompt attaches to wrong window
 
       
    28   * MFSA 2010-16/CVE-2010-0173/CVE-2010-0174
 
       
    29     Crashes with evidence of memory corruption
 
       
    30   * MFSA 2010-18/CVE-2010-0176 (bmo#538308)
 
       
    31     Dangling pointer vulnerability in nsTreeContentView
 
       
    32   * MFSA 2010-19/CVE-2010-0177 (bmo#538310)
 
       
    33     Dangling pointer vulnerability in nsPluginArray
 
       
    34   * MFSA 2010-20/CVE-2010-0178 (bmo#546909)
 
       
    35     Chrome privilege escalation via forced URL drag and drop
 
       
    36   * MFSA 2010-22/CVE-2009-3555 (bmo#545755)
 
       
    37     Update NSS to support TLS renegotiation indication
 
       
    38   * MFSA 2010-23/CVE-2010-0181 (bmo#452093)
 
       
    39     Image src redirect to mailto: URL opens email editor
 
       
    40   * MFSA 2010-24/CVE-2010-0182 (bmo#490790)
 
       
    41     XMLDocument::load() doesn't check nsIContentPolicy
 
     8 - general.useragent.locale in profile overrides 
    42 - general.useragent.locale in profile overrides 
     9   intl.locale.matchOS (bmo#542999)
 
    43   intl.locale.matchOS (bmo#542999)
 
    10 - split mozilla-js192 package which contains libmozjs only
 
    44 - split mozilla-js192 package which contains libmozjs only
 
    11   to allow its installation w/o all GUI dependencies
 
    45   to allow its installation w/o all GUI dependencies
 
    12 
    46
mozilla