1 ------------------------------------------------------------------- |
|
2 Tue May 4 08:03:37 CEST 2010 - wr@rosenauer.org |
|
3 |
|
4 - security update to 1.9.2.4 (Lorentz) |
|
5 * enable crashreporter also for x86-64 |
|
6 * provide mozilla-runtime to host NPAPI out of process plugins |
|
7 - removed libproxy debug message (bnc#604711) |
|
8 |
|
9 ------------------------------------------------------------------- |
|
10 Mon Apr 26 07:18:09 CEST 2010 - wr@rosenauer.org |
|
11 |
|
12 - point alternatives link to the stable version to improve |
|
13 robustness (bnc#589037) |
|
14 |
|
15 ------------------------------------------------------------------- |
|
16 Sat Apr 24 11:38:24 UTC 2010 - coolo@novell.com |
|
17 |
|
18 - buildrequire pkg-config to fix provides |
|
19 |
|
20 ------------------------------------------------------------------- |
|
21 Thu Apr 1 11:15:38 UTC 2010 - wr@rosenauer.org |
|
22 |
|
23 - security update to 1.9.2.3 |
|
24 * MFSA 2010-25/CVE-2010-1121 (bmo#555109) |
|
25 Re-use of freed object due to scope confusion |
|
26 |
|
27 ------------------------------------------------------------------- |
|
28 Thu Mar 25 20:04:41 CET 2010 - wr@rosenauer.org |
|
29 |
|
30 - security update to 1.9.2.2 (bnc#586567) |
|
31 * MFSA 2010-08/CVE-2010-1028 |
|
32 WOFF heap corruption due to integer overflow |
|
33 * MFSA 2010-09/CVE-2010-0164 (bmo#547143) |
|
34 Deleted frame reuse in multipart/x-mixed-replace image |
|
35 * MFSA 2010-10/CVE-2010-0170 (bmo#541530) |
|
36 XSS via plugins and unprotected Location object |
|
37 * MFSA 2010-11/CVE-2010-0165/CVE-2010-0166/CVE-2010-0167 |
|
38 Crashes with evidence of memory corruption |
|
39 * MFSA 2010-12/CVE-2010-0171 (bmo#531364) |
|
40 XSS using addEventListener and setTimeout on a wrapped object |
|
41 * MFSA 2010-13/CVE-2010-0168 (bmo#540642) |
|
42 Content policy bypass with image preloading |
|
43 * MFSA 2010-14/CVE-2010-0169 (bmo#535806) |
|
44 Browser chrome defacement via cached XUL stylesheets |
|
45 * MFSA 2010-15/CVE-2010-0172 (bmo#537862) |
|
46 Asynchronous Auth Prompt attaches to wrong window |
|
47 * MFSA 2010-16/CVE-2010-0173/CVE-2010-0174 |
|
48 Crashes with evidence of memory corruption |
|
49 * MFSA 2010-18/CVE-2010-0176 (bmo#538308) |
|
50 Dangling pointer vulnerability in nsTreeContentView |
|
51 * MFSA 2010-19/CVE-2010-0177 (bmo#538310) |
|
52 Dangling pointer vulnerability in nsPluginArray |
|
53 * MFSA 2010-20/CVE-2010-0178 (bmo#546909) |
|
54 Chrome privilege escalation via forced URL drag and drop |
|
55 * MFSA 2010-22/CVE-2009-3555 (bmo#545755) |
|
56 Update NSS to support TLS renegotiation indication |
|
57 * MFSA 2010-23/CVE-2010-0181 (bmo#452093) |
|
58 Image src redirect to mailto: URL opens email editor |
|
59 * MFSA 2010-24/CVE-2010-0182 (bmo#490790) |
|
60 XMLDocument::load() doesn't check nsIContentPolicy |
|
61 - general.useragent.locale in profile overrides |
|
62 intl.locale.matchOS (bmo#542999) |
|
63 - split mozilla-js192 package which contains libmozjs only |
|
64 to allow its installation w/o all GUI dependencies |
|
65 |
|
66 ------------------------------------------------------------------- |
|
67 Mon Jan 18 09:28:56 CET 2010 - wr@rosenauer.org |
|
68 |
|
69 - update to 1.9.2rc2 |
|
70 - add update-alternatives %ghost file to filelist starting |
|
71 with 11.2 (%ghost files are conflicting in earlier versions) |
|
72 - fixed mozilla-plugin.pc (remove obsolete stable reference) |
|
73 |
|
74 ------------------------------------------------------------------- |
|
75 Wed Jan 6 14:10:25 CET 2010 - wr@rosenauer.org |
|
76 |
|
77 - update to 1.9.2rc1 |
|
78 * removed obsolete mozilla-breakpad.patch |
|
79 - expand -translations-* and -gnome filelists to clean up the |
|
80 filesystem for upgrades and removals correctly |
|
81 - enable crashreporter and create breakpad buildsymbols package |
|
82 for mozilla crashreporter (for ix86) |
|
83 - drop PreReq usage by cleaning up the different Requires tags |
|
84 |
|
85 ------------------------------------------------------------------- |
|
86 Thu Dec 24 14:21:02 CET 2009 - wr@rosenauer.org |
|
87 |
|
88 - update to 1.9.2b5 |
|
89 - removed upstreamed mozilla-abi.patch |
|
90 - integrated mozilla-kde.patch |
|
91 - use .autoreg file for autoregistration when needed (bnc#440872) |
|
92 - enable libproxy support from 11.2 on |
|
93 - renamed -gnomevfs subpackage to -gnome |
|
94 - readded lockdown patches and preferences |
|
95 - fix baselibs.conf |
|
96 |
|
97 ------------------------------------------------------------------- |
|
98 Tue Nov 10 14:48:39 CET 2009 - wr@rosenauer.org |
|
99 |
|
100 - update to 1.9.2b2 |
|
101 - merge from xulrunner191 package |
|
102 |
|
103 ------------------------------------------------------------------- |
|
104 Sun Nov 1 13:10:23 CET 2009 - wr@rosenauer.org |
|
105 |
|
106 - update to 1.9.2b1 |
|
107 - use newer internal cairo for 11.1 and older |
|
108 |
|
109 ------------------------------------------------------------------- |
|
110 Sun Oct 18 13:04:22 CEST 2009 - wr@rosenauer.org |
|
111 |
|
112 - reworked PreReq list |
|
113 |
|
114 ------------------------------------------------------------------- |
|
115 Fri Oct 16 09:14:47 CEST 2009 - wr@rosenauer.org |
|
116 |
|
117 - update to snapshot 1.9.2b2pre (20091015) |
|
118 (entering beta phase) |
|
119 |
|
120 ------------------------------------------------------------------- |
|
121 Mon Sep 21 16:43:18 CEST 2009 - wr@rosenauer.org |
|
122 |
|
123 - BuildRequire libiw-devel instead of wireless-tools from 11.2 on |
|
124 |
|
125 ------------------------------------------------------------------- |
|
126 Wed Sep 16 23:42:58 CEST 2009 - wr@rosenauer.org |
|
127 |
|
128 - new snapshot (20090916) |
|
129 |
|
130 ------------------------------------------------------------------- |
|
131 Mon Aug 24 17:37:06 CEST 2009 - wr@rosenauer.org |
|
132 |
|
133 - first alpha package of XULRunner 1.9.2 |
|
134 |
|