Mercurial Mercurial > hg > mozilla / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
xulrunner/xulrunner-esr.changes
branchesr17
changeset 665 efc8a8a62a09
parent 655 f812ab6b56ac
child 677 ef3b8d075242
equal deleted inserted replaced
655:f812ab6b56ac 665:efc8a8a62a09 
     1 -------------------------------------------------------------------
 
     1 -------------------------------------------------------------------
 
     2 Fri Jun 21 05:49:37 UTC 2013 - wr@rosenauer.org
 
     2 Thu Sep 12 10:07:45 UTC 2013 - wr@rosenauer.org
 
       
     3 
       
     4 - update to 17.0.9esr (bnc#)
 
       
     5 
       
     6 -------------------------------------------------------------------
 
       
     7 Fri Aug  2 11:51:23 UTC 2013 - wr@rosenauer.org
 
       
     8 
       
     9 - update to 17.0.8esr (bnc#833389)
 
       
    10   * MFSA 2013-63/CVE-2013-1701
 
       
    11     Miscellaneous memory safety hazards
 
       
    12   * MFSA 2013-68/CVE-2013-1709 (bmo#838253)
 
       
    13     Document URI misrepresentation and masquerading
 
       
    14   * MFSA 2013-69/CVE-2013-1710 (bmo#871368)
 
       
    15     CRMF requests allow for code execution and XSS attacks
 
       
    16   * MFSA 2013-72/CVE-2013-1713 (bmo#887098)
 
       
    17     Wrong principal used for validating URI for some Javascript
 
       
    18     components
 
       
    19   * MFSA 2013-73/CVE-2013-1714 (bmo#879787)
 
       
    20     Same-origin bypass with web workers and XMLHttpRequest
 
       
    21   * MFSA 2013-75/CVE-2013-1717 (bmo#406541, bmo#738397)
 
       
    22     Local Java applets may read contents of local file system
 
       
    23 
       
    24 -------------------------------------------------------------------
 
       
    25 Mon Jun 24 15:26:27 UTC 2013 - wr@rosenauer.org
 
     3 
    26 
     4 - update to 17.0.7esr (bnc#825935)
 
    27 - update to 17.0.7esr (bnc#825935)
 
       
    28   * MFSA 2013-49/CVE-2013-1682
 
       
    29     Miscellaneous memory safety hazards
 
       
    30   * MFSA 2013-50/CVE-2013-1684/CVE-2013-1685/CVE-2013-1686
 
       
    31     Memory corruption found using Address Sanitizer
 
       
    32   * MFSA 2013-51/CVE-2013-1687 (bmo#863933, bmo#866823)
 
       
    33     Privileged content access and execution via XBL
 
       
    34   * MFSA 2013-53/CVE-2013-1690 (bmo#857883)
 
       
    35     Execution of unmapped memory through onreadystatechange event
 
       
    36   * MFSA 2013-54/CVE-2013-1692 (bmo#866915)
 
       
    37     Data in the body of XHR HEAD requests leads to CSRF attacks
 
       
    38   * MFSA 2013-55/CVE-2013-1693 (bmo#711043)
 
       
    39     SVG filters can lead to information disclosure
 
       
    40   * MFSA 2013-56/CVE-2013-1694 (bmo#848535)
 
       
    41     PreserveWrapper has inconsistent behavior
 
       
    42   * MFSA 2013-59/CVE-2013-1697 (bmo#858101)
 
       
    43     XrayWrappers can be bypassed to run user defined methods in a
 
       
    44     privileged context
 
       
    45 
       
    46 -------------------------------------------------------------------
 
       
    47 Tue Jun  4 16:24:51 UTC 2013 - dvaleev@suse.com
 
       
    48 
       
    49 - Fix build on powerpc (ppc-xpcshell.patch)
 
     5 
    50 
     6 -------------------------------------------------------------------
 
    51 -------------------------------------------------------------------
 
     7 Fri May 10 17:27:58 UTC 2013 - wr@rosenauer.org
 
    52 Fri May 10 17:27:58 UTC 2013 - wr@rosenauer.org
 
     8 
    53 
     9 - update to 17.0.6esr (bnc#819204)
 
    54 - update to 17.0.6esr (bnc#819204)
mozilla