Mercurial Mercurial > hg > mozilla / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mozilla-xulrunner192/mozilla-xulrunner192.changes
branchmozilla-1.9.2
changeset 183 15e53a96c9ca
parent 176 692686ab9228
child 184 e398c79b1668 
--- a/mozilla-xulrunner192/mozilla-xulrunner192.changes	Wed Oct 06 07:14:29 2010 +0200
+++ b/mozilla-xulrunner192/mozilla-xulrunner192.changes	Mon Oct 25 10:06:05 2010 +0200
@@ -1,7 +1,25 @@
 -------------------------------------------------------------------
 Wed Oct  6 07:13:34 CEST 2010 - wr@rosenauer.org
 
-- security update to 1.9.2.11
+- security update to 1.9.2.11 (bnc#645315)
+  * MFSA 2010-64/CVE-2010-3174/CVE-2010-3175/CVE-2010-3176
+    Miscellaneous memory safety hazards
+  * MFSA 2010-65/CVE-2010-3179 (bmo#583077)
+    Buffer overflow and memory corruption using document.write
+  * MFSA 2010-66/CVE-2010-3180 (bmo#588929)
+    Use-after-free error in nsBarProp
+  * MFSA 2010-67/CVE-2010-3183 (bmo#598669)
+    Dangling pointer vulnerability in LookupGetterOrSetter
+  * MFSA 2010-68/CVE-2010-3177 (bmo#556734)
+    XSS in gopher parser when parsing hrefs
+  * MFSA 2010-69/CVE-2010-3178 (bmo#576616)
+    Cross-site information disclosure via modal calls
+  * MFSA 2010-70/CVE-2010-3170 (bmo#578697)
+    SSL wildcard certificate matching IP addresses
+  * MFSA 2010-71/CVE-2010-3182 (bmo#590753)
+    Unsafe library loading vulnerabilities
+  * MFSA 2010-72/CVE-2010-3173
+    Insecure Diffie-Hellman key exchange
 - removed upstreamed patches:
   * mozilla-esd.patch
   * mozilla-helper-app.patch
mozilla