# HG changeset patch # User Wolfgang Rosenauer # Date 1317380464 -7200 # Node ID cf16b6560dd13f65ecf128e90a6fd9a6eba85b7d # Parent 32fed23c19f550c2f64f933cfd3791b1689df095 update to 7.0.1 diff -r 32fed23c19f5 -r cf16b6560dd1 MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Mon Sep 26 15:29:21 2011 +0200 +++ b/MozillaFirefox/MozillaFirefox.changes Fri Sep 30 13:01:04 2011 +0200 @@ -1,3 +1,9 @@ +------------------------------------------------------------------- +Fri Sep 30 10:52:36 UTC 2011 - wr@rosenauer.org + +- update to minor release 7.0.1 + * fixed staged addon updates + ------------------------------------------------------------------- Fri Sep 23 11:22:22 UTC 2011 - wr@rosenauer.org @@ -6,6 +12,23 @@ * Improve Responsiveness with Memory Reductions * Instant Sync * WebSocket protocol 8 + * MFSA 2011-36/CVE-2011-2995/CVE-2011-2996/CVE-2011-2997 + Miscellaneous memory safety hazards + * MFSA 2011-39/CVE-2011-3000 (bmo#655389) + Defense against multiple Location headers due to CRLF Injection + * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 + Code installation through holding down Enter + * MFSA 2011-41/CVE-2011-3002/CVE-2011-3003 (bmo#680840, bmo#682335) + Potentially exploitable WebGL crashes + * MFSA 2011-42/CVE-2011-3232 (bmo#653672) + Potentially exploitable crash in the YARR regular expression + library + * MFSA 2011-43/CVE-2011-3004 (bmo#653926) + loadSubScript unwraps XPCNativeWrapper scope parameter + * MFSA 2011-44/CVE-2011-3005 (bmo#675747) + Use after free reading OGG headers + * MFSA 2011-45 + Inferring keystrokes from motion data - removed obsolete mozilla-cairo-lcd.patch - rebased patches - removed XLIB_SKIP_ARGB_VISUALS=1 from environment in diff -r 32fed23c19f5 -r cf16b6560dd1 MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Mon Sep 26 15:29:21 2011 +0200 +++ b/MozillaFirefox/MozillaFirefox.spec Fri Sep 30 13:01:04 2011 +0200 @@ -33,9 +33,9 @@ BuildRequires: mozilla-nss-devel >= 3.12.10 BuildRequires: nss-shared-helper-devel License: MPLv1.1 or GPLv2+ or LGPLv2+ -Version: %{mainver} +Version: %{mainver}.1 Release: 1 -%define releasedate 2011092200 +%define releasedate 2011092900 Provides: web_browser Provides: firefox = %{version}-%{release} Provides: firefox = %{mainver} diff -r 32fed23c19f5 -r cf16b6560dd1 MozillaFirefox/create-tar.sh --- a/MozillaFirefox/create-tar.sh Mon Sep 26 15:29:21 2011 +0200 +++ b/MozillaFirefox/create-tar.sh Fri Sep 30 13:01:04 2011 +0200 @@ -1,8 +1,8 @@ #!/bin/bash BRANCH="releases/mozilla-release" -RELEASE_TAG="FIREFOX_7_0_RELEASE" -VERSION="7.0" +RELEASE_TAG="FIREFOX_7_0_1_RELEASE" +VERSION="7.0.1" # mozilla hg clone http://hg.mozilla.org/$BRANCH mozilla diff -r 32fed23c19f5 -r cf16b6560dd1 xulrunner/create-tar.sh --- a/xulrunner/create-tar.sh Mon Sep 26 15:29:21 2011 +0200 +++ b/xulrunner/create-tar.sh Fri Sep 30 13:01:04 2011 +0200 @@ -1,8 +1,8 @@ #!/bin/bash BRANCH="releases/mozilla-release" -RELEASE_TAG="FIREFOX_7_0_RELEASE" -VERSION="7.0" +RELEASE_TAG="FIREFOX_7_0_1_RELEASE" +VERSION="7.0.1" # mozilla hg clone http://hg.mozilla.org/$BRANCH mozilla diff -r 32fed23c19f5 -r cf16b6560dd1 xulrunner/xulrunner.changes --- a/xulrunner/xulrunner.changes Mon Sep 26 15:29:21 2011 +0200 +++ b/xulrunner/xulrunner.changes Fri Sep 30 13:01:04 2011 +0200 @@ -1,9 +1,32 @@ +------------------------------------------------------------------- +Fri Sep 30 10:59:54 UTC 2011 - wr@rosenauer.org + +- update to minor release 7.0.1 + * fixed staged addon updates + ------------------------------------------------------------------- Fri Sep 23 11:36:04 UTC 2011 - wr@rosenauer.org - update to version 7.0 (bnc#720264) - - removed obsolete mozilla-cairo-lcd.patch - - rebased patches + * MFSA 2011-36/CVE-2011-2995/CVE-2011-2996/CVE-2011-2997 + Miscellaneous memory safety hazards + * MFSA 2011-39/CVE-2011-3000 (bmo#655389) + Defense against multiple Location headers due to CRLF Injection + * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 + Code installation through holding down Enter + * MFSA 2011-41/CVE-2011-3002/CVE-2011-3003 (bmo#680840, bmo#682335) + Potentially exploitable WebGL crashes + * MFSA 2011-42/CVE-2011-3232 (bmo#653672) + Potentially exploitable crash in the YARR regular expression + library + * MFSA 2011-43/CVE-2011-3004 (bmo#653926) + loadSubScript unwraps XPCNativeWrapper scope parameter + * MFSA 2011-44/CVE-2011-3005 (bmo#675747) + Use after free reading OGG headers + * MFSA 2011-45 + Inferring keystrokes from motion data +- removed obsolete mozilla-cairo-lcd.patch +- rebased patches ------------------------------------------------------------------- Tue Sep 20 11:54:28 UTC 2011 - wr@rosenauer.org diff -r 32fed23c19f5 -r cf16b6560dd1 xulrunner/xulrunner.spec --- a/xulrunner/xulrunner.spec Mon Sep 26 15:29:21 2011 +0200 +++ b/xulrunner/xulrunner.spec Fri Sep 30 13:01:04 2011 +0200 @@ -30,12 +30,12 @@ BuildRequires: mozilla-nspr-devel >= 4.8.8 BuildRequires: mozilla-nss-devel >= 3.12.10 License: MPLv1.1 or GPLv2+ or LGPLv2+ -Version: 7.0 +Version: 7.0.1 Release: 1 -%define releasedate 2011092200 -%define version_internal 7.0 +%define releasedate 2011092900 +%define version_internal 7.0.1 %define apiversion 7 -%define uaweight 700000 +%define uaweight 700001 Summary: Mozilla Runtime Environment Url: http://www.mozilla.org/ Group: Productivity/Other