# HG changeset patch # User Wolfgang Rosenauer # Date 1320181164 -3600 # Node ID ebdb6a9e0132d00b9b8e9f333370dc4db6fede57 # Parent ea85aeecf72f9a0caf9055329bc8a38060d68d01 1.9.2.24/3.6.24 diff -r ea85aeecf72f -r ebdb6a9e0132 MozillaFirefox/MozillaFirefox.changes --- a/MozillaFirefox/MozillaFirefox.changes Wed Sep 21 12:31:47 2011 +0200 +++ b/MozillaFirefox/MozillaFirefox.changes Tue Nov 01 21:59:24 2011 +0100 @@ -1,7 +1,22 @@ +------------------------------------------------------------------- +Tue Nov 1 20:58:48 UTC 2011 - wr@rosenauer.org + +- security update to 3.6.24 + ------------------------------------------------------------------- Wed Sep 21 10:20:43 UTC 2011 - wr@rosenauer.org -- security update to 3.6.23 +- security update to 3.6.23 (bnc#720264) + * MFSA 2011-36/CVE-2011-2996 (bmo#555018) + Miscellaneous memory safety hazards + * MFSA 2011-37/CVE-2011-2998 (bmo#684815) + Integer underflow when using JavaScript RegExp + * MFSA 2011-38/CVE-2011-2999 (bmo#665548) + XSS via plugins and shadowed window.location object + * MFSA 2011-39/CVE-2011-3000 (bmo#655389) + Defense against multiple Location headers due to CRLF Injection + * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 + Code installation through holding down Enter ------------------------------------------------------------------- Wed Sep 7 14:30:34 UTC 2011 - pcerny@suse.com diff -r ea85aeecf72f -r ebdb6a9e0132 MozillaFirefox/MozillaFirefox.spec --- a/MozillaFirefox/MozillaFirefox.spec Wed Sep 21 12:31:47 2011 +0200 +++ b/MozillaFirefox/MozillaFirefox.spec Tue Nov 01 21:59:24 2011 +0100 @@ -24,7 +24,7 @@ Name: MozillaFirefox %define xulrunner mozilla-xulrunner192 BuildRequires: autoconf213 gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python unzip update-desktop-files zip -BuildRequires: %{xulrunner}-devel = 1.9.2.23 +BuildRequires: %{xulrunner}-devel = 1.9.2.24 %if %suse_version > 1020 BuildRequires: fdupes %endif @@ -34,13 +34,13 @@ BuildRequires: wireless-tools %endif License: MPLv1.1 or GPLv2+ or LGPLv2+ -Version: %mainver.23 +Version: %mainver.24 Release: 1 Provides: web_browser Provides: firefox = %{mainver} Provides: firefox = %{version}-%{release} Provides: firefox = %{version} -%define releasedate 2011092000 +%define releasedate 2011110100 Summary: Mozilla Firefox Web Browser Url: http://www.mozilla.org/ Group: Productivity/Networking/Web/Browsers diff -r ea85aeecf72f -r ebdb6a9e0132 mozilla-xulrunner192/create-tar.sh --- a/mozilla-xulrunner192/create-tar.sh Wed Sep 21 12:31:47 2011 +0200 +++ b/mozilla-xulrunner192/create-tar.sh Tue Nov 01 21:59:24 2011 +0100 @@ -1,7 +1,7 @@ #!/bin/bash -RELEASE_TAG="FIREFOX_3_6_23_RELEASE" -VERSION="1.9.2.23" +RELEASE_TAG="FIREFOX_3_6_24_RELEASE" +VERSION="1.9.2.24" # mozilla hg clone http://hg.mozilla.org/releases/mozilla-1.9.2 mozilla diff -r ea85aeecf72f -r ebdb6a9e0132 mozilla-xulrunner192/mozilla-xulrunner192.changes --- a/mozilla-xulrunner192/mozilla-xulrunner192.changes Wed Sep 21 12:31:47 2011 +0200 +++ b/mozilla-xulrunner192/mozilla-xulrunner192.changes Tue Nov 01 21:59:24 2011 +0100 @@ -1,7 +1,22 @@ +------------------------------------------------------------------- +Tue Nov 1 20:53:16 UTC 2011 - wr@rosenauer.org + +- security update to 1.9.2.24 + ------------------------------------------------------------------- Wed Sep 21 10:17:09 UTC 2011 - wr@rosenauer.org -- security update to 1.9.2.23 +- security update to 1.9.2.23 (bnc#720264) + * MFSA 2011-36/CVE-2011-2996 (bmo#555018) + Miscellaneous memory safety hazards + * MFSA 2011-37/CVE-2011-2998 (bmo#684815) + Integer underflow when using JavaScript RegExp + * MFSA 2011-38/CVE-2011-2999 (bmo#665548) + XSS via plugins and shadowed window.location object + * MFSA 2011-39/CVE-2011-3000 (bmo#655389) + Defense against multiple Location headers due to CRLF Injection + * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 + Code installation through holding down Enter - bring KDE's dialog.xml in sync with original widget ------------------------------------------------------------------- diff -r ea85aeecf72f -r ebdb6a9e0132 mozilla-xulrunner192/mozilla-xulrunner192.spec --- a/mozilla-xulrunner192/mozilla-xulrunner192.spec Wed Sep 21 12:31:47 2011 +0200 +++ b/mozilla-xulrunner192/mozilla-xulrunner192.spec Tue Nov 01 21:59:24 2011 +0100 @@ -39,12 +39,12 @@ BuildRequires: wireless-tools %endif License: MPLv1.1 or GPLv2+ or LGPLv2+ -Version: 1.9.2.23 +Version: 1.9.2.24 Release: 1 -%define releasedate 2011092000 -%define version_internal 1.9.2.23 +%define releasedate 2011110100 +%define version_internal 1.9.2.24 %define apiversion 1.9.2 -%define uaweight 192230 +%define uaweight 192240 Summary: Mozilla Runtime Environment 1.9.2 Url: http://www.mozilla.org Group: Productivity/Other