Mercurial Mercurial > hg > mozilla / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
changelog update with security information mozilla-1.9.2
authorWolfgang Rosenauer <wr@rosenauer.org>
Wed, 17 Aug 2011 23:18:44 +0200
branchmozilla-1.9.2
changeset 304 162e98678b05
parent 303 59ef72e1c40e
child 308 a5cece1da91f
changelog update with security information
MozillaFirefox/MozillaFirefox.changes file | annotate | diff | comparison | revisions 
--- a/MozillaFirefox/MozillaFirefox.changes	Wed Aug 17 23:17:42 2011 +0200
+++ b/MozillaFirefox/MozillaFirefox.changes	Wed Aug 17 23:18:44 2011 +0200
@@ -1,7 +1,20 @@
 -------------------------------------------------------------------
 Fri Aug  5 09:37:39 UTC 2011 - wr@rosenauer.org
 
-- security update to 3.6.20
+- security update to 3.6.20 (bnc#712224)
+  fixed security issues MFSA 2011-30
+  * CVE-2011-2982
+    Miscellaneous memory safety hazards
+  * CVE-2011-0084 (bmo#648094)
+    Crash in SVGTextElement.getCharNumAtPosition()
+  * CVE-2011-2981
+    Privilege escalation using event handlers
+  * CVE-2011-2378 (bmo#572129)
+    Privilege escalation dropping a tab element in content area
+  * CVE-2011-2980 (bmo#642469)
+    Binary planting vulnerability in ThinkPadSensor::Startup
+  * CVE-2011-2983 (bmo#626297)
+    Private data leakage using RegExp.input
 
 -------------------------------------------------------------------
 Tue Jun 14 09:54:04 UTC 2011 - wr@rosenauer.org
mozilla