Mercurial Mercurial > hg > mozilla / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
changelogs esr24
authorWolfgang Rosenauer <wr@rosenauer.org>
Wed, 11 Dec 2013 09:48:13 +0100
branchesr24
changeset 690 9291d123ef2b
parent 687 8d64394d1c0c
child 698 8066b2bdabfb
changelogs
MozillaFirefox/MozillaFirefox.changes file | annotate | diff | comparison | revisions
MozillaFirefox/firefox-esr.changes file | annotate | diff | comparison | revisions 
--- a/MozillaFirefox/MozillaFirefox.changes	Sun Dec 08 10:33:13 2013 +0100
+++ b/MozillaFirefox/MozillaFirefox.changes	Wed Dec 11 09:48:13 2013 +0100
@@ -1,8 +1,29 @@
 +-------------------------------------------------------------------
 Sat Dec  7 17:30:18 UTC 2013 - wr@rosenauer.org
 
-- update to Firefox 24.2.0esr (bnc#)
+- update to Firefox 24.2.0esr (bnc#854367, bnc#854370)
   * requires NSPR 4.10.2 and NSS 3.15.3.1 or higher
+  * MFSA 2013-104/CVE-2013-5609/CVE-2013-5610
+    Miscellaneous memory safety hazards
+  * MFSA 2013-108/CVE-2013-5616 (bmo#938341)
+    Use-after-free in event listeners
+  * MFSA 2013-109/CVE-2013-5618 (bmo#926361)
+    Use-after-free during Table Editing
+  * MFSA 2013-111/CVE-2013-6671 (bmo#930281)
+    Segmentation violation when replacing ordered list elements
+  * MFSA 2013-113/CVE-2013-6673 (bmo#970380)
+    Trust settings for built-in roots ignored during EV certificate
+    validation
+  * MFSA 2013-114/CVE-2013-5613 (bmo#930381, bmo#932449)
+    Use-after-free in synthetic mouse movement
+  * MFSA 2013-115/CVE-2013-5615 (bmo#929261)
+    GetElementIC typed array stubs can be generated outside observed
+    typesets
+  * MFSA 2013-116/CVE-2013-6629/CVE-2013-6630 (bmo#891693)
+    JPEG information leak
+  * MFSA 2013-117 (bmo#946351)
+    Mis-issued ANSSI/DCSSI certificate
+    (fixed via NSS 3.15.3.1)
 
 -------------------------------------------------------------------
 Thu Oct 24 16:46:31 UTC 2013 - wr@rosenauer.org
--- a/MozillaFirefox/firefox-esr.changes	Sun Dec 08 10:33:13 2013 +0100
+++ b/MozillaFirefox/firefox-esr.changes	Wed Dec 11 09:48:13 2013 +0100
@@ -1,8 +1,29 @@
 -------------------------------------------------------------------
 Sat Dec  7 17:30:18 UTC 2013 - wr@rosenauer.org
 
-- update to Firefox 24.2.0esr (bnc#)
+- update to Firefox 24.2.0esr (bnc#854367, bnc#854370)
   * requires NSPR 4.10.2 and NSS 3.15.3.1 or higher
+  * MFSA 2013-104/CVE-2013-5609/CVE-2013-5610
+    Miscellaneous memory safety hazards
+  * MFSA 2013-108/CVE-2013-5616 (bmo#938341)
+    Use-after-free in event listeners
+  * MFSA 2013-109/CVE-2013-5618 (bmo#926361)
+    Use-after-free during Table Editing
+  * MFSA 2013-111/CVE-2013-6671 (bmo#930281)
+    Segmentation violation when replacing ordered list elements
+  * MFSA 2013-113/CVE-2013-6673 (bmo#970380)
+    Trust settings for built-in roots ignored during EV certificate
+    validation
+  * MFSA 2013-114/CVE-2013-5613 (bmo#930381, bmo#932449)
+    Use-after-free in synthetic mouse movement
+  * MFSA 2013-115/CVE-2013-5615 (bmo#929261)
+    GetElementIC typed array stubs can be generated outside observed
+    typesets
+  * MFSA 2013-116/CVE-2013-6629/CVE-2013-6630 (bmo#891693)
+    JPEG information leak
+  * MFSA 2013-117 (bmo#946351)
+    Mis-issued ANSSI/DCSSI certificate
+    (fixed via NSS 3.15.3.1)
 
 -------------------------------------------------------------------
 Thu Oct 24 16:46:31 UTC 2013 - wr@rosenauer.org
mozilla