--- a/MozillaFirefox/MozillaFirefox.changes Tue Jan 31 13:39:51 2012 +0100
+++ b/MozillaFirefox/MozillaFirefox.changes Fri Feb 03 19:32:54 2012 +0100
@@ -1,7 +1,26 @@
-------------------------------------------------------------------
Mon Jan 30 09:41:59 UTC 2012 - wr@rosenauer.org
-- update to Firefox 10.0
+- update to Firefox 10.0 (bnc#744275)
+ * MFSA 2012-01/CVE-2012-0442/CVE-2012-0443
+ Miscellaneous memory safety hazards
+ * MFSA 2012-03/CVE-2012-0445 (bmo#701071)
+ <iframe> element exposed across domains via name attribute
+ * MFSA 2012-04/CVE-2011-3659 (bmo#708198)
+ Child nodes from nsDOMAttribute still accessible after removal
+ of nodes
+ * MFSA 2012-05/CVE-2012-0446 (bmo#705651)
+ Frame scripts calling into untrusted objects bypass security
+ checks
+ * MFSA 2012-06/CVE-2012-0447 (bmo#710079)
+ Uninitialized memory appended when encoding icon images may
+ cause information disclosure
+ * MFSA 2012-07/CVE-2012-0444 (bmo#719612)
+ Potential Memory Corruption When Decoding Ogg Vorbis files
+ * MFSA 2012-08/CVE-2012-0449 (bmo#701806, bmo#702466)
+ Crash with malformed embedded XSLT stylesheets
+- KDE integration has been disabled since it needs refactoring
+- removed obsolete ppc64 patch
-------------------------------------------------------------------
Sun Jan 22 12:08:07 UTC 2012 - joop.boonen@opensuse.org
--- a/MozillaFirefox/MozillaFirefox.spec Tue Jan 31 13:39:51 2012 +0100
+++ b/MozillaFirefox/MozillaFirefox.spec Fri Feb 03 19:32:54 2012 +0100
@@ -16,6 +16,7 @@
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
+
%define major 10
%define mainver %major.0
@@ -45,7 +46,7 @@
BuildRequires: mozilla-nss-devel >= 3.13.1
BuildRequires: nss-shared-helper-devel
Version: %{mainver}
-Release: 2
+Release: 0
%define releasedate 2012012900
Provides: web_browser
Provides: firefox = %{version}-%{release}
--- a/xulrunner/xulrunner.changes Tue Jan 31 13:39:51 2012 +0100
+++ b/xulrunner/xulrunner.changes Fri Feb 03 19:32:54 2012 +0100
@@ -1,7 +1,26 @@
-------------------------------------------------------------------
Mon Jan 30 09:43:21 UTC 2012 - wr@rosenauer.org
-- update to version 10.0
+- update to version 10.0 (bnc#744275)
+ * MFSA 2012-01/CVE-2012-0442/CVE-2012-0443
+ Miscellaneous memory safety hazards
+ * MFSA 2012-03/CVE-2012-0445 (bmo#701071)
+ <iframe> element exposed across domains via name attribute
+ * MFSA 2012-04/CVE-2011-3659 (bmo#708198)
+ Child nodes from nsDOMAttribute still accessible after removal
+ of nodes
+ * MFSA 2012-05/CVE-2012-0446 (bmo#705651)
+ Frame scripts calling into untrusted objects bypass security
+ checks
+ * MFSA 2012-06/CVE-2012-0447 (bmo#710079)
+ Uninitialized memory appended when encoding icon images may
+ cause information disclosure
+ * MFSA 2012-07/CVE-2012-0444 (bmo#719612)
+ Potential Memory Corruption When Decoding Ogg Vorbis files
+ * MFSA 2012-08/CVE-2012-0449 (bmo#701806, bmo#702466)
+ Crash with malformed embedded XSLT stylesheets
+- removed obsolete ppc64 patch
+- disable neon for ARM as it doesn't build correctly
-------------------------------------------------------------------
Fri Dec 23 17:02:01 UTC 2011 - wr@rosenauer.org
--- a/xulrunner/xulrunner.spec Tue Jan 31 13:39:51 2012 +0100
+++ b/xulrunner/xulrunner.spec Fri Feb 03 19:32:54 2012 +0100
@@ -16,6 +16,7 @@
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
+
Name: xulrunner
BuildRequires: Mesa-devel
BuildRequires: autoconf213
@@ -64,6 +65,7 @@
Source5: add-plugins.sh.in
Source6: create-tar.sh
Source7: baselibs.conf
+Source8: source-stamp.txt
Source9: compare-locales.tar.bz2
Patch1: toolkit-download-folder.patch
Patch2: mozilla-pkgconfig.patch