Mercurial Mercurial > hg > mozilla / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
1.9.2.24/3.6.24 mozilla-1.9.2
authorWolfgang Rosenauer <wr@rosenauer.org>
Tue, 01 Nov 2011 21:59:24 +0100
branchmozilla-1.9.2
changeset 348 ebdb6a9e0132
parent 331 ea85aeecf72f
child 362 92e81e89dc95
1.9.2.24/3.6.24
MozillaFirefox/MozillaFirefox.changes file | annotate | diff | comparison | revisions
MozillaFirefox/MozillaFirefox.spec file | annotate | diff | comparison | revisions
mozilla-xulrunner192/create-tar.sh file | annotate | diff | comparison | revisions
mozilla-xulrunner192/mozilla-xulrunner192.changes file | annotate | diff | comparison | revisions
mozilla-xulrunner192/mozilla-xulrunner192.spec file | annotate | diff | comparison | revisions 
--- a/MozillaFirefox/MozillaFirefox.changes	Wed Sep 21 12:31:47 2011 +0200
+++ b/MozillaFirefox/MozillaFirefox.changes	Tue Nov 01 21:59:24 2011 +0100
@@ -1,7 +1,22 @@
+-------------------------------------------------------------------
+Tue Nov  1 20:58:48 UTC 2011 - wr@rosenauer.org
+
+- security update to 3.6.24
+
 -------------------------------------------------------------------
 Wed Sep 21 10:20:43 UTC 2011 - wr@rosenauer.org
 
-- security update to 3.6.23
+- security update to 3.6.23 (bnc#720264)
+  * MFSA 2011-36/CVE-2011-2996 (bmo#555018)
+    Miscellaneous memory safety hazards
+  * MFSA 2011-37/CVE-2011-2998 (bmo#684815)
+    Integer underflow when using JavaScript RegExp
+  * MFSA 2011-38/CVE-2011-2999 (bmo#665548)
+    XSS via plugins and shadowed window.location object
+  * MFSA 2011-39/CVE-2011-3000 (bmo#655389)
+    Defense against multiple Location headers due to CRLF Injection
+  * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001
+    Code installation through holding down Enter
 
 -------------------------------------------------------------------
 Wed Sep  7 14:30:34 UTC 2011 - pcerny@suse.com
--- a/MozillaFirefox/MozillaFirefox.spec	Wed Sep 21 12:31:47 2011 +0200
+++ b/MozillaFirefox/MozillaFirefox.spec	Tue Nov 01 21:59:24 2011 +0100
@@ -24,7 +24,7 @@
 Name:           MozillaFirefox
 %define xulrunner mozilla-xulrunner192
 BuildRequires:  autoconf213 gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python unzip update-desktop-files zip
-BuildRequires:  %{xulrunner}-devel = 1.9.2.23
+BuildRequires:  %{xulrunner}-devel = 1.9.2.24
 %if %suse_version > 1020
 BuildRequires:  fdupes
 %endif
@@ -34,13 +34,13 @@
 BuildRequires:  wireless-tools
 %endif
 License:        MPLv1.1 or GPLv2+ or LGPLv2+
-Version:        %mainver.23
+Version:        %mainver.24
 Release:        1
 Provides:       web_browser
 Provides:       firefox = %{mainver}
 Provides:       firefox = %{version}-%{release}
 Provides:       firefox = %{version}
-%define         releasedate 2011092000
+%define         releasedate 2011110100
 Summary:        Mozilla Firefox Web Browser
 Url:            http://www.mozilla.org/
 Group:          Productivity/Networking/Web/Browsers
--- a/mozilla-xulrunner192/create-tar.sh	Wed Sep 21 12:31:47 2011 +0200
+++ b/mozilla-xulrunner192/create-tar.sh	Tue Nov 01 21:59:24 2011 +0100
@@ -1,7 +1,7 @@
 #!/bin/bash
 
-RELEASE_TAG="FIREFOX_3_6_23_RELEASE"
-VERSION="1.9.2.23"
+RELEASE_TAG="FIREFOX_3_6_24_RELEASE"
+VERSION="1.9.2.24"
 
 # mozilla
 hg clone http://hg.mozilla.org/releases/mozilla-1.9.2 mozilla
--- a/mozilla-xulrunner192/mozilla-xulrunner192.changes	Wed Sep 21 12:31:47 2011 +0200
+++ b/mozilla-xulrunner192/mozilla-xulrunner192.changes	Tue Nov 01 21:59:24 2011 +0100
@@ -1,7 +1,22 @@
+-------------------------------------------------------------------
+Tue Nov  1 20:53:16 UTC 2011 - wr@rosenauer.org
+
+- security update to 1.9.2.24
+
 -------------------------------------------------------------------
 Wed Sep 21 10:17:09 UTC 2011 - wr@rosenauer.org
 
-- security update to 1.9.2.23
+- security update to 1.9.2.23 (bnc#720264)
+  * MFSA 2011-36/CVE-2011-2996 (bmo#555018)
+    Miscellaneous memory safety hazards
+  * MFSA 2011-37/CVE-2011-2998 (bmo#684815)
+    Integer underflow when using JavaScript RegExp
+  * MFSA 2011-38/CVE-2011-2999 (bmo#665548)
+    XSS via plugins and shadowed window.location object
+  * MFSA 2011-39/CVE-2011-3000 (bmo#655389)
+    Defense against multiple Location headers due to CRLF Injection
+  * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001
+    Code installation through holding down Enter
 - bring KDE's dialog.xml in sync with original widget
 
 -------------------------------------------------------------------
--- a/mozilla-xulrunner192/mozilla-xulrunner192.spec	Wed Sep 21 12:31:47 2011 +0200
+++ b/mozilla-xulrunner192/mozilla-xulrunner192.spec	Tue Nov 01 21:59:24 2011 +0100
@@ -39,12 +39,12 @@
 BuildRequires:  wireless-tools
 %endif
 License:        MPLv1.1 or GPLv2+ or LGPLv2+
-Version:        1.9.2.23
+Version:        1.9.2.24
 Release:        1
-%define         releasedate 2011092000
-%define         version_internal 1.9.2.23
+%define         releasedate 2011110100
+%define         version_internal 1.9.2.24
 %define         apiversion 1.9.2
-%define         uaweight 192230
+%define         uaweight 192240
 Summary:        Mozilla Runtime Environment 1.9.2
 Url:            http://www.mozilla.org
 Group:          Productivity/Other
mozilla