Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:Factory checked in at Fri Sep 9 11:04:07 CEST 2011.
-------- --- MozillaFirefox/MozillaFirefox.changes 2011-08-13 08:47:54.000000000 +0200 +++ /mounts/work_src_done/STABLE/MozillaFirefox/MozillaFirefox.changes 2011-09-07 18:08:33.000000000 +0200 @@ -1,0 +2,15 @@ +Wed Sep 7 14:30:34 UTC 2011 - [email protected] + +- security update to 6.0.2 (bnc#714931) + * Complete blocking of certificates issued by DigiNotar + (bmo#683449) + +------------------------------------------------------------------- +Fri Sep 2 14:40:07 UTC 2011 - [email protected] + +- security update to 6.0.1 (bnc#714931) + * MFSA 2011-34 + Protection against fraudulent DigiNotar certificates + (bmo#682927) + +------------------------------------------------------------------- @@ -4,2 +19,14 @@ -- update to 6.0 (bnc#711954) - * included security fixes +- update to 6.0 (bnc#712224) + included security fixes MFSA 2011-29 + * CVE-2011-2989/CVE-2011-2991/CVE-2011-2992/CVE-2011-2985 + Miscellaneous memory safety hazards + * CVE-2011-2993 (bmo#657267) + Unsigned scripts can call script inside signed JAR + * CVE-2011-2988 (bmo#665934) + Heap overflow in ANGLE library + * CVE-2011-0084 (bmo#648094) + Crash in SVGTextElement.getCharNumAtPosition() + * CVE-2011-2990 + Credential leakage using Content Security Policy reports + * CVE-2011-2986 (bmo#655836) + Cross-origin data theft using canvas and Windows D2D calling whatdependson for head-i586 Old: ---- firefox-6.0-source.tar.bz2 l10n-6.0.tar.bz2 New: ---- firefox-6.0.2-source.tar.bz2 l10n-6.0.2.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.2Ed8bP/_old 2011-09-09 11:03:58.000000000 +0200 +++ /var/tmp/diff_new_pack.2Ed8bP/_new 2011-09-09 11:03:58.000000000 +0200 @@ -19,7 +19,7 @@ # norootforbuild %define major 6 -%define mainver %major.0 +%define mainver %major.0.2 Name: MozillaFirefox BuildRequires: Mesa-devel autoconf213 fdupes gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python startup-notification-devel unzip update-desktop-files yasm zip @@ -35,7 +35,7 @@ License: MPLv1.1 or GPLv2+ or LGPLv2+ Version: %{mainver} Release: 1 -%define releasedate 2011081200 +%define releasedate 2011090700 Provides: web_browser Provides: firefox = %{version}-%{release} Provides: firefox = %{mainver} ++++++ create-tar.sh ++++++ --- /var/tmp/diff_new_pack.2Ed8bP/_old 2011-09-09 11:03:58.000000000 +0200 +++ /var/tmp/diff_new_pack.2Ed8bP/_new 2011-09-09 11:03:58.000000000 +0200 @@ -1,8 +1,8 @@ #!/bin/bash BRANCH="releases/mozilla-release" -RELEASE_TAG="FIREFOX_6_0_RELEASE" -VERSION="6.0" +RELEASE_TAG="FIREFOX_6_0_2_RELEASE" +VERSION="6.0.2" # mozilla hg clone http://hg.mozilla.org/$BRANCH mozilla ++++++ firefox-6.0-source.tar.bz2 -> firefox-6.0.2-source.tar.bz2 ++++++ MozillaFirefox/firefox-6.0-source.tar.bz2 /mounts/work_src_done/STABLE/MozillaFirefox/firefox-6.0.2-source.tar.bz2 differ: char 11, line 1 ++++++ l10n-6.0.tar.bz2 -> l10n-6.0.2.tar.bz2 ++++++ MozillaFirefox/l10n-6.0.tar.bz2 /mounts/work_src_done/STABLE/MozillaFirefox/l10n-6.0.2.tar.bz2 differ: char 11, line 1 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
