Hello community, here is the log from the commit of package MozillaFirefox for openSUSE:11.3 checked in at Wed Nov 9 22:08:29 CET 2011.
-------- --- old-versions/11.3/UPDATES/all/MozillaFirefox/MozillaFirefox.changes 2011-09-28 07:09:49.000000000 +0200 +++ 11.3/MozillaFirefox/MozillaFirefox.changes 2011-11-09 09:21:25.000000000 +0100 @@ -1,0 +2,11 @@ +Tue Nov 1 20:58:48 UTC 2011 - [email protected] + +- security update to 3.6.24 (bnc#728520) + * MFSA 2011-46/CVE-2011-3647 (bmo#680880) + loadSubScript unwraps XPCNativeWrapper scope parameter + * MFSA 2011-47/CVE-2011-3648 (bmo#690225) + Potential XSS against sites using Shift-JIS + * MFSA 2011-49/CVE-2011-3650 (bmo#674776) + Memory corruption while profiling using Firebug + +------------------------------------------------------------------- @@ -4,0 +16,10 @@ + * MFSA 2011-36/CVE-2011-2996 (bmo#555018) + Miscellaneous memory safety hazards + * MFSA 2011-37/CVE-2011-2998 (bmo#684815) + Integer underflow when using JavaScript RegExp + * MFSA 2011-38/CVE-2011-2999 (bmo#665548) + XSS via plugins and shadowed window.location object + * MFSA 2011-39/CVE-2011-3000 (bmo#655389) + Defense against multiple Location headers due to CRLF Injection + * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 + Code installation through holding down Enter calling whatdependson for 11.3-i586 Old: ---- firefox-3.6.23-source.tar.bz2 l10n-3.6.23.tar.bz2 New: ---- firefox-3.6.24-source.tar.bz2 l10n-3.6.24.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaFirefox.spec ++++++ --- /var/tmp/diff_new_pack.mupAUI/_old 2011-11-09 22:05:49.000000000 +0100 +++ /var/tmp/diff_new_pack.mupAUI/_new 2011-11-09 22:05:49.000000000 +0100 @@ -24,7 +24,7 @@ Name: MozillaFirefox %define xulrunner mozilla-xulrunner192 BuildRequires: autoconf213 gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python unzip update-desktop-files zip -BuildRequires: %{xulrunner}-devel = 1.9.2.23 +BuildRequires: %{xulrunner}-devel = 1.9.2.24 %if %suse_version > 1020 BuildRequires: fdupes %endif @@ -34,13 +34,13 @@ BuildRequires: wireless-tools %endif License: MPLv1.1 or GPLv2+ or LGPLv2+ -Version: %mainver.23 +Version: %mainver.24 Release: 0.<RELEASE2> Provides: web_browser Provides: firefox = %{mainver} Provides: firefox = %{version}-%{release} Provides: firefox = %{version} -%define releasedate 2011092000 +%define releasedate 2011110100 Summary: Mozilla Firefox Web Browser Url: http://www.mozilla.org/ Group: Productivity/Networking/Web/Browsers ++++++ firefox-3.6.23-source.tar.bz2 -> firefox-3.6.24-source.tar.bz2 ++++++ old-versions/11.3/UPDATES/all/MozillaFirefox/firefox-3.6.23-source.tar.bz2 11.3/MozillaFirefox/firefox-3.6.24-source.tar.bz2 differ: char 11, line 1 ++++++ l10n-3.6.23.tar.bz2 -> l10n-3.6.24.tar.bz2 ++++++ old-versions/11.3/UPDATES/all/MozillaFirefox/l10n-3.6.23.tar.bz2 11.3/MozillaFirefox/l10n-3.6.24.tar.bz2 differ: char 11, line 1 continue with "q"... Remember to have fun... -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
