Hello community, here is the log from the commit of package mozilla-xulrunner192 for openSUSE:Factory checked in at 2011-11-10 15:58:05 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mozilla-xulrunner192 (Old) and /work/SRC/openSUSE:Factory/.mozilla-xulrunner192.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mozilla-xulrunner192", Maintainer is "[email protected]" Changes: -------- --- /work/SRC/openSUSE:Factory/mozilla-xulrunner192/mozilla-xulrunner192.changes 2011-09-28 15:29:40.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.mozilla-xulrunner192.new/mozilla-xulrunner192.changes 2011-11-10 15:58:09.000000000 +0100 @@ -1,0 +2,11 @@ +Tue Nov 1 20:53:16 UTC 2011 - [email protected] + +- security update to 1.9.2.24 (bnc#728520) + * MFSA 2011-46/CVE-2011-3647 (bmo#680880) + loadSubScript unwraps XPCNativeWrapper scope parameter + * MFSA 2011-47/CVE-2011-3648 (bmo#690225) + Potential XSS against sites using Shift-JIS + * MFSA 2011-49/CVE-2011-3650 (bmo#674776) + Memory corruption while profiling using Firebug + +------------------------------------------------------------------- @@ -4,0 +16,10 @@ + * MFSA 2011-36/CVE-2011-2996 (bmo#555018) + Miscellaneous memory safety hazards + * MFSA 2011-37/CVE-2011-2998 (bmo#684815) + Integer underflow when using JavaScript RegExp + * MFSA 2011-38/CVE-2011-2999 (bmo#665548) + XSS via plugins and shadowed window.location object + * MFSA 2011-39/CVE-2011-3000 (bmo#655389) + Defense against multiple Location headers due to CRLF Injection + * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 + Code installation through holding down Enter Old: ---- l10n-1.9.2.23.tar.bz2 xulrunner-source-1.9.2.23.tar.bz2 New: ---- l10n-1.9.2.24.tar.bz2 xulrunner-source-1.9.2.24.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mozilla-xulrunner192.spec ++++++ --- /var/tmp/diff_new_pack.Xv4mu7/_old 2011-11-10 15:58:18.000000000 +0100 +++ /var/tmp/diff_new_pack.Xv4mu7/_new 2011-11-10 15:58:18.000000000 +0100 @@ -39,12 +39,12 @@ BuildRequires: wireless-tools %endif License: MPLv1.1 or GPLv2+ or LGPLv2+ -Version: 1.9.2.23 +Version: 1.9.2.24 Release: 1 -%define releasedate 2011092000 -%define version_internal 1.9.2.23 +%define releasedate 2011110100 +%define version_internal 1.9.2.24 %define apiversion 1.9.2 -%define uaweight 192230 +%define uaweight 192240 Summary: Mozilla Runtime Environment 1.9.2 Url: http://www.mozilla.org Group: Productivity/Other ++++++ create-tar.sh ++++++ --- /var/tmp/diff_new_pack.Xv4mu7/_old 2011-11-10 15:58:18.000000000 +0100 +++ /var/tmp/diff_new_pack.Xv4mu7/_new 2011-11-10 15:58:18.000000000 +0100 @@ -1,7 +1,7 @@ #!/bin/bash -RELEASE_TAG="FIREFOX_3_6_23_RELEASE" -VERSION="1.9.2.23" +RELEASE_TAG="FIREFOX_3_6_24_RELEASE" +VERSION="1.9.2.24" # mozilla hg clone http://hg.mozilla.org/releases/mozilla-1.9.2 mozilla ++++++ l10n-1.9.2.23.tar.bz2 -> l10n-1.9.2.24.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/mozilla-xulrunner192/l10n-1.9.2.23.tar.bz2 /work/SRC/openSUSE:Factory/.mozilla-xulrunner192.new/l10n-1.9.2.24.tar.bz2 differ: char 11, line 1 ++++++ xulrunner-source-1.9.2.23.tar.bz2 -> xulrunner-source-1.9.2.24.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/mozilla-xulrunner192/xulrunner-source-1.9.2.23.tar.bz2 /work/SRC/openSUSE:Factory/.mozilla-xulrunner192.new/xulrunner-source-1.9.2.24.tar.bz2 differ: char 11, line 1 -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
