Hello community,
here is the log from the commit of package MozillaThunderbird for
openSUSE:Factory checked in at 2013-06-26 20:24:48
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaThunderbird (Old)
and /work/SRC/openSUSE:Factory/.MozillaThunderbird.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaThunderbird"
Changes:
--------
--- /work/SRC/openSUSE:Factory/MozillaThunderbird/MozillaThunderbird.changes
2013-06-07 10:05:17.000000000 +0200
+++
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new/MozillaThunderbird.changes
2013-06-26 20:24:50.000000000 +0200
@@ -1,0 +2,22 @@
+Mon Jun 24 10:17:22 UTC 2013 - [email protected]
+
+- update to Thunderbird 17.0.7 (bnc#825935)
+ * MFSA 2013-49/CVE-2013-1682
+ Miscellaneous memory safety hazards
+ * MFSA 2013-50/CVE-2013-1684/CVE-2013-1685/CVE-2013-1686
+ Memory corruption found using Address Sanitizer
+ * MFSA 2013-51/CVE-2013-1687 (bmo#863933, bmo#866823)
+ Privileged content access and execution via XBL
+ * MFSA 2013-53/CVE-2013-1690 (bmo#857883)
+ Execution of unmapped memory through onreadystatechange event
+ * MFSA 2013-54/CVE-2013-1692 (bmo#866915)
+ Data in the body of XHR HEAD requests leads to CSRF attacks
+ * MFSA 2013-55/CVE-2013-1693 (bmo#711043)
+ SVG filters can lead to information disclosure
+ * MFSA 2013-56/CVE-2013-1694 (bmo#848535)
+ PreserveWrapper has inconsistent behavior
+ * MFSA 2013-59/CVE-2013-1697 (bmo#858101)
+ XrayWrappers can be bypassed to run user defined methods in a
+ privileged context
+
+-------------------------------------------------------------------
Old:
----
l10n-17.0.6.tar.bz2
thunderbird-17.0.6-source.tar.bz2
New:
----
l10n-17.0.7.tar.bz2
thunderbird-17.0.7-source.tar.bz2
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ MozillaThunderbird.spec ++++++
--- /var/tmp/diff_new_pack.JteZY9/_old 2013-06-26 20:25:06.000000000 +0200
+++ /var/tmp/diff_new_pack.JteZY9/_new 2013-06-26 20:25:06.000000000 +0200
@@ -40,11 +40,11 @@
BuildRequires: xorg-x11-libXt-devel
BuildRequires: yasm
BuildRequires: zip
-%define mainversion 17.0.6
+%define mainversion 17.0.7
%define update_channel release
Version: %{mainversion}
Release: 0
-%define releasedate 2013051000
+%define releasedate 2013062000
Provides: thunderbird = %{version}
%if %{with_kde}
# this is needed to match this package with the kde4 helper package without
the main package
++++++ compare-locales.tar.bz2 ++++++
++++++ create-tar.sh ++++++
--- /var/tmp/diff_new_pack.JteZY9/_old 2013-06-26 20:25:06.000000000 +0200
+++ /var/tmp/diff_new_pack.JteZY9/_new 2013-06-26 20:25:06.000000000 +0200
@@ -2,8 +2,8 @@
CHANNEL="esr17"
BRANCH="releases/comm-$CHANNEL"
-RELEASE_TAG="THUNDERBIRD_17_0_6_RELEASE"
-VERSION="17.0.6"
+RELEASE_TAG="THUNDERBIRD_17_0_7_RELEASE"
+VERSION="17.0.7"
echo "cloning $BRANCH..."
hg clone http://hg.mozilla.org/$BRANCH thunderbird
++++++ l10n-17.0.6.tar.bz2 -> l10n-17.0.7.tar.bz2 ++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/l10n-17.0.6.tar.bz2
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new/l10n-17.0.7.tar.bz2 differ:
char 11, line 1
++++++ thunderbird-17.0.6-source.tar.bz2 -> thunderbird-17.0.7-source.tar.bz2
++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/thunderbird-17.0.6-source.tar.bz2
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new/thunderbird-17.0.7-source.tar.bz2
differ: char 11, line 1
--
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
