Hello community, here is the log from the commit of package seamonkey for openSUSE:Factory checked in at 2013-11-04 08:50:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/seamonkey (Old) and /work/SRC/openSUSE:Factory/.seamonkey.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "seamonkey" Changes: -------- --- /work/SRC/openSUSE:Factory/seamonkey/seamonkey.changes 2013-09-23 11:18:10.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.seamonkey.new/seamonkey.changes 2013-11-04 08:50:46.000000000 +0100 @@ -1,0 +2,29 @@ +Wed Oct 30 18:07:33 UTC 2013 - [email protected] + +- update to SeaMonkey 2.22 (bnc#847708) + * rebased patches + * requires NSS 3.15.2 or higher + * MFSA 2013-93/CVE-2013-5590/CVE-2013-5591/CVE-2013-5592 + Miscellaneous memory safety hazards + * MFSA 2013-94/CVE-2013-5593 (bmo#868327) + Spoofing addressbar through SELECT element + * MFSA 2013-95/CVE-2013-5604 (bmo#914017) + Access violation with XSLT and uninitialized data + * MFSA 2013-96/CVE-2013-5595 (bmo#916580) + Improperly initialized memory and overflows in some JavaScript + functions + * MFSA 2013-97/CVE-2013-5596 (bmo#910881) + Writing to cycle collected object during image decoding + * MFSA 2013-98/CVE-2013-5597 (bmo#918864) + Use-after-free when updating offline cache + * MFSA 2013-99/CVE-2013-5598 (bmo#920515) + Security bypass of PDF.js checks using iframes + * MFSA 2013-100/CVE-2013-5599/CVE-2013-5600/CVE-2013-5601 + (bmo#915210, bmo#915576, bmo#916685) + Miscellaneous use-after-free issues found through ASAN fuzzing + * MFSA 2013-101/CVE-2013-5602 (bmo#897678) + Memory corruption in workers + * MFSA 2013-102/CVE-2013-5603 (bmo#916404) + Use-after-free in HTML document templates + +------------------------------------------------------------------- Old: ---- l10n-2.21.tar.bz2 seamonkey-2.21-source.tar.bz2 New: ---- l10n-2.22.tar.bz2 seamonkey-2.22-source.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ seamonkey.spec ++++++ --- /var/tmp/diff_new_pack.cjW2vo/_old 2013-11-04 08:50:51.000000000 +0100 +++ /var/tmp/diff_new_pack.cjW2vo/_new 2013-11-04 08:50:51.000000000 +0100 @@ -54,9 +54,9 @@ %endif Provides: web_browser Provides: browser(npapi) -Version: 2.21 +Version: 2.22 Release: 0 -%define releasedate 2013091600 +%define releasedate 2013102900 Summary: The successor of the Mozilla Application Suite License: MPL-2.0 Group: Productivity/Networking/Web/Browsers @@ -104,7 +104,7 @@ # so using %opensuse_bs is secure for now BuildRequires: mozilla-nspr-devel PreReq: mozilla-nspr >= %(rpm -q --queryformat '%{VERSION}' mozilla-nspr) -BuildRequires: mozilla-nss-devel >= 3.15.1 +BuildRequires: mozilla-nss-devel >= 3.15.2 PreReq: mozilla-nss >= %(rpm -q --queryformat '%{VERSION}' mozilla-nss) %description ++++++ _constraints ++++++ --- /var/tmp/diff_new_pack.cjW2vo/_old 2013-11-04 08:50:51.000000000 +0100 +++ /var/tmp/diff_new_pack.cjW2vo/_new 2013-11-04 08:50:51.000000000 +0100 @@ -5,7 +5,7 @@ <size unit="G">9</size> </disk> <memory> - <size unit="M">3500</size> + <size unit="M">3800</size> </memory> </hardware> </constraints> ++++++ compare-locales.tar.bz2 ++++++ ++++++ create-tar.sh ++++++ --- /var/tmp/diff_new_pack.cjW2vo/_old 2013-11-04 08:50:51.000000000 +0100 +++ /var/tmp/diff_new_pack.cjW2vo/_new 2013-11-04 08:50:51.000000000 +0100 @@ -2,8 +2,8 @@ CHANNEL="release" BRANCH="releases/comm-$CHANNEL" -RELEASE_TAG="SEAMONKEY_2_21_RELEASE" -VERSION="2.21" +RELEASE_TAG="SEAMONKEY_2_22_RELEASE" +VERSION="2.22" echo "cloning $BRANCH..." hg clone http://hg.mozilla.org/$BRANCH seamonkey ++++++ l10n-2.21.tar.bz2 -> l10n-2.22.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/seamonkey/l10n-2.21.tar.bz2 /work/SRC/openSUSE:Factory/.seamonkey.new/l10n-2.22.tar.bz2 differ: char 11, line 1 ++++++ mozilla-ppc.patch ++++++ --- /var/tmp/diff_new_pack.cjW2vo/_old 2013-11-04 08:50:51.000000000 +0100 +++ /var/tmp/diff_new_pack.cjW2vo/_new 2013-11-04 08:50:51.000000000 +0100 @@ -2,7 +2,6 @@ # Parent 21d0e194954e451f0f1935d0ed68ee9eae432ddf # User Wolfgang Rosenauer <[email protected]> Bug 746112 - RegExp hang on ppc64 in execute. -Bug 750620 - Make double-conversion portable to exotic architectures. TM: mozilla15 diff --git a/js/src/yarr/YarrInterpreter.h b/js/src/yarr/YarrInterpreter.h --- a/js/src/yarr/YarrInterpreter.h @@ -89,25 +88,3 @@ /* * VM page size. It must divide the runtime CPU page size or the code * will abort. -diff --git a/mfbt/double-conversion/utils.h b/mfbt/double-conversion/utils.h ---- a/mfbt/double-conversion/utils.h -+++ b/mfbt/double-conversion/utils.h -@@ -50,17 +50,17 @@ - // the result is equal to 89255e-22. - // The best way to test this, is to create a division-function and to compare - // the output of the division with the expected result. (Inlining must be - // disabled.) - // On Linux,x86 89255e-22 != Div_double(89255.0/1e22) - #if defined(_M_X64) || defined(__x86_64__) || \ - defined(__ARMEL__) || defined(__avr32__) || \ - defined(__hppa__) || defined(__ia64__) || \ -- defined(__mips__) || defined(__powerpc__) || \ -+ defined(__mips__) || defined(__powerpc__) || defined(__powerpc64__) || \ - defined(__sparc__) || defined(__sparc) || defined(__s390__) || \ - defined(__SH4__) || defined(__alpha__) || \ - defined(_MIPS_ARCH_MIPS32R2) - #define DOUBLE_CONVERSION_CORRECT_DOUBLE_OPERATIONS 1 - #elif defined(_M_IX86) || defined(__i386__) || defined(__i386) - #if defined(_WIN32) - // Windows uses a 64bit wide floating point stack. - #define DOUBLE_CONVERSION_CORRECT_DOUBLE_OPERATIONS 1 ++++++ mozilla-shared-nss-db.patch ++++++ --- /var/tmp/diff_new_pack.cjW2vo/_old 2013-11-04 08:50:51.000000000 +0100 +++ /var/tmp/diff_new_pack.cjW2vo/_new 2013-11-04 08:50:51.000000000 +0100 @@ -7,7 +7,7 @@ diff --git a/configure.in b/configure.in --- a/configure.in +++ b/configure.in -@@ -8330,16 +8330,31 @@ AC_SUBST(QCMS_LIBS) +@@ -8289,16 +8289,31 @@ AC_SUBST(QCMS_LIBS) dnl ======================================================== dnl HarfBuzz @@ -83,7 +83,7 @@ #include "nsComponentManagerUtils.h" #include "nsDirectoryServiceDefs.h" #include "nsICertOverrideService.h" -@@ -1132,18 +1139,34 @@ nsNSSComponent::InitializeNSS(bool showW +@@ -1144,18 +1151,34 @@ nsNSSComponent::InitializeNSS(bool showW ConfigureInternalPKCS11Token(); // The NSS_INIT_NOROOTINIT flag turns off the loading of the root certs @@ -96,7 +96,7 @@ - SECMOD_DB, init_flags); + SECStatus init_rv = SECFailure; +#ifdef MOZ_ENABLE_NSSHELPER -+ if (PR_GetEnv("MOZ_XRE_NO_NSSHELPER")) { ++ if (PR_GetEnv("MOZ_SM_NO_NSSHELPER")) { + init_rv = ::NSS_Initialize(profileStr.get(), "", "", + SECMOD_DB, init_flags); + } else { @@ -123,15 +123,15 @@ diff --git a/toolkit/library/Makefile.in b/toolkit/library/Makefile.in --- a/toolkit/library/Makefile.in +++ b/toolkit/library/Makefile.in -@@ -490,17 +490,17 @@ EXTRA_DSO_LDOPTS += -INCREMENTAL:NO +@@ -490,17 +490,17 @@ ifneq (,$(or $(filter 1400,$(_MSC_VER)), + ifdef MOZ_DEBUG + EXTRA_DSO_LDOPTS += -INCREMENTAL:NO endif endif endif EXTRA_DSO_LDOPTS += $(LIBS_DIR) - DEFINES += -DIMPL_XREAPI - -EXTRA_DSO_LDOPTS += $(NSPR_LIBS) $(MOZALLOC_LIB) +EXTRA_DSO_LDOPTS += $(NSPR_LIBS) $(MOZALLOC_LIB) $(NSSHELPER_LIBS) ++++++ mozilla-sle11.patch ++++++ --- /var/tmp/diff_new_pack.cjW2vo/_old 2013-11-04 08:50:51.000000000 +0100 +++ /var/tmp/diff_new_pack.cjW2vo/_new 2013-11-04 08:50:51.000000000 +0100 @@ -2,9 +2,9 @@ References: https://bugzilla.mozilla.org/show_bug.cgi?id=513422 -diff --git a/xpcom/glue/SSE.cpp b/xpcom/glue/SSE.cpp ---- a/xpcom/glue/SSE.cpp -+++ b/xpcom/glue/SSE.cpp +diff --git a/mozglue/build/SSE.cpp b/mozglue/build/SSE.cpp +--- a/mozglue/build/SSE.cpp ++++ b/mozglue/build/SSE.cpp @@ -12,26 +12,77 @@ namespace { // SSE.h has parallel #ifs which declare MOZILLA_SSE_HAVE_CPUID_DETECTION. // We can't declare these functions in the header file, however, because ++++++ seamonkey-2.21-source.tar.bz2 -> seamonkey-2.22-source.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/seamonkey/seamonkey-2.21-source.tar.bz2 /work/SRC/openSUSE:Factory/.seamonkey.new/seamonkey-2.22-source.tar.bz2 differ: char 11, line 1 -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
