commit patchinfo.1110 for openSUSE:12.1:Update

Wed, 28 Nov 2012 07:35:54 -0800 

Hello community,

here is the log from the commit of package patchinfo.1110 for 
openSUSE:12.1:Update checked in at 2012-11-28 16:35:50
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:12.1:Update/patchinfo.1110 (Old)
 and      /work/SRC/openSUSE:12.1:Update/.patchinfo.1110.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "patchinfo.1110", Maintainer is ""

Changes:
--------
New Changes file:

NO CHANGES FILE!!!

New:
----
  _patchinfo

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo>
  <issue id="790140" tracker="bnc">MozillaFirefox 17.0/10.0.11 security 
release</issue>
  <issue id="CVE-2012-4218" tracker="cve" />
  <issue id="CVE-2012-4213" tracker="cve" />
  <issue id="CVE-2012-4212" tracker="cve" />
  <issue id="CVE-2012-4210" tracker="cve" />
  <issue id="CVE-2012-4217" tracker="cve" />
  <issue id="CVE-2012-4216" tracker="cve" />
  <issue id="CVE-2012-4215" tracker="cve" />
  <issue id="CVE-2012-4214" tracker="cve" />
  <issue id="CVE-2012-5841" tracker="cve" />
  <issue id="CVE-2012-5840" tracker="cve" />
  <issue id="CVE-2012-5843" tracker="cve" />
  <issue id="CVE-2012-5842" tracker="cve" />
  <issue id="CVE-2012-5829" tracker="cve" />
  <issue id="CVE-2012-4204" tracker="cve" />
  <issue id="CVE-2012-4205" tracker="cve" />
  <issue id="CVE-2012-4207" tracker="cve" />
  <issue id="CVE-2012-4201" tracker="cve" />
  <issue id="CVE-2012-4202" tracker="cve" />
  <issue id="CVE-2012-4203" tracker="cve" />
  <issue id="CVE-2012-4208" tracker="cve" />
  <issue id="CVE-2012-4209" tracker="cve" />
  <issue id="CVE-2012-5838" tracker="cve" />
  <issue id="CVE-2012-5839" tracker="cve" />
  <issue id="CVE-2012-5835" tracker="cve" />
  <issue id="CVE-2012-5836" tracker="cve" />
  <issue id="CVE-2012-5837" tracker="cve" />
  <issue id="CVE-2012-5830" tracker="cve" />
  <issue id="CVE-2012-5833" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>wrosenauer</packager>
  <description>
Changes in MozillaFirefox:
- update to Firefox 17.0 (bnc#790140)
  * MFSA 2012-91/CVE-2012-5842/CVE-2012-5843
    Miscellaneous memory safety hazards
  * MFSA 2012-92/CVE-2012-4202 (bmo#758200)
    Buffer overflow while rendering GIF images
  * MFSA 2012-93/CVE-2012-4201 (bmo#747607)
    evalInSanbox location context incorrectly applied
  * MFSA 2012-94/CVE-2012-5836 (bmo#792857)
    Crash when combining SVG text on path with CSS
  * MFSA 2012-95/CVE-2012-4203 (bmo#765628)
    Javascript: URLs run in privileged context on New Tab page
  * MFSA 2012-96/CVE-2012-4204 (bmo#778603)
    Memory corruption in str_unescape
  * MFSA 2012-97/CVE-2012-4205 (bmo#779821)
    XMLHttpRequest inherits incorrect principal within sandbox
  * MFSA 2012-99/CVE-2012-4208 (bmo#798264)
    XrayWrappers exposes chrome-only properties when not in chrome
    compartment
  * MFSA 2012-100/CVE-2012-5841 (bmo#805807)
    Improper security filtering for cross-origin wrappers
  * MFSA 2012-101/CVE-2012-4207 (bmo#801681)
    Improper character decoding in HZ-GB-2312 charset
  * MFSA 2012-102/CVE-2012-5837 (bmo#800363)
    Script entered into Developer Toolbar runs with chrome privileges
  * MFSA 2012-103/CVE-2012-4209 (bmo#792405)
    Frames can shadow top.location
  * MFSA 2012-104/CVE-2012-4210 (bmo#796866)
    CSS and HTML injection through Style Inspector
  * MFSA 2012-105/CVE-2012-4214/CVE-2012-4215/CVE-2012-4216/
    CVE-2012-5829/CVE-2012-5839/CVE-2012-5840/CVE-2012-4212/
    CVE-2012-4213/CVE-2012-4217/CVE-2012-4218
    Use-after-free and buffer overflow issues found using Address
    Sanitizer
  * MFSA 2012-106/CVE-2012-5830/CVE-2012-5833/CVE-2012-5835/CVE-2012-5838
    Use-after-free, buffer overflow, and memory corruption issues
    found using Address Sanitizer
- rebased patches
- disabled WebRTC since build is broken (bmo#776877)

</description>
  <summary>update for MozillaFirefox</summary>
</patchinfo>
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

Reply via email to