Revisions of MozillaFirefox

Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 109318 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 14)
- security update to 3.6.28 (bnc#750044)
  * MFSA 2011-55/CVE-2011-3658 (bmo#708186)
    nsSVGValue out-of-bounds access
  * MFSA 2012-13/CVE-2012-0455 (bmo#704354)
    XSS with Drag and Drop and Javascript: URL
  * MFSA 2012-14/CVE-2012-0456/CVE-2012-0457 (bmo#711653, #720103)
    SVG issues found with Address Sanitizer
  * MFSA 2012-16/CVE-2012-0458
    Escalation of privilege with Javascript: URL as home page
  * MFSA 2012-19/CVE-2012-0461/CVE-2012-0462/CVE-2012-0464/
    CVE-2012-0463
    Miscellaneous memory safety hazards
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 105522 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 13)
- security update to 3.6.27 (bnc#747328)
  * CVE-2011-3026 (bmo#727401)
    libpng: integer overflow leading to heap-buffer overflow
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 102563 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 12)
- security update to 3.6.26 (bnc#744275)
  * MFSA 2012-01/CVE-2012-0442/CVE-2012-0443
    Miscellaneous memory safety hazards
  * MFSA 2012-02/CVE-2011-3670 (bmo#504014)
  * MFSA 2012-04/CVE-2011-3659 (bmo#708198)
    Child nodes from nsDOMAttribute still accessible after removal
    of nodes
  * MFSA 2012-07/CVE-2012-0444 (bmo#719612)
    Potential Memory Corruption When Decoding Ogg Vorbis files
  * MFSA 2012-08/CVE-2012-0449 (bmo#701806, bmo#702466)
    Crash with malformed embedded XSLT stylesheets
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 97474 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 11)
- security update to 3.6.25 (bnc#737533)
  * MFSA 2011-59/CVE-2011-3666 (bmo#704622)
    .jar not treated as executable in Firefox 3.6 on Mac
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 90891 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 10)
- security update to 3.6.24 (bnc#728520)
  * MFSA 2011-46/CVE-2011-3647 (bmo#680880)
    loadSubScript unwraps XPCNativeWrapper scope parameter
  * MFSA 2011-47/CVE-2011-3648 (bmo#690225)
    Potential XSS against sites using Shift-JIS
  * MFSA 2011-49/CVE-2011-3650 (bmo#674776)
    Memory corruption while profiling using Firebug

  * MFSA 2011-36/CVE-2011-2996 (bmo#555018)
    Miscellaneous memory safety hazards
  * MFSA 2011-37/CVE-2011-2998 (bmo#684815)
    Integer underflow when using JavaScript RegExp
  * MFSA 2011-38/CVE-2011-2999 (bmo#665548)
    XSS via plugins and shadowed window.location object
  * MFSA 2011-39/CVE-2011-3000 (bmo#655389)
    Defense against multiple Location headers due to CRLF Injection
  * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001
    Code installation through holding down Enter
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 85443 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 9)
- security update to 3.6.23 (bnc#720264)
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 81795 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 8)
- security update to 3.6.22 (bnc#714931)
  * Complete blocking of certificates issued by DigiNotar
    (bmo#683449)

- security update to 3.6.21 (bnc#714931)
  * MFSA 2011-34
    Protection against fraudulent DigiNotar certificates
    (bmo#682927)
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) committed (revision 1)
osc copypac from project:openSUSE:Evergreen:11.1:Test package:MozillaFirefox revision:2
Displaying all 14 revisions
openSUSE Build Service is sponsored by