Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Evergreen:Maintenance:205
patchinfo
_patchinfo
Overview
Details
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo
<patchinfo incident="205"> <packager>wrosenauer</packager> <issue tracker="bmo" id="913785"></issue> <issue tracker="bmo" id="917955"></issue> <issue tracker="bnc" id="847708">VUL-0: MozillaFirefox 25 security release</issue> <issue tracker="cve" id="CVE-2013-5590"></issue> <issue tracker="cve" id="CVE-2013-5591"></issue> <issue tracker="cve" id="CVE-2013-5592"></issue> <issue tracker="cve" id="CVE-2013-5595"></issue> <issue tracker="cve" id="CVE-2013-5597"></issue> <issue tracker="cve" id="CVE-2013-5599"></issue> <issue tracker="cve" id="CVE-2013-5600"></issue> <issue tracker="cve" id="CVE-2013-5601"></issue> <issue tracker="cve" id="CVE-2013-5602"></issue> <issue tracker="cve" id="CVE-2013-5604"></issue> <issue tracker="bmo" id="897678"></issue> <issue tracker="bmo" id="914017"></issue> <issue tracker="bmo" id="915210"></issue> <issue tracker="bmo" id="915576"></issue> <issue tracker="bmo" id="916580"></issue> <issue tracker="bmo" id="916685"></issue> <issue tracker="bmo" id="918864"></issue> <issue tracker="cve" id="CVE-2013-5593"></issue> <issue tracker="cve" id="CVE-2013-5596"></issue> <issue tracker="cve" id="CVE-2013-5603"></issue> <issue tracker="bmo" id="868327"></issue> <issue tracker="bmo" id="910881"></issue> <issue tracker="bmo" id="916404"></issue> <issue tracker="bmo" id="888273"></issue> <issue tracker="bmo" id="907512"></issue> <category>security</category> <rating>important</rating> <summary>Mozilla updates 10/2013</summary> <description>Update NSPR to 4.10.1 Update Thunderbird to 24.1.0 (incl. enigmail 1.6) Update Firefox to 24.1.0esr Changes in MozillaFirefox: * requires NSS 3.15.2 or above * MFSA 2013-93/CVE-2013-5590/CVE-2013-5591/CVE-2013-5592 Miscellaneous memory safety hazards * MFSA 2013-94/CVE-2013-5593 (bmo#868327) Spoofing addressbar through SELECT element * MFSA 2013-95/CVE-2013-5604 (bmo#914017) Access violation with XSLT and uninitialized data * MFSA 2013-96/CVE-2013-5595 (bmo#916580) Improperly initialized memory and overflows in some JavaScript functions * MFSA 2013-97/CVE-2013-5596 (bmo#910881) Writing to cycle collected object during image decoding * MFSA 2013-98/CVE-2013-5597 (bmo#918864) Use-after-free when updating offline cache * MFSA 2013-99/CVE-2013-5598 (bmo#920515) Security bypass of PDF.js checks using iframes * MFSA 2013-100/CVE-2013-5599/CVE-2013-5600/CVE-2013-5601 (bmo#915210, bmo#915576, bmo#916685) Miscellaneous use-after-free issues found through ASAN fuzzing * MFSA 2013-101/CVE-2013-5602 (bmo#897678) Memory corruption in workers * MFSA 2013-102/CVE-2013-5603 (bmo#916404) Use-after-free in HTML document templates Changes in MozillaThunderbird: * requires NSS 3.15.2 or above * MFSA 2013-93/CVE-2013-5590/CVE-2013-5591/CVE-2013-5592 Miscellaneous memory safety hazards * MFSA 2013-94/CVE-2013-5593 (bmo#868327) Spoofing addressbar through SELECT element * MFSA 2013-95/CVE-2013-5604 (bmo#914017) Access violation with XSLT and uninitialized data * MFSA 2013-96/CVE-2013-5595 (bmo#916580) Improperly initialized memory and overflows in some JavaScript functions * MFSA 2013-97/CVE-2013-5596 (bmo#910881) Writing to cycle collected object during image decoding * MFSA 2013-98/CVE-2013-5597 (bmo#918864) Use-after-free when updating offline cache * MFSA 2013-100/CVE-2013-5599/CVE-2013-5600/CVE-2013-5601 (bmo#915210, bmo#915576, bmo#916685) Miscellaneous use-after-free issues found through ASAN fuzzing * MFSA 2013-101/CVE-2013-5602 (bmo#897678) Memory corruption in workers * MFSA 2013-102/CVE-2013-5603 (bmo#916404) Use-after-free in HTML document templates - update to Thunderbird 24.0.1 * fqdn for smtp server name was not accepted (bmo#913785) * fixed crash in PL_strncasecmp (bmo#917955) - update Enigmail to 1.6 * The passphrase timeout configuration in Enigmail is now read and written from/to gpg-agent. * New dialog to change the expiry date of keys * New function to search for the OpenPGP keys of all Address Book entries on a keyserver * removed obsolete enigmail-build.patch Changes in mozilla-nspr: - update to version 4.10.1 * bmo#888273: RWIN Scaling (RFC1323) limited to 2 on Windows 7 and 8 (Windows only) * bmo#907512: Unix platforms shouldn't mask errors specific to Unix domain sockets</description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor