Hello community, here is the log from the commit of package xulrunner for openSUSE:Factory checked in at 2013-11-01 07:05:08 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/xulrunner (Old) and /work/SRC/openSUSE:Factory/.xulrunner.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "xulrunner" Changes: -------- --- /work/SRC/openSUSE:Factory/xulrunner/xulrunner.changes 2013-08-11 11:21:20.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.xulrunner.new/xulrunner.changes 2013-11-01 07:05:26.000000000 +0100 @@ -1,0 +2,41 @@ +Thu Oct 24 16:40:37 UTC 2013 - wr@rosenauer.org + +- update to 17.0.10esr (bnc#847708) + * require NSS 3.14.4 or above + * MFSA 2013-93/CVE-2013-5590/CVE-2013-5591/CVE-2013-5592 + Miscellaneous memory safety hazards + * MFSA 2013-95/CVE-2013-5604 (bmo#914017) + Access violation with XSLT and uninitialized data + * MFSA 2013-96/CVE-2013-5595 (bmo#916580) + Improperly initialized memory and overflows in some JavaScript + functions + * MFSA 2013-98/CVE-2013-5597 (bmo#918864) + Use-after-free when updating offline cache + * MFSA 2013-100/CVE-2013-5599/CVE-2013-5600/CVE-2013-5601 + (bmo#915210, bmo#915576, bmo#916685) + Miscellaneous use-after-free issues found through ASAN fuzzing + * MFSA 2013-101/CVE-2013-5602 (bmo#897678) + Memory corruption in workers + +------------------------------------------------------------------- +Thu Sep 12 10:06:08 UTC 2013 - wr@rosenauer.org + +- update to 17.0.9esr (bnc#840485) + * MFSA 2013-65/CVE-2013-1705 (bmo#882865) + Buffer underflow when generating CRMF requests + * MFSA 2013-76/CVE-2013-1718 + Miscellaneous memory safety hazards + * MFSA 2013-79/CVE-2013-1722 (bmo#893308) + Use-after-free in Animation Manager during stylesheet cloning + * MFSA 2013-82/CVE-2013-1725 (bmo#876762) + Calling scope for new Javascript objects can lead to memory corruption + * MFSA 2013-88/CVE-2013-1730 (bmo#851353) + Compartment mismatch re-attaching XBL-backed nodes + * MFSA 2013-89/CVE-2013-1732 (bmo#883514) + Buffer overflow with multi-column, lists, and floats + * MFSA 2013-90/CVE-2013-1735/CVE-2013-1736 (bmo#898871, bmo#906301) + Memory corruption involving scrolling + * MFSA 2013-91/CVE-2013-1737 (bmo#907727) + User-defined properties on DOM proxies get the wrong "this" object + +------------------------------------------------------------------- Old: ---- l10n-17.0.8.tar.bz2 xulrunner-17.0.8-source.tar.bz2 New: ---- _constraints l10n-17.0.10.tar.bz2 xulrunner-17.0.10-source.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ xulrunner.spec ++++++ --- /var/tmp/diff_new_pack.lp8zYd/_old 2013-11-01 07:05:31.000000000 +0100 +++ /var/tmp/diff_new_pack.lp8zYd/_new 2013-11-01 07:05:31.000000000 +0100 @@ -43,13 +43,13 @@ BuildRequires: wireless-tools %endif BuildRequires: mozilla-nspr-devel >= 4.9.5 -BuildRequires: mozilla-nss-devel >= 3.14.3 -Version: 17.0.8 +BuildRequires: mozilla-nss-devel >= 3.14.4 +Version: 17.0.10 Release: 0 -%define releasedate 2013080100 -%define version_internal 17.0.8 +%define releasedate 2013102400 +%define version_internal 17.0.10 %define apiversion 17 -%define uaweight 1700008 +%define uaweight 1700010 Summary: Mozilla Runtime Environment License: MPL-2.0 Group: Productivity/Other ++++++ compare-locales.tar.bz2 ++++++ ++++++ create-tar.sh ++++++ --- /var/tmp/diff_new_pack.lp8zYd/_old 2013-11-01 07:05:31.000000000 +0100 +++ /var/tmp/diff_new_pack.lp8zYd/_new 2013-11-01 07:05:31.000000000 +0100 @@ -2,8 +2,8 @@ CHANNEL="esr17" BRANCH="releases/mozilla-$CHANNEL" -RELEASE_TAG="FIREFOX_17_0_8esr_RELEASE" -VERSION="17.0.8" +RELEASE_TAG="FIREFOX_17_0_10esr_RELEASE" +VERSION="17.0.10" # mozilla echo "cloning $BRANCH..." ++++++ l10n-17.0.8.tar.bz2 -> l10n-17.0.10.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/xulrunner/l10n-17.0.8.tar.bz2 /work/SRC/openSUSE:Factory/.xulrunner.new/l10n-17.0.10.tar.bz2 differ: char 11, line 1 ++++++ source-stamp.txt ++++++ --- /var/tmp/diff_new_pack.lp8zYd/_old 2013-11-01 07:05:31.000000000 +0100 +++ /var/tmp/diff_new_pack.lp8zYd/_new 2013-11-01 07:05:31.000000000 +0100 @@ -1,2 +1,2 @@ -REV=0ebfe6274430 +REV=a112cbb2288e REPO=http://hg.mozilla.org/releases/mozilla-esr17 ++++++ xulrunner-17.0.8-source.tar.bz2 -> xulrunner-17.0.10-source.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/xulrunner/xulrunner-17.0.8-source.tar.bz2 /work/SRC/openSUSE:Factory/.xulrunner.new/xulrunner-17.0.10-source.tar.bz2 differ: char 11, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org