Hello community, here is the log from the commit of package xulrunner for openSUSE:Factory checked in at 2015-09-30 05:51:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/xulrunner (Old) and /work/SRC/openSUSE:Factory/.xulrunner.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "xulrunner" Changes: -------- --- /work/SRC/openSUSE:Factory/xulrunner/xulrunner.changes 2015-08-14 14:47:19.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.xulrunner.new/xulrunner.changes 2015-09-30 05:51:50.000000000 +0200 @@ -1,0 +2,26 @@ +Wed Sep 23 05:47:20 UTC 2015 - wr@rosenauer.org + +- update to xulrunner 38.3.0 (bnc#947003) + * MFSA 2015-96/CVE-2015-4500 + Miscellaneous memory safety hazards + * MFSA 2015-100/CVE-2015-4505 (bmo#1177861) (Windows only) + Arbitrary file manipulation by local user through Mozilla updater + * MFSA 2015-101/CVE-2015-4506 (bmo#1192226) + Buffer overflow in libvpx while parsing vp9 format video + * MFSA 2015-105/CVE-2015-4511 (bmo#1200148) + Buffer overflow while decoding WebM video + * MFSA 2015-106/CVE-2015-4509 (bmo#1198435) + Use-after-free while manipulating HTML media content + * MFSA 2015-110/CVE-2015-4519 (bmo#1189814) + Dragging and dropping images exposes final URL after redirects + * MFSA 2015-111/CVE-2015-4520 (bmo#1200856, bmo#1200869) + Errors in the handling of CORS preflight request headers + * MFSA 2015-112/CVE-2015-4517/CVE-2015-4521/CVE-2015-4522/ + CVE-2015-7174/CVE-2015-7175/CVE-2015-7176/CVE-2015-7177/ + CVE-2015-7180 + Vulnerabilities found through code inspection + * MFSA 2015-113/CVE-2015-7178/CVE-2015-7179 (bmo#1189860, + bmo#1190526) (Windows only) + Memory safety errors in libGLES in the ANGLE graphics library + +------------------------------------------------------------------- Old: ---- l10n-38.2.0.tar.xz xulrunner-38.2.0-source.tar.xz New: ---- l10n-38.3.0.tar.xz xulrunner-38.3.0-source.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ xulrunner.spec ++++++ --- /var/tmp/diff_new_pack.iho6jz/_old 2015-09-30 05:51:56.000000000 +0200 +++ /var/tmp/diff_new_pack.iho6jz/_new 2015-09-30 05:51:56.000000000 +0200 @@ -17,10 +17,10 @@ # -%define version_internal 38.2.0 +%define version_internal 38.3.0 %define apiversion 38 -%define uaweight 3820000 -%define releasedate 2015080900 +%define uaweight 3830000 +%define releasedate 2015091700 %define shared_js 0 %define has_system_nspr 1 %define has_system_nss 1 ++++++ compare-locales.tar.xz ++++++ ++++++ create-tar.sh ++++++ --- /var/tmp/diff_new_pack.iho6jz/_old 2015-09-30 05:51:56.000000000 +0200 +++ /var/tmp/diff_new_pack.iho6jz/_new 2015-09-30 05:51:56.000000000 +0200 @@ -2,8 +2,8 @@ CHANNEL="esr38" BRANCH="releases/mozilla-$CHANNEL" -RELEASE_TAG="FIREFOX_38_2_0esr_RELEASE" -VERSION="38.2.0" +RELEASE_TAG="FIREFOX_38_3_0esr_RELEASE" +VERSION="38.3.0" # mozilla if [ -d mozilla ]; then ++++++ l10n-38.2.0.tar.xz -> l10n-38.3.0.tar.xz ++++++ /work/SRC/openSUSE:Factory/xulrunner/l10n-38.2.0.tar.xz /work/SRC/openSUSE:Factory/.xulrunner.new/l10n-38.3.0.tar.xz differ: char 26, line 1 ++++++ source-stamp.txt ++++++ --- /var/tmp/diff_new_pack.iho6jz/_old 2015-09-30 05:51:56.000000000 +0200 +++ /var/tmp/diff_new_pack.iho6jz/_new 2015-09-30 05:51:56.000000000 +0200 @@ -1,2 +1,2 @@ -REV=31bad6553933 +REV=7b1115ea78f7 REPO=http://hg.mozilla.org/releases/mozilla-esr38 ++++++ xulrunner-38.2.0-source.tar.xz -> xulrunner-38.3.0-source.tar.xz ++++++ /work/SRC/openSUSE:Factory/xulrunner/xulrunner-38.2.0-source.tar.xz /work/SRC/openSUSE:Factory/.xulrunner.new/xulrunner-38.3.0-source.tar.xz differ: char 26, line 1