Changelog
icedove (3.1.3-1) experimental; urgency=low
* New Upstream Version
- MFSA 2010-49 aka CVE-2010-3169: Miscellaneous memory safety hazards
(rv:1.9.2.9/ 1.9.1.12)
- MFSA 2010-50 aka CVE-2010-2765: Frameset integer overflow vulnerability
- MFSA 2010-51 aka CVE-2010-2767: Dangling pointer vulnerability using DOM
plugin array
- MFSA 2010-53 aka CVE-2010-3166: Heap buffer overflow in
nsTextFrameUtils::TransformText
- MFSA 2010-54 aka CVE-2010-2760: Dangling pointer vulnerability in
nsTreeSelection
- MFSA 2010-55 aka CVE-2010-3168: XUL tree removal crash and remote code
execution
- MFSA 2010-56 aka CVE-2010-3167: Dangling pointer vulnerability in
nsTreeContentView
- MFSA 2010-57 aka CVE-2010-2766: Crash and remote code execution in
normalizeDocument
- MFSA 2010-59 aka CVE-2010-2762: SJOW creates scope chains ending in
outer object
- MFSA 2010-61 aka CVE-2010-2768: UTF-7 XSS by overriding document charset
using <object> type attribute
- MFSA 2010-62 aka CVE-2010-2769: Copy-and-paste or drag-and-drop into
designMode document allows XSS
- MFSA 2010-63 aka CVE-2010-2764: Information leak via XMLHttpRequest
statusText
* [9a03eb1] rebuild patch queue from patch-queue branch
added patches:
- 0060-fix-FTBFS-on-hurd.patch (Closes: #595665)
- 0061-Enable-x64-JIT-backend-by-default.patch
- 0062-Fix-unaligned-reads-in-qcms.patch
- 0063-Import-js-src-nanojit-njcpudetect.h.patch
- 0064-Use-clz-on-android-even-for-armv5-target.patch
- 0065-Fix-ARM-verbose-assembly-output-for-BLX.patch
- 0066-Get-rid-of-blx_lr_bug.patch
- 0067-Avoid-some-ARM-CPU-arch-related-runtime-tests-depend.patch
- 0068-ARMv4T-support-for-nanojit.patch
-- Christoph Goehre <email address hidden> Tue, 14 Sep 2010 13:41:19 +0200