-
firefox (2.0.0.14+0nobinonly-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability release (v2.0.0.14)
- see USN-602-1
-- Alexander Sack <email address hidden> Fri, 18 Apr 2008 12:13:23 +0200
-
firefox (2.0.0.13+0nobinonly-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability release (v2.0.0.13)
- see USN-592-1
-- Alexander Sack <email address hidden> Tue, 25 Mar 2008 11:14:08 +0100
-
firefox (2.0.0.12+0nobinonly+2-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability release (v2.0.0.12)
* New security/stability upstream release (v2.0.0.12) - 1.8.0.14 prepatches
* MFSA 2008-01 aka CVE-2008-0412: Crashes with evidence of memory corruption
v1.8.1.12 (Browser crashes)
* MFSA 2008-01 aka CVE-2008-0413: Crashes with evidence of memory corruption
v1.8.1.12 (javascript crashes)
* MFSA 2008-02 aka CVE-2008-0414: Multiple file input focus stealing
vulnerabilities: 1. Focus shifting bugs and 2. Selective keystroke
blocking bugs
* MFSA 2008-03 aka CVE-2008-0415: Privilege escalation, XSS, Remote Code
Execution (JavaScript privilege escalation bugs)
* MFSA 2008-04 aka CVE-2008-0416: Multiple XSS vulnerabilities from
character encoding
* MFSA 2008-05 aka CVE-2008-0417: Stored password corruption
* MFSA 2008-06 aka CVE-2008-0418: Directory traversal via chrome: URI
* MFSA 2008-07 aka CVE-2008-0419: Web browsing history and forward
navigation
stealing
* MFSA 2008-08 aka CVE-2008-0420: Possible information disclosure in BMP
decoder
* MFSA 2008-09 aka CVE-2008-0591: File action dialog tampering
* MFSA 2008-10 aka CVE-2008-0592: Mishandling of locally-saved plain text
files
* MFSA 2008-11 aka CVE-2008-0593: URL token stealing via stylesheet redirect
* MFSA 2008-12 aka CVE-2008-0594: Web forgery overwrite with div overlay
-- Alexander Sack <email address hidden> Mon, 04 Feb 2008 13:26:46 +0100
-
firefox (2.0.0.11+0nobinonly-0ubuntu0.6.10) edgy-security; urgency=low
* New stability upstream release (v2.0.0.11)
* fix canvas regression introduced in firefox 2.0.0.10
-- Alexander Sack <email address hidden> Tue, 04 Dec 2007 10:43:08 +0100
-
firefox (2.0.0.10+0nobinonly-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability upstream release (v2.0.0.10)
* MFSA 2007-37 aka CVE-2007-5947
* MFSA 2007-38 aka CVE-2007-5959
* MFSA 2007-39 aka CVE-2007-5960
-- Alexander Sack <email address hidden> Sun, 25 Nov 2007 18:59:08 +0100
-
firefox (2.0.0.8+0dfsg-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability upstream release (v2.0.0.8)
* MFSA 2007-29 aka CVE-2007-5339 (browser), CVE-2007-5340 (javascript)
* MFSA 2007-30 aka CVE-2007-1095
* MFSA 2007-31 aka CVE-2007-2292
* MFSA 2007-32 aka CVE-2007-3511, CVE-2006-2894
* MFSA 2007-33 aka CVE-2007-5334
* MFSA 2007-34 aka CVE-2007-5337
* MFSA 2007-35 aka CVE-2007-5338
* MFSA 2007-36 aka CVE-2007-4841 (windows only)
-- Alexander Sack <email address hidden> Fri, 19 Oct 2007 12:57:48 +0200
-
firefox (2.0.0.6+0dfsg-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability upstream release (v2.0.0.6)
* MFSA 2007-26 aka CVE-2007-3844
* MFSA 2007-27 aka CVE-2007-3845
-- Alexander Sack <email address hidden> Tue, 31 Jul 2007 12:32:36 +0200
-
firefox (2.0.0.5+0dfsg-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability upstream release (v2.0.0.5)
* MFSA 2007-18 aka CVE-2007-3734 (browser), CVE-2007-3735 (Javascript)
* MFSA 2007-19 aka CVE-2007-3736
* MFSA 2007-20 aka CVE-2007-3089
* MFSA 2007-21 aka CVE-2007-3737
* MFSA 2007-22 aka CVE-2007-3285
* MFSA 2007-23 aka CVE-2007-3670
* MFSA 2007-24 aka CVE-2007-3656
* MFSA 2007-25 aka CVE-2007-3738
-- Alexander Sack <email address hidden> Wed, 18 Jul 2007 11:14:00 +0200
-
firefox (2.0.0.4+0dfsg-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability upstream updated (v2.0.0.4)
* MFSA2007-17 aka CVE-2007-2871: XUL Popup Spoofing
* MFSA2007-16 aka CVE-2007-2870: XSS using addEventListener
* MFSA2007-14 aka CVE-2007-1362: Path Abuse in Cookies
* MFSA2007-13 aka CVE-2007-2869: Persistent Autocomplete Denial of Service
* MFSA2007-12 aka CVE-2007-2867 (layout engine) + CVE-2007-2868
(javascript engine): Crashes with evidence of memory corruption
* configure.in, configure: drop visibility hidden attribute patch
as it has been applied upstream; regen configure accordingly
* uriloader/exthandler/unix/nsOSHelperAppService.cpp: drop modifications
we previously carried for bz273524; the helper part has been dealt with
in landing of bz373955 attachment 260203
* embedding/browser/gtk/src/EmbedWindow.cpp: drop patch since bz312998
has been applied upstream
-- Alexander Sack <email address hidden> Thu, 31 May 2007 12:11:03 +0200
-
firefox (2.0.0.3+0dfsg-0ubuntu0.6.10) edgy-security; urgency=low
* New security/stability upstream updated (v2.0.0.3)
* MFSA2007-11 aka CVE-2007-1562: FTP PASV port-scanning
-- Alexander Sack <email address hidden> Sat, 24 Mar 2006 21:00:00 +0100
-
firefox (2.0.0.2+0dfsg-0ubuntu0.6.10) edgy-security; urgency=low
* New upstream security update:
* MFSA2007-01 - Crashes with evidence of memory corruption
(rv:1.8.0.10/1.8.1.2):
- CVE-2007-0775 - layout engine crashes
- CVE-2007-0776 - SVG
- CVE-2007-0777 - javascript engine corruption
* MFSA2007-02 - Improvements to help protect against Cross-Site
Scripting attacks:
- CVE-2007-0995 - Invalid trailing characters in HTML tag attributes
- CVE-2007-0996 - Child frame character set inheritance
- CVE-2006-6077 - Injected password forms
* MFSA2007-03 aka CVE-2007-0778: Information disclosure through cache
collisions
* MFSA2007-04 aka CVE-2007-0779: Spoofing using custom cursor and CSS3
hotspot
* MFSA2007-05 aka CVE-2007-0780, CVE-2007-0800: XSS and local file access
by opening blocked popups
* MFSA2007-06 aka CVE-2007-0008, CVE-2007-0009: Mozilla Network Security
Services (NSS) SSLv2 buffer overflow
* MFSA2007-07 aka CVE-2007-0981: Embedded nulls in location.hostname
confuse same-domain checks
* browser/app/profile/firefox.js: resolved merge conflict
-- Alexander Sack <email address hidden> Sun, 25 Feb 2006 16:00:00 +0100
-
firefox (2.0.0.1+0dfsg-0ubuntu0.6.10) edgy-security; urgency=low
* New upstream security update:
- CVE-2006-6507, MFSA 2006-76: XSS using outer window's Function object.
- CVE-2006-6506, MFSA 2006-75: RSS Feed-preview referrer leak.
- CVE-2006-6504, MFSA 2006-73: SVG Processing Remote Code Execution.
- CVE-2006-6503, MFSA 2006-72: XSS by setting img.src to javascript: URI.
- CVE-2006-6502, MFSA 2006-71: LiveConnect crash finalizing JS objects.
- CVE-2006-6501, MFSA 2006-70: Privilege escallation using watch point.
- CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, MFSA 2006-68: Crashes
with evidence of memory corruption.
* debian/rules: restore original icons (Closes LP#68180).
-- Kees Cook <email address hidden> Wed, 20 Dec 2006 17:55:02 -0800
-
firefox (2.0+0dfsg-0ubuntu3) edgy; urgency=low
* Patch from upstream CVS to fix RSS preview/subscription, thanks to Mike
Connor and Martin Jürgens (Closes: LP#61182)
-- Matt Zimmerman <email address hidden> Mon, 23 Oct 2006 10:20:25 +0100
-
firefox (2.0+0dfsg-0ubuntu2) edgy; urgency=low
* uudecode debsearch.gif too. Fixes FTBFS
* Make edgy the default debsearch target. Closes: Malone: #61687
-- Tollef Fog Heen <email address hidden> Mon, 23 Oct 2006 08:52:11 +0200
-
firefox (2.0+0dfsg-0ubuntu1) edgy; urgency=low
* Bump version to 2.0 (no upstream changes from rc3)
* browser/components/search/nsSearchService.js
- Set MOZ_OFFICIAL to "official", distributionID to "com.ubuntu"
* debian/branding: new subdirectory with images
* debian/rules:
- build: uudecode and substitute images in source tree, use debian/branding/icon64.png
instead of debian/firefox.png
- clean: restore images in source tree, remove uudecoded versions
-- Matt Zimmerman <email address hidden> Fri, 20 Oct 2006 15:56:42 -0700
-
firefox (1.99+2.0rc3+dfsg-0ubuntu1) edgy; urgency=low
* New upstream version 2.0rc3, UVF exception approved by Matt Zimmerman.
* configure: Fix bashism to let the gcc visibility=hidden bug detection
work.
* configure{,.in}: Change MOZ_APP_DISPLAYNAME from 'BonEcho' to 'Firefox' to
make UserAgent string work with web sites which evaluate it.
* browser/base/content/utilityOverlay.js: Open the Launchpad
translation/help pages for Edgy, not Dapper.
* For the sake of automatic vulnerability tracking: All 1.5.0.x and earlier
vulnerabilities were fixed in the 2.0 branch as well:
CVE-2005-0752 CVE-2005-1531 CVE-2005-1532 CVE-2005-2114 CVE-2006-0749
CVE-2006-1731 CVE-2006-1732 CVE-2006-1733 CVE-2006-1734 CVE-2006-1735
CVE-2006-1736 CVE-2006-1737 CVE-2006-1738 CVE-2006-1739 CVE-2006-1740
CVE-2006-1741 CVE-2006-1742 CVE-2006-1790 CVE-2006-2775 CVE-2006-2776
CVE-2006-2777 CVE-2006-2778 CVE-2006-2779 CVE-2006-2780 CVE-2006-2782
CVE-2006-2783 CVE-2006-2784 CVE-2006-2785 CVE-2006-2786 CVE-2006-2787
CVE-2006-2788 CVE-2006-3113 CVE-2006-3677 CVE-2006-3801 CVE-2006-3802
CVE-2006-3803 CVE-2006-3805 CVE-2006-3806 CVE-2006-3807 CVE-2006-3808
CVE-2006-3809 CVE-2006-3810 CVE-2006-3811 CVE-2006-3812 CVE-2006-4253
CVE-2006-4340 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4568
CVE-2006-4569 CVE-2006-4571
-- Martin Pitt <email address hidden> Thu, 19 Oct 2006 09:28:15 +0200
-
firefox (1.99+2.0rc2+dfsg-0ubuntu3) edgy; urgency=low
* debian/firefox-runner: Disable Pango if a Sinhala locale is present. LP
66270.
-- Colin Watson <email address hidden> Sun, 15 Oct 2006 20:29:26 +0100
-
firefox (1.99+2.0rc2+dfsg-0ubuntu2) edgy; urgency=low
* Delete /usr/lib/firefox/components/compreg.dat in the postinst.
This is a partial workaround for LP 30791.
-- Ian Jackson <email address hidden> Thu, 12 Oct 2006 12:19:11 +0100
-
firefox (1.99+2.0rc2+dfsg-0ubuntu1) edgy; urgency=low
* New upstream version 2.0rc2.
* Fix/workaround for epiphany GtkSocket lifetype crash:
apply patch id=241087 from Mozilla Bugzilla #241535 to fix LP #63814.
* Change application name to `Firefox', as requested by mdz.
Files changed:
- browser/locales/en-US/chrome/branding/brand.dtd
- browser/locales/en-US/chrome/branding/brand.properties;
New values:
- brandShortName and brandFullName: `Bon Echo' => `Firefox'
- vendorShortName: `Mozilla' => `Ubuntu'
* Make preferences dialogue fit again (bah!).
-- Ian Jackson <email address hidden> Tue, 10 Oct 2006 18:49:32 +0100
-
firefox (1.99+2.0b2+dfsg-1ubuntu3) edgy; urgency=low
* Remove /usr/lib/mozilla-thunderbird from the LD_LIBRARY_PATH
if we find it there. Workaround for LP 57923.
* Remove pocket name (eg `-security') from distribution identifier in
the browser user agent string. LP 55289.
-- Ian Jackson <email address hidden> Tue, 3 Oct 2006 19:01:34 +0100
-
firefox (1.99+2.0b2+dfsg-1ubuntu2) edgy; urgency=low
* Ship xpidl et al, in firefox-dev. Relates to Debian #362190.
Fixes Malone #61160.
-- Ian Jackson <email address hidden> Thu, 21 Sep 2006 16:33:50 +0100
-
firefox (1.99+2.0b2+dfsg-1ubuntu1) edgy; urgency=low
* Merged from Debian unstable; new upstream version.
* Remaining differences between
Debian and Ubuntu in no particular order:
- Build libnspr and libnss and corresponding -dev packages from this
source package. Plus changes to make these libs build nicely.
- Various changes to preferences, default bookmarks and search engines.
- Support for `Get Help Online' and `Translate This Application'.
- Size changes for various dialogue boxes to make the contents fit.
- Downloads go to separate `Desktop' folder by default.
- Fix some underquoted m4 arguments.
- Minor changes in directories, symlinks and debian/control
to cope with Ubuntu and Debian's different histories.
- disable File / Import (wizard is nonfunctional).
Malone #28563, Debian #350599, Mozilla Bugzilla 117844.
- Change `Latest Headlines' to `Latest BBC Headlines' to properly
disclose the source up front, and use a corresponding RSS URL.
- Default for FIREFOX_DSP is none.
- Pango support is enabled only if an installed locale seems to need
it.
- Note in README.Debian about how to run xpcshell.
- Disable xprint.
- No build dependency on libxp-dev; build-depend on zip instead.
- Various icon changes.
- Some currently-unused directory merging code in firefox.preinst.
- Less detail in the user agent string.
- Belt-and-braces removal for some cruft left over by some versions of
the Mozilla build system.
- Better firefox.menu entry (says `Firefox Web Browser').
- Build dynamically linked, since in Ubuntu embedders use firefox.
- EbmedWindow::GetVisibility bugfix, Malone 40320, upstream 312998.
- Pass FC_ANY_METRICS to Fontconfig where appropriate.
- Extensive Thai language patch.
- Print in serif by default even though default display is sans.
- Some fixes to the (upstream-unused) nss makefiles.
- Strip PostScript/ from printer names.
- Better message about updates of read-only extension.
- Include pointer to the Gecko Runtime (GRE registration).
- Prevent websites from disabling context menus.
All of these changes are fully documented in the changelog below.
Please see those changelog entries for full details. Much historical
information about changes either taken up by Debian or upstream, or
dropped by us, is retained in this changelog.
-- Ian Jackson <email address hidden> Wed, 13 Sep 2006 16:40:06 +0100
-
firefox (1.99+2.0b1+dfsg-1ubuntu3) edgy; urgency=low
* Remove `Breaks' again; experience shows that we need proper support in
apt before deploying this.
-- Ian Jackson <email address hidden> Fri, 18 Aug 2006 11:46:20 +0100
-
firefox (1.99+2.0b1+dfsg-1ubuntu2) edgy; urgency=low
* Put libfreebl3 in /usr/lib, not /usr/lib/firefox;
it's part of libnss3. This fixes Malone #56202.
* Disable main menu File / Import again; it seems that the Organise
Bookmarks import is going to be fixed and not the main menu one.
(See Mozilla Bugzilla #347956, #117844; Debian #350599.)
* Remove default theme setting; this can now be done by the
theme package creating another *.js file in /etc/firefox/pref.
This means we don't need to depend on firefox-themes-ubuntu.
(We Break older versions of firefox-themes-ubuntu.)
* Relax version dependency from firefox to libnss and libnspr,
since these remain largely binary compatible.
-- Ian Jackson <email address hidden> Mon, 14 Aug 2006 17:03:25 +0100
-
firefox (1.99+2.0b1+dfsg-1ubuntu1) edgy; urgency=low
* Merge from debian unstable. Remaining differences between
Debian and Ubuntu in no particular order:
- Build libnspr and libnss and corresponding -dev packages from this
source package. Plus changes to make these libs build nicely.
- Various changes to preferences, default bookmarks and search engines.
- Support for `Get Help Online' and `Translate This Application'.
- Size changes for various dialogue boxes to make the contents fit.
- Downloads go to separate `Desktop' folder by default.
- Fix some underquoted m4 arguments.
- Minor changes in directories and symlinks to cope with Ubuntu and
Debian's different histories.
- Default for FIREFOX_DSP is none.
- Pango support is enabled only if an installed locale seems to need
it.
- No build dependency on libxp-dev; build-depend on zip instead.
- Note in README.Debian about how to run xpcshell.
- Various icon changes.
- Polish translation in firefox.desktop. Debian #382079, Malone 45447.
- Do not attempt to run firefox for webdav URLs (firefox.desktop).
- Use the new Human theme from firefox-themes-ubuntu, by default.
- Better firefox.menu entry (says `Firefox Web Browser').
- Some currently-unused directory merging code in firefox.preinst.
- Use GNOME MIME program registry (nsMIMEInfoUnix etc.)
- Less detail in the user agent string.
- Disable xprint.
- Belt-and-braces removal for some cruft left over by some versions of
the Mozilla build system.
- Include pointer to the Gecko Runtime (GRE registration).
- EbmedWindow::GetVisibility bugfix, Malone 40320, upstream 312998.
- Pass FC_ANY_METRICS to Fontconfig where appropriate.
- Extensive Thai language patch.
- Print in serif by default even though default display is sans.
- Prevent websites from disabling context menus.
- Some fixes to the (upstream-unused) nss makefiles.
- Strip PostScript/ from printer names.
- Better message about updates of read-only extension.
All of these changes are fully documented in the changelog below.
Please see those changelog entries for full details. Much historical
information about changes either taken up by Debian or upstream, or
dropped by us, is retained in this changelog.
-- Ian Jackson <email address hidden> Tue, 8 Aug 2006 19:02:51 +0100
-
firefox (1.5.dfsg+1.5.0.4-1ubuntu2) edgy; urgency=low
* Use the new Human theme from firefox-themes-ubuntu.
* Use .orig.tar.gz and .diff.gz format not native format.
(strange; the MoM buildpackage rune seems to have got it wrong).
-- Ian Jackson <email address hidden> Fri, 7 Jul 2006 19:02:51 +0100
-
firefox (1.5.dfsg+1.5.0.4-1ubuntu1) edgy; urgency=low
* Merge from debian unstable. Remaining differences between
Debian and Ubuntu in no particular order:
- Build libnspr and libnss and corresponding -dev packages from this
source package. Plus changes to make these libs build nicely.
- Various changes to preferences, default bookmarks and search engines.
- Default for FIREFOX_DSP is none.
- Slightly different handling of some firefox-runner command line
options (eg, -ProfileManager).
- Note in README.Debian about how to run xpcshell.
- Pango support is enabled only if an installed locale seems to need
it.
- Support for `Get Help Online' and `Translate This Application'.
- Size changes for various dialogue boxes to make the contents fit.
- Downloads go to separate `Desktop' folder by default.
- Fix some underquoted m4 arguments.
- Thai-related crash fix (Malone 45395).
- No build dependency on libxp-dev.
- DOM Inspector is not a separate package.
- Various icon changes.
- Polish translation for firefox.desktop.
- Do not attempt to run firefox for webdav URLs (firefox.desktop).
- Better firefox.menu entry (says `Firefox Web Browser').
- Minor changes in directories and symlinks to cope with Ubuntu and
Debian's different histories.
- Use update-notifier to ask user to restart firefox.
- Some currently-unused directory merging code in firefox.preinst.
- Use GNOME MIME program registry (nsMIMEInfoUnix etc.)
- Less detail in the user agent string.
- Belt-and-braces removal for some cruft left over by some versions of
the Mozilla build system.
- EbmedWindow::GetVisibility bugfix.
- Pass FC_ANY_METRICS to Fontconfig where appropriate.
- Extensive Thai language patch.
- Print in serif by default even though default display is sans.
- Prevent websites from disabling context menus.
- Strip CUPS from printer names.
- Better message about updates of read-only extension.
- Fix: do not crash if htmlConverter->Convert fails.
All of these changes are fully documented in the changelog below.
Please see those changelog entries for full details.
firefox (1.5.dfsg+1.5.0.4-1) unstable; urgency=low
* The "Post-DebConf Hangover" release.
[ Eric Dorland ]
* New upstream release. Fixes various security issues. MFSA 2006-31 to
MFSA 2006-43, excluding MFSA 2006-40.
* debian/control:
- Standards-Version to 3.7.2.0.
- Set priority of -dbg to extra and Section to devel.
* gfx/src/gtk/nsFontMetricsPango.cpp,
intl/lwbrk/src/nsJISx4501LineBreaker.cpp,
intl/unicharutil/util/nsUnicharUtils.h,
intl/unicharutil/util/nsUnicharUtils.cpp,
layout/generic/nsTextFrame.cpp: Patch from Jurij Smakov (from
bz#161826) to fix alignment issues on sparc64. (Closes: #354725)
[ Mike Hommey ]
* Applied distclean patch from xulrunner (in
debian/patches/01_distclean.dpatch), except for the javaxpcom stuff we
don't build anyway.
* browser/app/profile/extensions/{972ce4c6-7e08-4474-a285-3208198ce6fd},
config/static-rules.mk: More cleaning for firefox.
* nsprpub/configure: Apply change to nsprpub/configure.in.
(Closes: #350616)
* gfx/src/gtk/nsFontMetricsPango.cpp: Some more changes so that it
actually builds without errors, and use PR_Malloc and PR_Free instead
of malloc and free.
firefox (1.5.dfsg+1.5.0.3-2) unstable; urgency=low
* debian/firefox.desktop: Add spanish translation, just in time for
DebConf 6! Thanks Ian Jackson. (Closes: #365870)
* debian/firefox-runner: Actually apply the patch from Morita Sho in
#364566. I'm a moron. (Closes: #365956, #365960)
* debian/control: Standards-Version to 3.7.1.0. Go policy team!
firefox (1.5.dfsg+1.5.0.3-1) unstable; urgency=critical
* The "secure enough for ya!" release.
* New upstream release. Contains security fixes, hence severity
critical.
- Fixes CVE-2006-1993 aka MFSA 2006-30. (Closes: #364810)
[ Mike Hommey ]
* security/manager/Makefile.in, debian/firefox.install: Build and
install the .chk file again. That will make the FIPS mode work again.
* debian/control: Bumped Standards-Version to 3.7.0.0. No changes.
* debian/rules: Fix the navigator.ProductSub value for dumb scripts.
Closes: #364640, #365099. We now use the date of the client.mk file,
which is likely to be the closest value to the release date, instead of
useless build date.
Add the debian version after the firefox version string.
* debian/rules: Use dpkg-architecture to find out the host and build that
we want to pass to the configure script. (Closes: #365738)
[ Eric Dorland ]
* debian/firefox-runner:
- Quote the APPLICATION_ID variable to handle profiles with a space
in the name. Inspired by Morita Sho's patch. (Closes: #364566)
- echo MOZ_DISABLE_PANGO on verbose.
* debian/rules: It's baaaackkk. Reenable xprint.
-- Ian Jackson <email address hidden> Fri, 7 Jul 2006 14:18:00 +0100
-
firefox (1.5.dfsg+1.5.0.3-0ubuntu3) dapper; urgency=low
* Thai-related crash fix (Malone 45395):
- nsCopySupport.cpp, nsCopySupport::HTMLCopy:
do not crash if htmlConverter->Convert fails.
- nsHTMLFormatConverter.cpp, nsHTMLFormatConverter::Convert:
properly report failure if dataStr.IsEmpty.
- nsJISx4501LineBreaker.cpp: fix printf(stderr -> fprintf.
* Add Polish translation for firefox.desktop (Malone 45447).
Thanks to contribution from Tomasz Dominikowski.
* Do not attempt to merge /usr/lib/mozilla-firefox and /usr/lib/firefox
and make the former a link to the latter; this is unfortunately
error-prone and makes more problems than it solves.
Fixes Malone 44487; regresses the plugins directory confusion bug.
* Include MFSA and CVE numbers in changelog entry for 1.5.dfsg-1.
-- Ian Jackson <email address hidden> Tue, 23 May 2006 17:45:30 +0100
