From 1a25ec2cd0da01748359098a1cd263e42f579ce50b558c4033ba27b8bf81ebc5 Mon Sep 17 00:00:00 2001
From: OBS User buildservice-autocommit <null@suse.de>
Date: Mon, 15 Aug 2011 12:14:28 +0000
Subject: [PATCH 1/5] Updating link to change in
 openSUSE:Factory/MozillaFirefox revision 127.0

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=5faa40e6b8bf276e7ff00b2fbd1cd543
---
 MozillaFirefox.spec | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/MozillaFirefox.spec b/MozillaFirefox.spec
index 110d5ab4..a2ea04db 100644
--- a/MozillaFirefox.spec
+++ b/MozillaFirefox.spec
@@ -22,7 +22,7 @@
 %define mainver %major.0
 
 Name:           MozillaFirefox
-BuildRequires:  autoconf213 gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python startup-notification-devel unzip update-desktop-files zip fdupes Mesa-devel yasm
+BuildRequires:  Mesa-devel autoconf213 fdupes gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python startup-notification-devel unzip update-desktop-files yasm zip
 %if %suse_version > 1110
 BuildRequires:  libiw-devel
 BuildRequires:  libproxy-devel
@@ -130,6 +130,7 @@ Requires:       perl(Archive::Zip)
 Development files for Firefox to make packaging of addons easier.
 
 %if %localize
+
 %package translations-common
 Summary:        Common translations for MozillaFirefox
 License:        MPLv1.1 or GPLv2+ or LGPLv2+
@@ -177,6 +178,7 @@ This package provides upstream look and feel for MozillaFirefox.
 
 
 %if %crashreporter
+
 %package buildsymbols
 License:        MPLv1.1 or GPLv2+ or LGPLv2+
 Summary:        Breakpad buildsymbols for %{name}
@@ -187,7 +189,6 @@ This subpackage contains the Breakpad created and compatible debugging
 symbols meant for upload to Mozilla's crash collector database.
 %endif
 
-
 %prep
 %setup -q -n mozilla -b 7 -b 10
 cd $RPM_BUILD_DIR/mozilla
@@ -534,6 +535,7 @@ exit 0
 %config /etc/rpm/macros.%{progname}
 
 %if %localize
+
 %files translations-common -f %{_tmppath}/translations.common
 %defattr(-,root,root)
 %dir %{progdir}
@@ -547,11 +549,13 @@ exit 0
 
 # this package does not need to provide files but is needed to fulfill
 # requirements if no other branding package is to be installed
+
 %files branding-upstream
 %defattr(-,root,root)
 %dir %{progdir}
 
 %if %crashreporter
+
 %files buildsymbols
 %defattr(-,root,root)
 %{_datadir}/mozilla/*.zip

From 9a1fb250a20885a4d645d1af5e61e78579bf17f9be1af5476e66185bd38227fc Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Tue, 16 Aug 2011 21:14:25 +0000
Subject: [PATCH 2/5] changelog

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=218
---
 MozillaFirefox.changes | 16 ++++++++++++++--
 1 file changed, 14 insertions(+), 2 deletions(-)

diff --git a/MozillaFirefox.changes b/MozillaFirefox.changes
index 42bdef4a..bf650ccc 100644
--- a/MozillaFirefox.changes
+++ b/MozillaFirefox.changes
@@ -1,8 +1,20 @@
 -------------------------------------------------------------------
 Fri Aug 12 21:16:19 UTC 2011 - wr@rosenauer.org
 
-- update to 6.0 (bnc#711954)
-  * included security fixes
+- update to 6.0 (bnc#712224)
+  included security fixes MFSA 2011-29
+  * CVE-2011-2989/CVE-2011-2991/CVE-2011-2992/CVE-2011-2985
+    Miscellaneous memory safety hazards
+  * CVE-2011-2993 (bmo#657267)
+    Unsigned scripts can call script inside signed JAR
+  * CVE-2011-2988 (bmo#665934)
+    Heap overflow in ANGLE library
+  * CVE-2011-0084 (bmo#648094)
+    Crash in SVGTextElement.getCharNumAtPosition()
+  * CVE-2011-2990
+    Credential leakage using Content Security Policy reports
+  * CVE-2011-2986 (bmo#655836)
+    Cross-origin data theft using canvas and Windows D2D
 - removed obsolete curl header dependency (mozilla-curl.patch)
 
 -------------------------------------------------------------------

From 4944eff183c4ce6f4a51812c2b193e2ef33d27c0e556fe8dd108b5d6ab493770 Mon Sep 17 00:00:00 2001
From: Petr Cerny <null@suse.de>
Date: Fri, 2 Sep 2011 14:38:40 +0000
Subject: [PATCH 3/5] - security update to 6.0.1 (bnc#714931)   * MFSA 2011-34 
    Protection against fraudulent DigiNotar certificates     (bmo#682927)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=219
---
 MozillaFirefox.changes       | 8 ++++++++
 MozillaFirefox.spec          | 4 ++--
 firefox-6.0-source.tar.bz2   | 3 ---
 firefox-6.0.1-source.tar.bz2 | 3 +++
 l10n-6.0.1.tar.bz2           | 3 +++
 l10n-6.0.tar.bz2             | 3 ---
 6 files changed, 16 insertions(+), 8 deletions(-)
 delete mode 100644 firefox-6.0-source.tar.bz2
 create mode 100644 firefox-6.0.1-source.tar.bz2
 create mode 100644 l10n-6.0.1.tar.bz2
 delete mode 100644 l10n-6.0.tar.bz2

diff --git a/MozillaFirefox.changes b/MozillaFirefox.changes
index bf650ccc..3ffeb0b0 100644
--- a/MozillaFirefox.changes
+++ b/MozillaFirefox.changes
@@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Fri Sep  2 14:40:07 UTC 2011 - pcerny@suse.com
+
+- security update to 6.0.1 (bnc#714931)
+  * MFSA 2011-34
+    Protection against fraudulent DigiNotar certificates
+    (bmo#682927)
+
 -------------------------------------------------------------------
 Fri Aug 12 21:16:19 UTC 2011 - wr@rosenauer.org
 
diff --git a/MozillaFirefox.spec b/MozillaFirefox.spec
index a2ea04db..f2f146d2 100644
--- a/MozillaFirefox.spec
+++ b/MozillaFirefox.spec
@@ -19,7 +19,7 @@
 # norootforbuild
 
 %define major 6
-%define mainver %major.0
+%define mainver %major.0.1
 
 Name:           MozillaFirefox
 BuildRequires:  Mesa-devel autoconf213 fdupes gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python startup-notification-devel unzip update-desktop-files yasm zip
@@ -35,7 +35,7 @@ BuildRequires:  nss-shared-helper-devel
 License:        MPLv1.1 or GPLv2+ or LGPLv2+
 Version:        %{mainver}
 Release:        1
-%define         releasedate 2011081200
+%define         releasedate 2011090200
 Provides:       web_browser
 Provides:       firefox = %{version}-%{release}
 Provides:       firefox = %{mainver}
diff --git a/firefox-6.0-source.tar.bz2 b/firefox-6.0-source.tar.bz2
deleted file mode 100644
index c8e6dd53..00000000
--- a/firefox-6.0-source.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:e09ccc62e8bb10f419cce797058721eff9847fd89a8af3c7d51c12aff1552563
-size 67685578
diff --git a/firefox-6.0.1-source.tar.bz2 b/firefox-6.0.1-source.tar.bz2
new file mode 100644
index 00000000..8ad1d69d
--- /dev/null
+++ b/firefox-6.0.1-source.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3f2b2b63100648934905643b6657de771fd811b7af249e39072847f9b97ec272
+size 66650089
diff --git a/l10n-6.0.1.tar.bz2 b/l10n-6.0.1.tar.bz2
new file mode 100644
index 00000000..c3777d63
--- /dev/null
+++ b/l10n-6.0.1.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:45add8f84533ea8fcad6a29122387f62cb49e70084d7f9873f84d786a3149822
+size 43739432
diff --git a/l10n-6.0.tar.bz2 b/l10n-6.0.tar.bz2
deleted file mode 100644
index ceafcda1..00000000
--- a/l10n-6.0.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:7a2751fecbc5b204b9ead664ad093e54b87d6de00133217a514eba12be22f739
-size 43685517

From 2fcf392463ee6706eb35ed5984372736c096d330ecedc9ca041057b7003e08e1 Mon Sep 17 00:00:00 2001
From: Petr Cerny <null@suse.de>
Date: Fri, 2 Sep 2011 14:40:55 +0000
Subject: [PATCH 4/5] OBS-URL:
 https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=220

---
 create-tar.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/create-tar.sh b/create-tar.sh
index 548565b0..ec6ad3a9 100644
--- a/create-tar.sh
+++ b/create-tar.sh
@@ -1,8 +1,8 @@
 #!/bin/bash
 
 BRANCH="releases/mozilla-release"
-RELEASE_TAG="FIREFOX_6_0_RELEASE"
-VERSION="6.0"
+RELEASE_TAG="FIREFOX_6_0_1_RELEASE"
+VERSION="6.0.1"
 
 # mozilla
 hg clone http://hg.mozilla.org/$BRANCH mozilla

From f864313e086df35161d7815cfd304cfea39d2faa726d4a110fffdc4af301d745 Mon Sep 17 00:00:00 2001
From: Petr Cerny <null@suse.de>
Date: Wed, 7 Sep 2011 16:09:13 +0000
Subject: [PATCH 5/5] - security update to 6.0.2 (bnc#714931)   * Complete
 blocking of certificates issued by DigiNotar     (bmo#683449)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=221
---
 MozillaFirefox.changes       | 7 +++++++
 MozillaFirefox.spec          | 4 ++--
 create-tar.sh                | 4 ++--
 firefox-6.0.1-source.tar.bz2 | 3 ---
 firefox-6.0.2-source.tar.bz2 | 3 +++
 l10n-6.0.1.tar.bz2           | 3 ---
 l10n-6.0.2.tar.bz2           | 3 +++
 7 files changed, 17 insertions(+), 10 deletions(-)
 delete mode 100644 firefox-6.0.1-source.tar.bz2
 create mode 100644 firefox-6.0.2-source.tar.bz2
 delete mode 100644 l10n-6.0.1.tar.bz2
 create mode 100644 l10n-6.0.2.tar.bz2

diff --git a/MozillaFirefox.changes b/MozillaFirefox.changes
index 3ffeb0b0..79352f36 100644
--- a/MozillaFirefox.changes
+++ b/MozillaFirefox.changes
@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Wed Sep  7 14:30:34 UTC 2011 - pcerny@suse.com
+
+- security update to 6.0.2 (bnc#714931)
+  * Complete blocking of certificates issued by DigiNotar
+    (bmo#683449)
+
 -------------------------------------------------------------------
 Fri Sep  2 14:40:07 UTC 2011 - pcerny@suse.com
 
diff --git a/MozillaFirefox.spec b/MozillaFirefox.spec
index f2f146d2..3028b6c9 100644
--- a/MozillaFirefox.spec
+++ b/MozillaFirefox.spec
@@ -19,7 +19,7 @@
 # norootforbuild
 
 %define major 6
-%define mainver %major.0.1
+%define mainver %major.0.2
 
 Name:           MozillaFirefox
 BuildRequires:  Mesa-devel autoconf213 fdupes gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python startup-notification-devel unzip update-desktop-files yasm zip
@@ -35,7 +35,7 @@ BuildRequires:  nss-shared-helper-devel
 License:        MPLv1.1 or GPLv2+ or LGPLv2+
 Version:        %{mainver}
 Release:        1
-%define         releasedate 2011090200
+%define         releasedate 2011090700
 Provides:       web_browser
 Provides:       firefox = %{version}-%{release}
 Provides:       firefox = %{mainver}
diff --git a/create-tar.sh b/create-tar.sh
index ec6ad3a9..3b944829 100644
--- a/create-tar.sh
+++ b/create-tar.sh
@@ -1,8 +1,8 @@
 #!/bin/bash
 
 BRANCH="releases/mozilla-release"
-RELEASE_TAG="FIREFOX_6_0_1_RELEASE"
-VERSION="6.0.1"
+RELEASE_TAG="FIREFOX_6_0_2_RELEASE"
+VERSION="6.0.2"
 
 # mozilla
 hg clone http://hg.mozilla.org/$BRANCH mozilla
diff --git a/firefox-6.0.1-source.tar.bz2 b/firefox-6.0.1-source.tar.bz2
deleted file mode 100644
index 8ad1d69d..00000000
--- a/firefox-6.0.1-source.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3f2b2b63100648934905643b6657de771fd811b7af249e39072847f9b97ec272
-size 66650089
diff --git a/firefox-6.0.2-source.tar.bz2 b/firefox-6.0.2-source.tar.bz2
new file mode 100644
index 00000000..34fa6d45
--- /dev/null
+++ b/firefox-6.0.2-source.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1ea81853e6f31d4987a6b7177e4e0f69a4771908d4f0cf011f09b3f4f3d3fb36
+size 66698926
diff --git a/l10n-6.0.1.tar.bz2 b/l10n-6.0.1.tar.bz2
deleted file mode 100644
index c3777d63..00000000
--- a/l10n-6.0.1.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:45add8f84533ea8fcad6a29122387f62cb49e70084d7f9873f84d786a3149822
-size 43739432
diff --git a/l10n-6.0.2.tar.bz2 b/l10n-6.0.2.tar.bz2
new file mode 100644
index 00000000..58394023
--- /dev/null
+++ b/l10n-6.0.2.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:57f6f9e224bcb62a849e12f11bbce2c0d8c0fbd36d46e839c736019c3239ddfb
+size 43614218