* MFSA 2013-41/CVE-2013-0801/CVE-2013-1669

Miscellaneous memory safety hazards * MFSA 2013-42/CVE-2013-1670 (bmo#853709) Privileged access for content level constructor * MFSA 2013-43/CVE-2013-1671 (bmo#842255) File input control has access to full path * MFSA 2013-46/CVE-2013-1674 (bmo#860971) Use-after-free with video and onresize event * MFSA 2013-47/CVE-2013-1675 (bmo#866825) Uninitialized functions in DOMSVGZoomEvent * MFSA 2013-48/CVE-2013-1676/CVE-2013-1677/CVE-2013-1678/ CVE-2013-1679/CVE-2013-1680/CVE-2013-1681 Memory corruption found using Address Sanitizer OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=334
2013-05-14 18:15:06 +00:00 · 2013-05-14 18:15:06 +00:00 · 4ed42ee8c7
commit 4ed42ee8c7
parent e44b8338d6
1 changed files with 13 additions and 0 deletions
--- a/MozillaFirefox.changes
+++ b/MozillaFirefox.changes
@ -4,6 +4,19 @@ Fri May 10 05:25:39 UTC 2013 - wr@rosenauer.org
 - update to Firefox 21.0 (bnc#819204)
  * removed upstreamed patch firefox-712763.patch
  * removed disabled mozilla-disable-neon-option.patch
+  * MFSA 2013-41/CVE-2013-0801/CVE-2013-1669
+    Miscellaneous memory safety hazards
+  * MFSA 2013-42/CVE-2013-1670 (bmo#853709)
+    Privileged access for content level constructor
+  * MFSA 2013-43/CVE-2013-1671 (bmo#842255)
+    File input control has access to full path
+  * MFSA 2013-46/CVE-2013-1674 (bmo#860971)
+    Use-after-free with video and onresize event
+  * MFSA 2013-47/CVE-2013-1675 (bmo#866825)
+    Uninitialized functions in DOMSVGZoomEvent
+  * MFSA 2013-48/CVE-2013-1676/CVE-2013-1677/CVE-2013-1678/
+    CVE-2013-1679/CVE-2013-1680/CVE-2013-1681
+    Memory corruption found using Address Sanitizer

 -------------------------------------------------------------------
 Tue Apr  9 06:41:31 UTC 2013 - wr@rosenauer.org