From 68cd992a85e18d3610a6d17b50b5af932ac05828948cfbc360bed5ecc161d2ac Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Wed, 8 Sep 2010 05:46:15 +0000
Subject: [PATCH] update to 3.6.9

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=164
---
 MozillaFirefox.changes       | 31 +++++++++++++++++++++++++++++++
 MozillaFirefox.spec          |  8 ++++----
 firefox-3.6.8-source.tar.bz2 |  3 ---
 firefox-3.6.9-source.tar.bz2 |  3 +++
 firefox-credits.patch        | 12 ++++++------
 l10n-3.6.8.tar.bz2           |  3 ---
 l10n-3.6.9.tar.bz2           |  3 +++
 7 files changed, 47 insertions(+), 16 deletions(-)
 delete mode 100644 firefox-3.6.8-source.tar.bz2
 create mode 100644 firefox-3.6.9-source.tar.bz2
 delete mode 100644 l10n-3.6.8.tar.bz2
 create mode 100644 l10n-3.6.9.tar.bz2

diff --git a/MozillaFirefox.changes b/MozillaFirefox.changes
index b79e0ef..6613b81 100644
--- a/MozillaFirefox.changes
+++ b/MozillaFirefox.changes
@@ -1,3 +1,34 @@
+-------------------------------------------------------------------
+Thu Aug 26 07:40:28 CEST 2010 - wr@rosenauer.org
+
+- security update to 3.6.9 (bnc#637303)
+  * MFSA 2010-49/CVE-2010-3169
+    Miscellaneous memory safety hazards
+  * MFSA 2010-50/CVE-2010-2765 (bmo#576447)
+    Frameset integer overflow vulnerability
+  * MFSA 2010-51/CVE-2010-2767 (bmo#584512)
+    Dangling pointer vulnerability using DOM plugin array
+  * MFSA 2010-53/CVE-2010-3166 (bmo#579655)
+    Heap buffer overflow in nsTextFrameUtils::TransformText
+  * MFSA 2010-54/CVE-2010-2760 (bmo#585815)
+    Dangling pointer vulnerability in nsTreeSelection
+  * MFSA 2010-55/CVE-2010-3168 (bmo#576075)
+    XUL tree removal crash and remote code execution
+  * MFSA 2010-56/CVE-2010-3167 (bmo#576070)
+    Dangling pointer vulnerability in nsTreeContentView
+  * MFSA 2010-57/CVE-2010-2766 (bmo#580445)
+    Crash and remote code execution in normalizeDocument
+  * MFSA 2010-59/CVE-2010-2762 (bmo#584180)
+    SJOW creates scope chains ending in outer object
+  * MFSA 2010-61/CVE-2010-2768 (bmo#579744)
+    UTF-7 XSS by overriding document charset using <object> type
+    attribute
+  * MFSA 2010-62/CVE-2010-2769 (bmo#520189)
+    Copy-and-paste or drag-and-drop into designMode document allows
+    XSS
+  * MFSA 2010-63/CVE-2010-2764 (bmo#552090)
+    Information leak via XMLHttpRequest statusText
+
 -------------------------------------------------------------------
 Wed Jul 28 08:33:14 CEST 2010 - meissner@suse.de
 
diff --git a/MozillaFirefox.spec b/MozillaFirefox.spec
index a579d96..5cde5e4 100644
--- a/MozillaFirefox.spec
+++ b/MozillaFirefox.spec
@@ -1,5 +1,5 @@
 #
-# spec file for package MozillaFirefox (Version 3.6.8)
+# spec file for package MozillaFirefox (Version 3.6.9)
 #
 # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #               2006-2010 Wolfgang Rosenauer
@@ -22,7 +22,7 @@
 Name:           MozillaFirefox
 %define xulrunner mozilla-xulrunner192
 BuildRequires:  autoconf213 gcc-c++ libcurl-devel libgnomeui-devel libidl-devel libnotify-devel python unzip update-desktop-files zip
-BuildRequires:  %{xulrunner}-devel = 1.9.2.8
+BuildRequires:  %{xulrunner}-devel = 1.9.2.9
 %if %suse_version > 1020
 BuildRequires:  fdupes
 %endif
@@ -34,9 +34,9 @@ BuildRequires:  wireless-tools
 License:        GPLv2+ ; LGPLv2.1+ ; MPLv1.1+
 Provides:       web_browser
 Provides:       firefox
-Version:        3.6.8
+Version:        3.6.9
 Release:        1
-%define         releasedate 2010072300
+%define         releasedate 2010082400
 Summary:        Mozilla Firefox Web Browser
 Url:            http://www.mozilla.org/
 Group:          Productivity/Networking/Web/Browsers
diff --git a/firefox-3.6.8-source.tar.bz2 b/firefox-3.6.8-source.tar.bz2
deleted file mode 100644
index 04677f7..0000000
--- a/firefox-3.6.8-source.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:38a76dbd1f566b13d375362d7ac15a615dec2e3572aef144f3765e38fb843fac
-size 50974426
diff --git a/firefox-3.6.9-source.tar.bz2 b/firefox-3.6.9-source.tar.bz2
new file mode 100644
index 0000000..602920d
--- /dev/null
+++ b/firefox-3.6.9-source.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d94cc4d1830ac5465ada4e42e101b8fe3b503f3700a47eb871dc483321a9cf46
+size 51105500
diff --git a/firefox-credits.patch b/firefox-credits.patch
index 383540f..f21105e 100644
--- a/firefox-credits.patch
+++ b/firefox-credits.patch
@@ -1,19 +1,18 @@
 diff --git a/browser/base/content/credits.xhtml b/browser/base/content/credits.xhtml
 --- a/browser/base/content/credits.xhtml
 +++ b/browser/base/content/credits.xhtml
-@@ -579,16 +579,19 @@
-             <li>Satoko Takita Yamaguchi (Chibi)</li>
-             <li>Christine Yen</li>
+@@ -583,16 +583,19 @@
              <li>Kohei Yoshino</li>
              <li>Shigeru Yoshitake</li>
+             <li>Tanner M. Young</li>
              <li>Boris Zbarsky</li>
              <li>Marco Zehe</li>
              <li>Matthew Zeier</li>
            </ul>
-+	  
-+          <h3>openSUSE RPM packaging</h3>
-+	  <ul><li>Wolfgang Rosenauer</li></ul>
  
++          <h3>openSUSE RPM packaging</h3>
++          <ul><li>Wolfgang Rosenauer</li></ul>
++
            <div dir="&locale.dir;">
              &credit.translation;
            </div>
@@ -21,3 +20,4 @@ diff --git a/browser/base/content/credits.xhtml b/browser/base/content/credits.x
  
          <!-- organizational supporters -->
          <div class="creditsGroup">
+           <h3 dir="&locale.dir;">&credit.thanks;</h3>
diff --git a/l10n-3.6.8.tar.bz2 b/l10n-3.6.8.tar.bz2
deleted file mode 100644
index c70610f..0000000
--- a/l10n-3.6.8.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:574120c6e4918fafb2bf912bfaf3ffe6bb90ed30c1158cc595e9db1cb9688767
-size 37225202
diff --git a/l10n-3.6.9.tar.bz2 b/l10n-3.6.9.tar.bz2
new file mode 100644
index 0000000..e807f90
--- /dev/null
+++ b/l10n-3.6.9.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:54cf4c1104e4499f533b28086043ddc507084155a5bf6326522adcd9fb3ebb06
+size 37540008