fixed up changelog

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox?expand=0&rev=127

MozillaFirefox.changes

@@ -1,3 +1,32 @@
+-------------------------------------------------------------------
+Sat Oct 17 23:19:23 CEST 2009 - wr@rosenauer.org
+
+- security update to version 3.5.4 (bnc#545277)
+  * MFSA 2009-52/CVE-2009-3370 (bmo#511615)
+    Form history vulnerable to stealing
+  * MFSA 2009-53/CVE-2009-3274 (bmo#514823)
+    Local downloaded file tampering
+  * MFSA 2009-54/CVE-2009-3371 (bmo#514554)
+    Crash with recursive web-worker calls
+  * MFSA 2009-55/CVE-2009-3372 (bmo#500644)
+    Crash in proxy auto-configuration regexp parsing
+  * MFSA 2009-56/CVE-2009-3373 (bmo#511689)
+    Heap buffer overflow in GIF color map parser
+  * MFSA 2009-57/CVE-2009-3374 (bmo#505988)
+    Chrome privilege escalation in XPCVariant::VariantDataToJS()
+  * MFSA 2009-59/CVE-2009-1563 (bmo#516396, bmo#516862)
+    Heap buffer overflow in string to number conversion
+  * MFSA 2009-61/CVE-2009-3375 (bmo#503226)
+    Cross-origin data theft through document.getSelection()
+  * MFSA 2009-62/CVE-2009-3376 (bmo#511521)
+    Download filename spoofing with RTL override
+  * MFSA 2009-63/CVE-2009-3377/CVE-2009-3379/CVE-2009-3378
+    Upgrade media libraries to fix memory safety bugs
+  * MFSA 2009-64/CVE-2009-3380/CVE-2009-3381/CVE-2009-3383
+    Crashes with evidence of memory corruption
+- removed upstreamed patch
+  * firefox-bug506901.patch 
+
 -------------------------------------------------------------------
 Wed Oct  7 20:11:24 CEST 2009 - llunak@novell.com