Accepted mozilla 2:1.7.10-0ubuntu1 (source)

Martin Pitt martin.pitt at ubuntu.com
Tue Jul 26 08:55:05 CDT 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 26 Jul 2005 10:51:00 +0200
Source: mozilla
Binary: mozilla mozilla-calendar mozilla-dom-inspector libnspr4 mozilla-js-debugger mozilla-browser libnss3 libnspr-dev mozilla-chatzilla mozilla-psm mozilla-mailnews libnss-dev mozilla-dev
Architecture: source
Version: 2:1.7.10-0ubuntu1
Distribution: breezy
Urgency: low
Maintainer: Takuo KITAME <kitame at debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description: 
 libnspr-dev - Netscape Portable Runtime library - development files
 libnspr4   - Netscape Portable Runtime Library
 libnss-dev - Network Security Service Libraries - development
 libnss3    - Network Security Service Libraries - runtime
 mozilla    - The Mozilla Internet application suite - meta package
 mozilla-browser - The Mozilla Internet application suite - core and browser
 mozilla-calendar - Todo organizer,calendar and reminder,integrated with Mozilla suit
 mozilla-chatzilla - Mozilla Web Browser - irc client
 mozilla-dev - The Mozilla Internet application suite - development files
 mozilla-dom-inspector - A tool for inspecting the DOM of pages in Mozilla.
 mozilla-js-debugger - JavaScript debugger for use with Mozilla
 mozilla-mailnews - The Mozilla Internet application suite - mail and news support
 mozilla-psm - The Mozilla Internet application suite - Personal Security Manage
Changes: 
 mozilla (2:1.7.10-0ubuntu1) breezy; urgency=low
 .
   * SECURITY UPDATE: Update to stable 1.7.10 release to fix several major
     flaws.
   * MFSA-2005-42: Code execution via javascript: IconURL
   * CAN-2005-1531, MFSA-2005-43: "Wrapped" javascript: urls bypass security
     checks.
   * CAN-2005-1532, MFSA-2005-44: Privilege escalation via non-DOM property
     overrides.
   * CAN-2005-2260, MFSA-2005-45: Content-generated event vulnerabilities.
   * CAN-2005-2261, MFSA-2005-46: XBL scripts ran even when Javascript
     disabled.
   * CAN-2005-2263, MFSA-2005-48: Same-origin violation with InstallTrigger
     callback.
   * CAN-2005-2265, MFSA-2005-50: Fix type checking in InstallVersion.compareTo.
   * CAN-2005-1937, MFSA-2005-51: The return of frame-injection spoofing.
   * CAN-2005-2266, MFSA-2005-52: Same origin violation: frame calling
     top.focus().
   * CAN-2005-2268, MFSA-2005-54: Javascript prompt origin spoofing.
   * CAN-2005-2269, MFSA-2005-55: XHTML node spoofing.
   * debian/patches/overthespot.dii: Fix compEvent constructor call for new API
     of MFSA-2005-45.
Files: 
 25cb339193c6cffc76454e531611a94d 1070 web optional mozilla_1.7.10-0ubuntu1.dsc
 56c1c9e336f86aa49942c9e3c28fda7a 312680 web optional mozilla_1.7.10-0ubuntu1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFC5kAUDecnbV4Fd/IRAp6xAJwPKXV6hlCXT35LVyPefhDZaXbqvACgwRDX
sBcZF6oQB1vuhuwFD5hWW6c=
=BqWa
-----END PGP SIGNATURE-----


Accepted:
mozilla_1.7.10-0ubuntu1.diff.gz
  to pool/main/m/mozilla/mozilla_1.7.10-0ubuntu1.diff.gz
mozilla_1.7.10-0ubuntu1.dsc
  to pool/main/m/mozilla/mozilla_1.7.10-0ubuntu1.dsc




More information about the breezy-changes mailing list