Accepted firefox 2.0.0.1+0dfsg-0ubuntu1 (source)
Kees Cook
kees at ubuntu.com
Thu Dec 21 23:02:12 GMT 2006
Accepted:
OK: firefox_2.0.0.1+0dfsg-0ubuntu1.dsc
-> Component: main Section: web
OK: firefox_2.0.0.1+0dfsg.orig.tar.gz
OK: firefox_2.0.0.1+0dfsg-0ubuntu1.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 21 Dec 2006 09:51:22 -0800
Source: firefox
Binary: libnspr4 firefox-dom-inspector firefox-dev mozilla-firefox mozilla-firefox-dev mozilla-firefox-dom-inspector libnss3 libnspr-dev firefox-gnome-support firefox-dbg libnss-dev mozilla-firefox-gnome-support firefox
Architecture: source
Version: 2.0.0.1+0dfsg-0ubuntu1
Distribution: feisty
Urgency: low
Maintainer: Eric Dorland <eric at debian.org>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
firefox - lightweight web browser based on Mozilla
firefox-dbg - debugging symbols for firefox
firefox-dev - Development files for Mozilla Firefox
firefox-dom-inspector - tool for inspecting the DOM of pages in Mozilla Firefox
firefox-gnome-support - Support for Gnome in Mozilla Firefox
libnspr-dev - Netscape Portable Runtime library - development files
libnspr4 - Netscape Portable Runtime Library
libnss-dev - Network Security Service Libraries - development
libnss3 - Network Security Service Libraries - runtime
mozilla-firefox - Transition package for firefox rename
mozilla-firefox-dev - dummy transitional package
mozilla-firefox-dom-inspector - Transition package for firefox rename
mozilla-firefox-gnome-support - Transition package for firefox rename
Changes:
firefox (2.0.0.1+0dfsg-0ubuntu1) feisty; urgency=low
.
* New upstream security update:
- CVE-2006-6507, MFSA 2006-76: XSS using outer window's Function object.
- CVE-2006-6506, MFSA 2006-75: RSS Feed-preview referrer leak.
- CVE-2006-6504, MFSA 2006-73: SVG Processing Remote Code Execution.
- CVE-2006-6503, MFSA 2006-72: XSS by setting img.src to javascript: URI.
- CVE-2006-6502, MFSA 2006-71: LiveConnect crash finalizing JS objects.
- CVE-2006-6501, MFSA 2006-70: Privilege escallation using watch point.
- CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, MFSA 2006-68: Crashes
with evidence of memory corruption.
* debian/rules: use original upstream icons (Closes LP#68180).
* debian/debsearch.src: make feisty the default debsearch target.
* browser/base/content/utilityOverlay.js: change Launchpad translation/help
pages for Feisty.
Files:
fb9f897ac4e46fa062e056d30d47f066 1208 web optional firefox_2.0.0.1+0dfsg-0ubuntu1.dsc
1cb13be9a35205af63fe70eeff14eb0e 46670638 web optional firefox_2.0.0.1+0dfsg.orig.tar.gz
ed1873f6a0f1ec62efe23d347478b4e2 322587 web optional firefox_2.0.0.1+0dfsg-0ubuntu1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFFiwysH/9LqRcGPm0RAgy4AJ44WVcoW7dFmNDLMN1gzFGGC/455ACfTYpU
FXfP8QqsyXjf+wDG7a1tAQM=
=Zkhr
-----END PGP SIGNATURE-----
More information about the feisty-changes
mailing list