-
Committer:
Chad Miller
-
Date:
2013-06-01 13:21:03 UTC
-
mfrom:
(734.6.35 p-quantal)
-
Revision ID:
chad.miller@canonical.com-20130601132103-f9q7p5in4492yrjl
* New stable release 27.0.1453.93:
- CVE-2013-2837: Use-after-free in SVG.
- CVE-2013-2838: Out-of-bounds read in v8.
- CVE-2013-2839: Bad cast in clipboard handling.
- CVE-2013-2840: Use-after-free in media loader.
- CVE-2013-2841: Use-after-free in Pepper resource handling.
- CVE-2013-2842: Use-after-free in widget handling.
- CVE-2013-2843: Use-after-free in speech handling.
- CVE-2013-2844: Use-after-free in style resolution.
- CVE-2013-2845: Memory safety issues in Web Audio.
- CVE-2013-2846: Use-after-free in media loader.
- CVE-2013-2847: Use-after-free race condition with workers.
- CVE-2013-2848: Possible data extraction with XSS Auditor.
- CVE-2013-2849: Possible XSS with drag+drop or copy+paste.
* Drop unneeded patches,
safe-browsing-sigbus.patch
dont-assume-cross-compile-on-arm.patch
struct-siginfo.patch
ld-memory-32bit.patch
* Update webapps patches.
* Update arm-neon patch, format-flag patch, search-credit patch,
title-bar-system-default patch.
* Make get-orig-source nicer. Package tarball contents from upstream
correctly.