- Committer: Bazaar Package Importer
- Date: 2009-03-31 19:26:56 UTC
- mfrom: (1.2.1 upstream)
- Revision ID: james.westby@ubuntu.com-20090331192656-4b18f1r30ri0poud
* New security upstream release - backports for ffox 3.0.8
+ Fixed on Firefox EOL branch
- MFSA 2009-13 Arbitrary code execution through XUL <tree> element
- MFSA 2009-12 XSL Transformation vulnerability
- MFSA 2009-10 Upgrade PNG library to fix memory safety hazards
- MFSA 2009-09 XML data theft via RDFXMLDataSource and cross-domain redirect
- MFSA 2009-07 Crashes with evidence of memory corruption (rv:1.9.0.7)
- MFSA 2009-05 XMLHttpRequest allows reading HTTPOnly cookies
- MFSA 2009-03 Local file stealing with SessionStore
- MFSA 2009-01 Crashes with evidence of memory corruption (rv:1.9.0.6)
+ Fixed in Firefox 2.0.0.20
- MFSA 2008-65 Cross-domain data theft via script redirect error message (Windows)
+ Fixed in Firefox 2.0.0.19
- MFSA 2008-69 XSS vulnerabilities in SessionStore
- MFSA 2008-68 XSS and JavaScript privilege escalation
- MFSA 2008-67 Escaped null characters ignored by CSS parser
- MFSA 2008-66 Errors parsing URLs with leading whitespace and control characters
- MFSA 2008-65 Cross-domain data theft via script redirect error message
- MFSA 2008-64 XMLHttpRequest 302 response disclosure
- MFSA 2008-62 Additional XSS attack vectors in feed preview
- MFSA 2008-61 Information stealing via loadBindingDocument
- MFSA 2008-60 Crashes with evidence of memory corruption (rv:1.9.0.5/1.8.1.19)
+ Fixed in Firefox 2.0.0.18
- MFSA 2008-58 Parsing error in E4X default namespace
- MFSA 2008-57 -moz-binding property bypasses security checks on codebase principals
- MFSA 2008-56 nsXMLHttpRequest::NotifyEventListeners() same-origin violation
- MFSA 2008-55 Crash and remote code execution in nsFrameManager
- MFSA 2008-54 Buffer overflow in http-index-format parser
- MFSA 2008-53 XSS and JavaScript privilege escalation via session restore
- MFSA 2008-52 Crashes with evidence of memory corruption (rv:1.9.0.4/1.8.1.18)
- MFSA 2008-50 Crash and remote code execution via __proto__ tampering
- MFSA 2008-49 Arbitrary code execution via Flash Player dynamic module unloading
- MFSA 2008-48 Image stealing via canvas and HTTP redirect
- MFSA 2008-47 Information stealing via local shortcut files
+ Fixed in Firefox 2.0.0.17
- MFSA 2008-45 XBM image uninitialized memory reading
- MFSA 2008-44 resource: traversal vulnerabilities
- MFSA 2008-43 BOM characters stripped from JavaScript before execution
- MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17)
- MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
- MFSA 2008-40 Forced mouse drag
- MFSA 2008-39 Privilege escalation using feed preview page and XSS flaw
- MFSA 2008-38 nsXMLDocument::OnChannelRedirect() same-origin violation
- MFSA 2008-37 UTF-8 URL stack buffer overflow
+ Fixed on Firefox EOL branch
- MFSA 2009-13 Arbitrary code execution through XUL <tree> element
- MFSA 2009-12 XSL Transformation vulnerability
- MFSA 2009-10 Upgrade PNG library to fix memory safety hazards
- MFSA 2009-09 XML data theft via RDFXMLDataSource and cross-domain redirect
- MFSA 2009-07 Crashes with evidence of memory corruption (rv:1.9.0.7)
- MFSA 2009-05 XMLHttpRequest allows reading HTTPOnly cookies
- MFSA 2009-03 Local file stealing with SessionStore
- MFSA 2009-01 Crashes with evidence of memory corruption (rv:1.9.0.6)
+ Fixed in Firefox 2.0.0.20
- MFSA 2008-65 Cross-domain data theft via script redirect error message (Windows)
+ Fixed in Firefox 2.0.0.19
- MFSA 2008-69 XSS vulnerabilities in SessionStore
- MFSA 2008-68 XSS and JavaScript privilege escalation
- MFSA 2008-67 Escaped null characters ignored by CSS parser
- MFSA 2008-66 Errors parsing URLs with leading whitespace and control characters
- MFSA 2008-65 Cross-domain data theft via script redirect error message
- MFSA 2008-64 XMLHttpRequest 302 response disclosure
- MFSA 2008-62 Additional XSS attack vectors in feed preview
- MFSA 2008-61 Information stealing via loadBindingDocument
- MFSA 2008-60 Crashes with evidence of memory corruption (rv:1.9.0.5/1.8.1.19)
+ Fixed in Firefox 2.0.0.18
- MFSA 2008-58 Parsing error in E4X default namespace
- MFSA 2008-57 -moz-binding property bypasses security checks on codebase principals
- MFSA 2008-56 nsXMLHttpRequest::NotifyEventListeners() same-origin violation
- MFSA 2008-55 Crash and remote code execution in nsFrameManager
- MFSA 2008-54 Buffer overflow in http-index-format parser
- MFSA 2008-53 XSS and JavaScript privilege escalation via session restore
- MFSA 2008-52 Crashes with evidence of memory corruption (rv:1.9.0.4/1.8.1.18)
- MFSA 2008-50 Crash and remote code execution via __proto__ tampering
- MFSA 2008-49 Arbitrary code execution via Flash Player dynamic module unloading
- MFSA 2008-48 Image stealing via canvas and HTTP redirect
- MFSA 2008-47 Information stealing via local shortcut files
+ Fixed in Firefox 2.0.0.17
- MFSA 2008-45 XBM image uninitialized memory reading
- MFSA 2008-44 resource: traversal vulnerabilities
- MFSA 2008-43 BOM characters stripped from JavaScript before execution
- MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17)
- MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
- MFSA 2008-40 Forced mouse drag
- MFSA 2008-39 Privilege escalation using feed preview page and XSS flaw
- MFSA 2008-38 nsXMLDocument::OnChannelRedirect() same-origin violation
- MFSA 2008-37 UTF-8 URL stack buffer overflow
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 .. |
|||||||
accessible
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
browser
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
build
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
calendar
|
1.1.7 | 17 years ago | Bazaar Package Importer | Import upstream version 1.8.1.4 |
|
||
|
caps
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
chrome
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
config
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
content
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
db
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
dbm
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
debian
|
2 | 18 years ago | Bazaar Package Importer | * The "finally a new upstream" release. * Fixes th |
|
||
|
directory
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
docshell
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
dom
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
editor
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
embedding
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
extensions
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
gc
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
gfx
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
intl
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
ipc
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
jpeg
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
js
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
l10n
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
layout
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
lib
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
mail
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
mailnews
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
modules
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
netwerk
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
nsprpub
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
parser
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
plugin
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
profile
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
rdf
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
README
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
security
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
storage
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
sun-java
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
themes
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
toolkit
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
tools
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
uriloader
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
view
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
webshell
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
widget
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
xpcom
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
xpfe
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
xpinstall
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
|
xulrunner
|
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 |
|
||
.mozconfig.mk |
27 | 15 years ago | Bazaar Package Importer | * New security upstream release - backports for ff | 326 bytes |
|
|
|
.mozconfig.out |
27 | 15 years ago | Bazaar Package Importer | * New security upstream release - backports for ff | Empty |
|
|
|
aclocal.m4 |
1.1.7 | 17 years ago | Bazaar Package Importer | Import upstream version 1.8.1.4 | 687 bytes |
|
|
allmakefiles.sh |
27 | 15 years ago | Bazaar Package Importer | * New security upstream release - backports for ff | 465 KB |
|
|
|
client.mak |
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 | 1.7 KB |
|
|
|
client.mk |
27 | 15 years ago | Bazaar Package Importer | * New security upstream release - backports for ff | 33 KB |
|
|
|
configure |
27 | 15 years ago | Bazaar Package Importer | * New security upstream release - backports for ff | 610 KB |
|
|
|
configure.in |
27 | 15 years ago | Bazaar Package Importer | * New security upstream release - backports for ff | 244 KB |
|
|
|
LEGAL |
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 | 2.5 KB |
|
|
|
LICENSE |
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 | 30.1 KB |
|
|
|
Makefile.in |
1.1.7 | 17 years ago | Bazaar Package Importer | Import upstream version 1.8.1.4 | 11.9 KB |
|
|
|
makefile.win |
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 | 1.7 KB |
|
|
|
nglayout.mk |
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 | 95 bytes |
|
|
|
README.txt |
1 | 18 years ago | Bazaar Package Importer | Import upstream version 1.8.0.4 | 9.3 KB |
|
|