SeaMonkey

lp:~gnomefreak/seamonkey/seamonkey-1.1.x-dev

Created by John Vivirito on 2009-02-10 and last modified on 2009-03-31

Get this branch:: bzr branch lp:~gnomefreak/seamonkey/seamonkey-1.1.x-dev

Only John Vivirito can upload to this branch. If you are John Vivirito please log in for upload directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: John Vivirito

Project:: SeaMonkey

Status:: Merged

Recent revisions

161. By John Vivirito on 2009-03-21: * New security upstream release: 1.1.15 (LP: #309655)
  - CVE-2009-0040: Upgrade PNG library to fix memory safety hazard
  - CVE-2009-0352: Crashes with evidence of memory corruption (rv:1.9.0.6)
  - CVE-2009-0357: XMLHttpRequest allows reading HTTPOnly cookies
  - CVE-2009-0771: Crashes with evidence of memory corruption (rv:1.9.0.7)
  - CVE-2009-0776: XML data theft via RDFXMLDataSource and cross-domain redirect
160. By John Vivirito on 2009-02-14: * Updated changelog to another version since PPA wont allow me to
upload this version now using ~jjv1
159. By John Vivirito on 2009-02-11: * debian/changelog: Updated with all CVE's
158. By Alexander Sack on 2009-02-10: * new security upstream release: 1.1.14
  - CVE-...
* drop patches applied upstream
  - delete debian/patches/35_zip_cache.patch
  - update debian/patches/series
157. By Alexander Sack on 2008-11-26: * RELEASE 1.1.13+nobinonly-0ubuntu1 to ubuntu/jaunty
156. By Alexander Sack on 2008-11-26: * re-run autoconf2.13 to update configure patch to changed upstream codebase
- update debian/patches/99_configure.patch
155. By Alexander Sack on 2008-11-26: * New security upstream release: 1.1.13 (LP: #297789)
  - CVE-2008-4582: Information stealing via local shortcut files
  - CVE-2008-5012: Image stealing via canvas and HTTP redirect
  - CVE-2008-5013: Arbitrary code execution via Flash Player dynamic module unloading
  - CVE-2008-5014: Crash and remote code execution via __proto__ tampering
  - CVE-2008-5017: Browser engine crash - Firefox 2 and 3
  - CVE-2008-5018: JavaScript engine crashes - Firefox 2 and 3
  - CVE-2008-5019: XSS and JavaScript privilege escalation via session restore
  - CVE-2008-0017: Buffer overflow in http-index-format parser
  - CVE-2008-5021: Crash and remote code execution in nsFrameManager
  - CVE-2008-5022: nsXMLHttpRequest::NotifyEventListeners() same-origin violation
  - CVE-2008-5023: -moz-binding property bypasses security checks on codebase principals
  - CVE-2008-5024: Parsing error in E4X default namespace
  - CVE-NOTASSIGN (MFSA2008-59): Script access to .documentURI and .textContent in mail
154. By Fabien Tassin on 2008-09-30: * RELEASE 1.1.12+nobinonly-0ubuntu1 to ubuntu/intrepid
153. By Fabien Tassin on 2008-09-30: * New security upstream release: 1.1.12 (LP: #276437)
152. By Fabien Tassin on 2008-07-30: * RELEASE 1.1.11+nobinonly-0ubuntu1 to ubuntu/intrepid

Branch metadata

Branch format:: Branch format 6

Repository format:: Bazaar pack repository format 1 (needs bzr 0.92)

This branch contains Public information

Everyone can see this information.

Subscribers

John Vivirito