seamonkey 1.1.12+nobinonly-0ubuntu0.8.04.1 source package in Ubuntu
Changelog
seamonkey (1.1.12+nobinonly-0ubuntu0.8.04.1) hardy-security; urgency=low * New security upstream release: 1.1.12 (LP: #276437) - CVE-2008-4070: Heap overflow when canceling newsgroup message - CVE-2008-4069: XBM image uninitialized memory reading - CVE-2008-4067..4068: resource: traversal vulnerabilities - CVE-2008-4065..4066: BOM characters stripped from JavaScript before execution - CVE-2008-4061..4064: Crashes with evidence of memory corruption - CVE-2008-4058..4060: Privilege escalation via XPCnativeWrapper pollution - CVE-2008-3837: Forced mouse drag - CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation - CVE-2008-0016: UTF-8 URL stack buffer overflow * Also includes security fixes from 1.1.11 and 1.1.10 (LP: #218534) - CVE-2008-2785: Remote code execution by overflowing CSS reference counter - CVE-2008-2811: Crash and remote code execution in block reflow - CVE-2008-2810: Remote site run as local file via Windows URL shortcut - CVE-2008-2809: Peer-trusted certs can use alt names to spoof - CVE-2008-2808: File location URL in directory listings not escaped properly - CVE-2008-2807: Faulty .properties file results in uninitialized memory being used - CVE-2008-2806: Arbitrary socket connections with Java LiveConnect on Mac OS X - CVE-2008-2805: Arbitrary file upload via originalTarget and DOM Range - MFSA 2008-26 (follow-up of CVE-2008-0304): Buffer length checks in MIME processing - CVE-2008-2803: Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript() - CVE-2008-2802: Chrome script loading from fastload file - CVE-2008-2801: Signed JAR tampering - CVE-2008-2800: XSS through JavaScript same-origin violation - CVE-2008-2798..2799: Crashes with evidence of memory corruption - CVE-2008-1380: Crash in JavaScript garbage collector * Refresh diverged patch: - update debian/patches/80_security_build.patch * Fix FTBFS with missing -lfontconfig - add debian/patches/11_fix_ftbfs_with_fontconfig.patch - update debian/patches/series -- Fabien Tassin <email address hidden> Tue, 30 Sep 2008 22:44:30 +0200
Upload details
- Uploaded by:
- Fabien Tassin
- Uploaded to:
- Hardy
- Original maintainer:
- Ubuntu-Mozilla-Team
- Architectures:
- any
- Section:
- net
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| seamonkey_1.1.12+nobinonly.orig.tar.gz | 43.4 MiB | 7844330566779c67e86a44590399b752baf2418e6e16146cbd3f339f4cf88383 |
| seamonkey_1.1.12+nobinonly-0ubuntu0.8.04.1.diff.gz | 136.0 KiB | 19330151355758b1cbcaf63e156ea55dbdcb1ce3bb9ea485b8591f43cf862176 |
| seamonkey_1.1.12+nobinonly-0ubuntu0.8.04.1.dsc | 1.6 KiB | 86a25f6719dfcb3096bdff25efb452648f4afa6f2e404e32ed14703a96955d86 |
Available diffs
Binary packages built by this source
- iceape: No summary available for iceape in ubuntu hardy.
No description available for iceape in ubuntu hardy.
- iceape-browser: No summary available for iceape-browser in ubuntu hardy.
No description available for iceape-browser in ubuntu hardy.
- iceape-calendar: No summary available for iceape-calendar in ubuntu hardy.
No description available for iceape-calendar in ubuntu hardy.
- iceape-chatzilla: No summary available for iceape-chatzilla in ubuntu hardy.
No description available for iceape-chatzilla in ubuntu hardy.
- iceape-dbg: No summary available for iceape-dbg in ubuntu hardy.
No description available for iceape-dbg in ubuntu hardy.
- iceape-dev: No summary available for iceape-dev in ubuntu hardy.
No description available for iceape-dev in ubuntu hardy.
- iceape-dom-inspector: No summary available for iceape-dom-inspector in ubuntu hardy.
No description available for iceape-
dom-inspector in ubuntu hardy.
- iceape-gnome-support: No summary available for iceape-gnome-support in ubuntu hardy.
No description available for iceape-
gnome-support in ubuntu hardy.
- iceape-mailnews: No summary available for iceape-mailnews in ubuntu hardy.
No description available for iceape-mailnews in ubuntu hardy.
- mozilla: No summary available for mozilla in ubuntu hardy.
No description available for mozilla in ubuntu hardy.
- mozilla-browser: No summary available for mozilla-browser in ubuntu hardy.
No description available for mozilla-browser in ubuntu hardy.
- mozilla-calendar: No summary available for mozilla-calendar in ubuntu hardy.
No description available for mozilla-calendar in ubuntu hardy.
- mozilla-chatzilla: No summary available for mozilla-chatzilla in ubuntu hardy.
No description available for mozilla-chatzilla in ubuntu hardy.
- mozilla-dev: No summary available for mozilla-dev in ubuntu hardy.
No description available for mozilla-dev in ubuntu hardy.
- mozilla-dom-inspector: No summary available for mozilla-dom-inspector in ubuntu hardy.
No description available for mozilla-
dom-inspector in ubuntu hardy.
- mozilla-js-debugger: No summary available for mozilla-js-debugger in ubuntu hardy.
No description available for mozilla-js-debugger in ubuntu hardy.
- mozilla-mailnews: No summary available for mozilla-mailnews in ubuntu hardy.
No description available for mozilla-mailnews in ubuntu hardy.
- mozilla-psm: No summary available for mozilla-psm in ubuntu hardy.
No description available for mozilla-psm in ubuntu hardy.
- seamonkey: No summary available for seamonkey in ubuntu hardy.
No description available for seamonkey in ubuntu hardy.
- seamonkey-browser: No summary available for seamonkey-browser in ubuntu hardy.
No description available for seamonkey-browser in ubuntu hardy.
- seamonkey-chatzilla: No summary available for seamonkey-chatzilla in ubuntu hardy.
No description available for seamonkey-chatzilla in ubuntu hardy.
- seamonkey-dbg: No summary available for seamonkey-dbg in ubuntu hardy.
No description available for seamonkey-dbg in ubuntu hardy.
- seamonkey-dev: No summary available for seamonkey-dev in ubuntu hardy.
No description available for seamonkey-dev in ubuntu hardy.
- seamonkey-dom-inspector: No summary available for seamonkey-dom-inspector in ubuntu hardy.
No description available for seamonkey-
dom-inspector in ubuntu hardy.
- seamonkey-gnome-support: No summary available for seamonkey-gnome-support in ubuntu hardy.
No description available for seamonkey-
gnome-support in ubuntu hardy.
- seamonkey-mailnews: No summary available for seamonkey-mailnews in ubuntu hardy.
No description available for seamonkey-mailnews in ubuntu hardy.
