Debian Package Tracker

From: Laszlo Boszormenyi (GCS) <gcs@debian.hu>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted mozilla 2:1.7.13-0.3 (source i386)
Date: Wed, 09 Aug 2006 14:17:16 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed,  2 Aug 2006 17:26:11 +0200
Source: mozilla
Binary: mozilla mozilla-calendar mozilla-dom-inspector libnspr4 mozilla-js-debugger mozilla-browser libnss3 libnspr-dev mozilla-chatzilla mozilla-psm mozilla-mailnews libnss-dev mozilla-dev
Architecture: source i386
Version: 2:1.7.13-0.3
Distribution: unstable
Urgency: critical
Maintainer: Takuo KITAME <kitame@debian.org>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.hu>
Description: 
 libnspr-dev - Netscape Portable Runtime library - development files
 libnspr4   - Netscape Portable Runtime Library
 libnss-dev - Network Security Service Libraries - development
 libnss3    - Network Security Service Libraries - runtime
 mozilla    - The Mozilla Internet application suite - meta package
 mozilla-browser - The Mozilla Internet application suite - core and browser
 mozilla-calendar - Todo organizer,calendar and reminder,integrated with Mozilla suit
 mozilla-chatzilla - Mozilla Web Browser - irc client
 mozilla-dev - The Mozilla Internet application suite - development files
 mozilla-dom-inspector - A tool for inspecting the DOM of pages in Mozilla.
 mozilla-js-debugger - JavaScript debugger for use with Mozilla
 mozilla-mailnews - The Mozilla Internet application suite - mail and news support
 mozilla-psm - The Mozilla Internet application suite - Personal Security Manage
Changes: 
 mozilla (2:1.7.13-0.3) unstable; urgency=critical
 .
   * Non-maintainer upload to fix security bugs, thanks to Alexander Sack for
     the patchset.
    * Fix multiple security issues:
        + CAN-2005-2270/MFSA 2005-56 Code execution through shared function
          objects
        + CAN-2005-2269/MFSA 2005-55 XHTML node spoofing
        + CAN-2005-2268/MFSA 2005-54 Javascript prompt origin spoofing
        + CAN-2005-2266/MFSA 2005-52 Same origin violation: frame calling
          top.focus()
        + CAN-2005-1937/MFSA 2005-51 The return of frame-injection spoofing
        + CAN-2005-2265/MFSA 2005-50 Possibly exploitable crash in
          InstallVersion.compareTo()
        + CAN-2005-2263/MFSA 2005-48 Same-origin violation with InstallTrigger
          callback
        + CAN-2005-2261/MFSA 2005-46 XBL scripts ran even when Javascript
          disabled
        + CAN-2005-2260/MFSA 2005-45 Content-generated event vulnerabilities
Files: 
 588a9dab6ebecc9913295169095fb586 1097 web optional mozilla_1.7.13-0.3.dsc
 53854d2a7e937c8325864c5b984d1508 355296 web optional mozilla_1.7.13-0.3.diff.gz
 4e89c9d8646307b1b901f61b13b9b8aa 1030 web optional mozilla_1.7.13-0.3_i386.deb
 78119c4ab04a0d8b9ad2b7f808b03bd8 9719320 web optional mozilla-browser_1.7.13-0.3_i386.deb
 f82ff359fc3a792f0a8abdb9bfa631d9 3345978 devel optional mozilla-dev_1.7.13-0.3_i386.deb
 0c95999e5b99dbb770a904a8bd6a667a 1786608 mail optional mozilla-mailnews_1.7.13-0.3_i386.deb
 7f9bb2af80ce921a7aef7b72a8d1b56f 158342 net optional mozilla-chatzilla_1.7.13-0.3_i386.deb
 0b9631bcd48c62d5df7049d716a8617c 187152 web optional mozilla-psm_1.7.13-0.3_i386.deb
 238afd372c94d8e038c7b2847c6bb46e 116612 web optional mozilla-dom-inspector_1.7.13-0.3_i386.deb
 dbb745385f50919551fd8be364657da5 204164 devel optional mozilla-js-debugger_1.7.13-0.3_i386.deb
 c5e226384025dcfe98f2956d2bbb0551 403374 misc optional mozilla-calendar_1.7.13-0.3_i386.deb
 aeb073c88b6e55f77f7feb70d1522c4a 132820 libs optional libnspr4_1.7.13-0.3_i386.deb
 71236a187d8f6dbfb2b3b0b8b2f5f1b2 168058 libdevel optional libnspr-dev_1.7.13-0.3_i386.deb
 07250e4a7a3a65f16b0cd69173066883 673618 libs optional libnss3_1.7.13-0.3_i386.deb
 b93811c1659fc0187b700442bcb98311 184934 libdevel optional libnss-dev_1.7.13-0.3_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)

iD8DBQFE2kvNMDatjqUaT90RAqd2AJ91p7TbRlPIhes1te/sbZVDcbjM6wCfegoI
DoLM28YA0gx3FSfpltul5k4=
=e3KM
-----END PGP SIGNATURE-----


Accepted:
libnspr-dev_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/libnspr-dev_1.7.13-0.3_i386.deb
libnspr4_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/libnspr4_1.7.13-0.3_i386.deb
libnss-dev_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/libnss-dev_1.7.13-0.3_i386.deb
libnss3_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/libnss3_1.7.13-0.3_i386.deb
mozilla-browser_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-browser_1.7.13-0.3_i386.deb
mozilla-calendar_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-calendar_1.7.13-0.3_i386.deb
mozilla-chatzilla_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-chatzilla_1.7.13-0.3_i386.deb
mozilla-dev_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-dev_1.7.13-0.3_i386.deb
mozilla-dom-inspector_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-dom-inspector_1.7.13-0.3_i386.deb
mozilla-js-debugger_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-js-debugger_1.7.13-0.3_i386.deb
mozilla-mailnews_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-mailnews_1.7.13-0.3_i386.deb
mozilla-psm_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla-psm_1.7.13-0.3_i386.deb
mozilla_1.7.13-0.3.diff.gz
  to pool/main/m/mozilla/mozilla_1.7.13-0.3.diff.gz
mozilla_1.7.13-0.3.dsc
  to pool/main/m/mozilla/mozilla_1.7.13-0.3.dsc
mozilla_1.7.13-0.3_i386.deb
  to pool/main/m/mozilla/mozilla_1.7.13-0.3_i386.deb
News for package mozilla
