seamonkey-irc-2.0.10-0.7.1 RPM for x86_64

From OpenSuSE 11.3-test updates for x86_64

An IRC Client (Chatzilla) for SeaMonkey.

Provides

• seamonkey-irc
• seamonkey-irc(x86-64)

Requires

• rpmlib(VersionedDependencies) <= 3.0.3-1
• seamonkey <= 2.0.11
• rpmlib(PayloadFilesHavePrefix)
• rpmlib(CompressedFileNames)
• rpmlib(PayloadIsLzma) < 4.4.6-1

License

GPLv2+ ; LGPLv2.1+ ; MPLv1.1+

Changelog

* Wed Oct 27 2010 wr@rosenauer.org
  - security update to version 2.0.10 (bnc#649492)
    * MFSA 2010-73/CVE-2010-3765 (bmo#607222)
      Heap buffer overflow mixing document.write and DOM insertion
* Thu Oct 07 2010 wr@rosenauer.org
  - security update to version 2.0.9 (bnc#645315)
    * MFSA 2010-64/CVE-2010-3174/CVE-2010-3175/CVE-2010-3176
      Miscellaneous memory safety hazards
    * MFSA 2010-65/CVE-2010-3179 (bmo#583077)
      Buffer overflow and memory corruption using document.write
    * MFSA 2010-66/CVE-2010-3180 (bmo#588929)
      Use-after-free error in nsBarProp
    * MFSA 2010-67/CVE-2010-3183 (bmo#598669)
      Dangling pointer vulnerability in LookupGetterOrSetter
    * MFSA 2010-68/CVE-2010-3177 (bmo#556734)
      XSS in gopher parser when parsing hrefs
    * MFSA 2010-69/CVE-2010-3178 (bmo#576616)
      Cross-site information disclosure via modal calls
    * MFSA 2010-70/CVE-2010-3170 (bmo#578697)
      SSL wildcard certificate matching IP addresses
    * MFSA 2010-71/CVE-2010-3182 (bmo#590753, bnc#642502)
      Unsafe library loading vulnerabilities
    * MFSA 2010-72/CVE-2010-3173
      Insecure Diffie-Hellman key exchange
    * removed upstreamed mozilla-helper-app.patch
  - require mozilla-nss >= 3.12.8
* Wed Sep 15 2010 wr@rosenauer.org
  - update to 2.0.8
    * fixing startup topcrash (bmo#594699)
    * add "face" to the list of white-listed attributes (bmo#592601)
  - added Cairo LCD filter patch to enable subpixel hinting where
    supported (bnc#638186) (mozilla-cairo-lcd.patch)
* Thu Aug 26 2010 wr@rosenauer.org
  - security upate to 2.0.7 (bnc#637303)
    * MFSA 2010-49/CVE-2010-3169
      Miscellaneous memory safety hazards
    * MFSA 2010-50/CVE-2010-2765 (bmo#576447)
      Frameset integer overflow vulnerability
    * MFSA 2010-51/CVE-2010-2767 (bmo#584512)
      Dangling pointer vulnerability using DOM plugin array
    * MFSA 2010-53/CVE-2010-3166 (bmo#579655)
      Heap buffer overflow in nsTextFrameUtils::TransformText
    * MFSA 2010-54/CVE-2010-2760 (bmo#585815)
      Dangling pointer vulnerability in nsTreeSelection
    * MFSA 2010-55/CVE-2010-3168 (bmo#576075)
      XUL tree removal crash and remote code execution
    * MFSA 2010-56/CVE-2010-3167 (bmo#576070)
      Dangling pointer vulnerability in nsTreeContentView
    * MFSA 2010-57/CVE-2010-2766 (bmo#580445)
      Crash and remote code execution in normalizeDocument
    * MFSA 2010-60/CVE-2010-2763 (bmo#585284)
      XSS using SJOW scripted function
    * MFSA 2010-61/CVE-2010-2768 (bmo#579744)
      UTF-7 XSS by overriding document charset using <object> type
      attribute
    * MFSA 2010-62/CVE-2010-2769 (bmo#520189)
      Copy-and-paste or drag-and-drop into designMode document allows
      XSS
    * MFSA 2010-63/CVE-2010-2764 (bmo#552090)
      Information leak via XMLHttpRequest statusText
  - always use internal cairo (bnc#622375, bnc#626042)
* Fri Jul 16 2010 wr@rosenauer.org
  - security update to 2.0.6 (bnc#622506)
    * MFSA 2010-34/CVE-2010-1211/CVE-2010-1212
      Miscellaneous memory safety hazards
    * MFSA 2010-35/CVE-2010-1208 (bmo#572986)
      DOM attribute cloning remote code execution vulnerability
    * MFSA 2010-36/CVE-2010-1209 (bmo#552110)
      Use-after-free error in NodeIterator
    * MFSA 2010-37/CVE-2010-1214 (bmo#572985)
      Plugin parameter EnsureCachedAttrParamArrays remote code
      execution vulnerability
    * MFSA 2010-39/CVE-2010-2752 (bmo#574059)
      nsCSSValue::Array index integer overflow
    * MFSA 2010-40/CVE-2010-2753 (bmo#571106)
      nsTreeSelection dangling pointer remote code execution
      vulnerability
    * MFSA 2010-41/CVE-2010-1205 (bmo#570451)
      Remote code execution using malformed PNG image
    * MFSA 2010-42/CVE-2010-1213 (bmo#568148)
      Cross-origin data disclosure via Web Workers and importScripts
    * MFSA 2010-45/CVE-2010-1206/CVE-2010-2751 (bmo#536466,556957)
      Multiple location bar spoofing vulnerabilities
    * MFSA 2010-46/CVE-2010-0654 (bmo#524223)
      Cross-domain data theft using CSS
    * MFSA 2010-47/CVE-2010-2754 (bmo#568564)
      Cross-origin data leakage from script filename in error messages
* Fri May 07 2010 wr@rosenauer.org
  - security update to 2.0.5 (bnc#603356)
    * MFSA 2010-25/CVE-2010-1121 (bmo#555109)
      Re-use of freed object due to scope confusion
    * MFSA 2010-26/CVE-2010-1200/CVE-2010-1201/CVE-2010-1202/
      CVE-2010-1203
      Crashes with evidence of memory corruption (rv:1.9.1.10)
    * MFSA 2010-27/CVE-2010-0183 (bmo#557174)
      Use-after-free error in nsCycleCollector::MarkRoots()
    * MFSA 2010-28/CVE-2010-1198 (bmo#532246)
      Freed object reuse across plugin instances
    * MFSA 2010-29/CVE-2010-1196 (bmo#534666)
      Heap buffer overflow in nsGenericDOMDataNode::SetTextInternal
    * MFSA 2010-30/CVE-2010-1199 (bmo#554255)
      Integer Overflow in XSLT Node Sorting
    * MFSA 2010-31/CVE-2010-1125 (bmo#552255)
      focus() behavior can be used to inject or steal keystrokes
    * MFSA 2010-32/CVE-2010-1197 (bmo#537120)
      Content-Disposition: attachment ignored if
      Content-Type: multipart also present
    * MFSA 2010-33/CVE-2008-5913 (bmo#475585)
      User tracking across sites using Math.random()
* Thu Mar 18 2010 wr@rosenauer.org
  - security update to 2.0.4 (bnc#586567)
    * MFSA 2010-16/CVE-2010-0173/CVE-2010-0174
      Crashes with evidence of memory corruption
    * MFSA 2010-17/CVE-2010-0175 (bmo#540100,375928)
      Remote code execution with use-after-free in nsTreeSelection
    * MFSA 2010-18/CVE-2010-0176 (bmo#538308)
      Dangling pointer vulnerability in nsTreeContentView
    * MFSA 2010-19/CVE-2010-0177 (bmo#538310)
      Dangling pointer vulnerability in nsPluginArray
    * MFSA 2010-20/CVE-2010-0178 (bmo#546909)
      Chrome privilege escalation via forced URL drag and drop
    * MFSA 2010-22/CVE-2009-3555 (bmo#545755)
      Update NSS to support TLS renegotiation indication
    * MFSA 2010-23/CVE-2010-0181 (bmo#452093)
      Image src redirect to mailto: URL opens email editor
    * MFSA 2010-24/CVE-2010-0182 (bmo#490790)
      XMLDocument::load() doesn't check nsIContentPolicy
* Wed Feb 24 2010 wr@rosenauer.org
  - added translation subpackages
* Wed Feb 17 2010 wr@rosenauer.org
  - security update to 2.0.3 (bnc#576969)
    * MFSA-2010-01/CVE-2010-0159
      Crashes with evidence of memory corruption
    * MFSA-2010-02/CVE-2010-0160
      Web Worker Array Handling Heap Corruption Vulnerability
    * MFSA-2010-03/CVE-2009-1571 (bmo#526500)
      Use-after-free crash in HTML parser
    * MFSA-2010-04/CVE-2009-3988 (bmo#504862)
      XSS due to window.dialogArguments being readable cross-domain
    * MFSA-2010-05/CVE-2010-0162 (bmo#455472)
      XSS hazard using SVG document and binary Content-Type
* Mon Jan 18 2010 vuntz@opensuse.org
  - Remove unneeded orbit-devel BuildRequires.
* Wed Jan 06 2010 wr@rosenauer.org
  - stability update to 2.0.2 (bnc#568011)
    * DNS resolution in MakeSN of nsAuthSSPI causing issues for
      proxy servers that support NTLM auth (bmo#535193)
* Thu Dec 10 2009 wr@rosenauer.org
  - security update to 2.0.1 (bnc#559807)
    * MFSA 2009-65/CVE-2009-3979/CVE-2009-3980/CVE-2009-3982
      Crashes with evidence of memory corruption (rv:1.9.1.6)
    * MFSA 2009-66/CVE-2009-3388 (bmo#504843,bmo#523816)
      Memory safety fixes in liboggplay media library
    * MFSA 2009-67/CVE-2009-3389 (bmo#515882,bmo#504613)
      Integer overflow, crash in libtheora video library
    * MFSA 2009-68/CVE-2009-3983 (bmo#487872)
      NTLM reflection vulnerability
    * MFSA 2009-69/CVE-2009-3984/CVE-2009-3985 (bmo#521461,bmo#514232)
      Location bar spoofing vulnerabilities
    * MFSA 2009-70/VE-2009-3986 (bmo#522430)
      Privilege escalation via chrome window.opener
* Mon Oct 19 2009 wr@rosenauer.org
  - update to 2.0rc2 which might become the final 2.0 version
    * based on final Gecko 1.9.1.4 (build3)
* Thu Oct 08 2009 wr@rosenauer.org
  - update to 2.0rc1
    * based on Gecko 1.9.1.4
    * removed upstreamed patches
    * compatible with enigmail (bnc#544326, bnc#530811)
  - fixed startup notification (bnc#518603)
    (mozilla-startup-notification.patch)
* Mon Sep 14 2009 wr@rosenauer.org
  - update to 2.0b2
    * removed obsolete mozilla-jemalloc_deepbind.patch and
      mozilla-app-launcher.patch
  - remove obsolete code for protocol handlers (bmo#389732)
  - allow alternative button order for Gtk filechooser (bnc#527418)
  - added mozilla-prefer_plugin_pref.patch to introduce a new set of
    prefs to support preferring certain plugins for mime-types
  - added mozilla-sysplugin-biarch.patch to use
    /usr/$LIB/mozilla/plugins as system plugin dir (bmo#496708)
* Thu Aug 20 2009 wr@rosenauer.org
  - added Provides and Obsoletes for package merge (bnc#532678)
  - allow alternative button order for Gtk filechooser (bnc#527418)
* Tue Jul 28 2009 wr@rosenauer.org
  - fixed %exclude usage
* Tue Jul 21 2009 wr@rosenauer.org
  - update to 2.0b1
  - added create-tar.sh to source package
  - removed enigmail as it's provided as an own package built in
    Thunderbird now
* Thu Jul 09 2009 @rosenauer.org
  - update to 2.0a3-20090707 snapshot
  - define MOZ_APP_LAUNCHER for session management (bmo#453689)
    (mozilla-app-launcher.patch and mozilla.sh.in)
  - move intl.locale.matchOS to distribution specific prefs
    (removed locale.patch)
  - moved openSUSE specific prefs from greprefs to app prefs
  - added mozilla-jemalloc_deepbind.patch to fix various possible
    crashes (bnc#503151, bmo#493541)
  - added seamonkey-no-update.patch to hide the update menu item
* Wed Jun 17 2009 wr@rosenauer.org
  - major update to 2.0a3-20090617
    * based on Gecko 1.9.1
    * ported to Mozilla's toolkit
* Sat Apr 11 2009 wr@rosenauer.org
  - security update to 1.1.16 (bnc#488955,489411,492354)
    * MFSA 2009-12/CVE-2009-1169 (bmo#460090,485217)
      Crash and remote code execution in XSL transformation
    * MFSA 2009-13/CVE-2009-1044 (bmo#484320)
      Arbitrary code execution via XUL tree moveToEdgeShift
* Thu Mar 19 2009 wr@rosenauer.org
  - update to security release 1.1.15 (bnc#478625)
    * MFSA 2009-07/CVE-2009-0771, CVE-2009-0772, CVE-2009-0773
      CVE-2009-0774:
      Crashes with evidence of memory corruption (rv:1.9.0.7)
    * MFSA 2009-09/CVE-2009-0776:
      XML data theft via RDFXMLDataSource and cross-domain redirect
    * MFSA 2009-10/CVE-2009-0040:
      Upgrade PNG library to fix memory safety hazards
  - use nss-shared-helper from 11.1 on which allows migrating to and
    sharing with other applications using NSS
    (can be disabled completely exporting MOZ_SM_NO_NSSHELPER=1)

Files

/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/chrome
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/chrome.manifest
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/chrome/chatzilla.jar
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/chrome/icons
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/chrome/icons/default
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/chrome/icons/default/chatzilla-window.xpm
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/chrome/icons/default/chatzilla-window16.xpm
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/components
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/components/chatzilla-service.js
/usr/lib64/seamonkey/extensions/{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}/install.rdf

Generated by rpm2html 1.8.1

Fabrice Bellet, Mon May 20 05:30:44 2013