drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in xulrunner
Name: |
Mehrere Probleme in xulrunner |
|
ID: |
FEDORA-2011-17400 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 16 |
|
Datum: |
Fr, 23. Dezember 2011, 16:35 |
|
Referenzen: |
Keine Angabe |
|
Applikationen: |
XULRunner |
|
Originalnachricht |
Name : xulrunner Product : Fedora 16 Version : 9.0 Release : 2.fc16 URL : http://developer.mozilla.org/En/XULRunner Summary : XUL Runtime for Gecko Applications Description : XULRunner is a Mozilla runtime package that can be used to bootstrap XUL+XPCOM applications that are as rich as Firefox and Thunderbird. It provides mechanisms for installing, upgrading, and uninstalling these applications. XULRunner also provides libxul, a solution which allows the embedding of Mozilla technologies in other projects and products.
------------------------------------------------------------------------------- - Update Information:
The latest version of Firefox and Thunderbird have the following changes:
* Added Type Inference, significantly improving JavaScript performance
* Added support for querying Do Not Track status via JavaScript
* Added support for font-stretch
* Improved support for text-overflow
* Improved standards support for HTML5, MathML, and CSS
* Fixed several stability issues
* Fixed several security issues
Update nss to 3.13.1
You can find the new features and bug fixes in NSS 3.13 and 3.13.1 with these Bugzilla queries:
https://bugzilla.mozilla.org/buglist.cgi?list_id=1496878&resolution=FIXED&classification=Components&query_format=advanced&target_milestone=3.13&product=NSS
and
https://bugzilla.mozilla.org/buglist.cgi?list_id=1496878&resolution=FIXED&classification=Components&query_format=advanced&target_milestone=3.13.1&product=NSS
Notable changes include:
1. SSL 2.0 is disabled by default.
2. A defense against the SSL 3.0 and TLS 1.0 CBC chosen plaintext attack
demonstrated by Rizzo and Duong (CVE-2011-3389) is enabled by default.
Set the SSL_CBC_RANDOM_IV SSL option to PR_FALSE to disable it.
3. SHA-224 is supported.
4. Added PORT_ErrorToString and PORT_ErrorToName to return the
error message and symbolic name of an NSS error code.
5. Added NSS_GetVersion to return the NSS version string.
6. Added experimental support of RSA-PSS to the softoken only
(contributed by Hanno Böck, http://rsapss.hboeck.de/).
------------------------------------------------------------------------------- - ChangeLog:
* Tue Dec 20 2011 Jan Horak <jhorak@redhat.com> - 9.0-2 - Update to 9.0 * Fri Dec 9 2011 Martin Stransky <stransky@redhat.com> 9.0-1.beta5 - Updated to 9.0 Beta 5 * Wed Dec 7 2011 Jan Horak <jhorak@redhat.com> - 8.0-5 - Gnome 3 proxy settings are now honoured (mozbz#682832) * Tue Dec 6 2011 Tom Callaway <spot@fedoraproject.org> 8.0-4 - fix bug in npapi.h causing compile failures * Fri Nov 25 2011 Martin Stransky <stransky@redhat.com> 8.0-3 - s390 build fixes * Mon Nov 7 2011 Martin Stransky <stransky@redhat.com> 8.0-1 - Updated to 8.0 * Tue Oct 18 2011 Ville Skyttä <ville.skytta@iki.fi> - 7.0.1-5 - Avoid %post/un shell invocations and dependencies (rhbz#736830). * Tue Oct 18 2011 Martin Stransky <stransky@redhat.com> 7.0.1-4 - Updated cairo dependency (rhbz#742853) * Tue Oct 11 2011 Dan Horák <dan[at]danny.cz> 7.0.1-3 - fix build on secondary arches * Mon Oct 10 2011 Martin Stransky <stransky@redhat.com> 7.0.1-2 - Removed GRE stuff - Removed xulrunner rpath (mozbz#686434) ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update xulrunner' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|