[csw-users] /testing seamonkey 1.1.10

Alessio a.cervellin at acm.org
Fri Jul 4 23:03:43 CEST 2008


Seamonkey 1.1.10 is now available on http://www.blastwave.org/testing
This is a security & stability fix release.

The following is the rough changelog:
90584 charset=... must be applied to non-MIME Subject:/From:/To:/etc. fields
236389 Don't set type/creator codes for any saved/downloaded files
240261 [1.8 branch] peer-trusted certs can use alt names to spoof
282660 Crash [@ jsds_NotifyPendingDeadScripts] ds->script is null
286661 can't install extensions over ssl, fails with message "Download
error"
305073 FIREFOX caused an invalid page fault [@ MSVCRT.DLL + 0xd16a]
308429 make tooMuchGC dynamic (runtime gczeal option)
323508 Favicon (error icon) in Bookmark not updated
334514 FrameArena::~FrameArena should assert that it's empty
347367 crash when print preview is opened on a certain file styled with
meda=print [@ BasicTableLayoutStrategy::CalcPctAdjTableWidth]
356378 "invalid getter usage" or assertion failure with "var x; x
getter= function () { };"
371292 Crash [@ js_AtomToPrintableString]
378027 Printing crash [@ nsCellMap::GetCellInfoAt] Exception:
EXC_BAD_INSTRUCTION (0x0002)
380833 Crash during GC after uneval (involves E4X, mysterious sharp
variable)
390295 Searchplugin with digit in url cuts off url
390788 Accessing innerWidth of a tabbrowser contentWindow throws
NS_ERROR_XPC_SECURITY_MANAGER_VETO
391178 Crash [@ nsCSSFrameConstructor::FindFrameWithContent] with XUL
trees, position:fixed
397093 Faulty .properties file results in uninitialized memory being used
401188 Thread-unsafe updates to sub-atomic rt->gc{Poke,Zeal}
403059 Dropdown list for "File Selected Message" is double spaced;
arrows are missing.
411433 file location URL in directory listing should be HTML escaped
413161 nsIPrincipal needs a stricter origin
414982 Use gcZeal setting in nsJSEnvironment, as we once did with
WAY_TOO_MUCH_GC
416282 Seamonkey/xpfe needs patch for bug 376473
416751 rich text editor no longer in designmode when navigating back
417957 Setting mail.auth_login and mail.server.default.auth_login to
false breaks IMAP after restart
417994 navigator object does not fully reflect user agent settings
418128 Yet another GC hazard with ++/-- in js_Interpret
418356 [FIX]It's unsafe to use mozIJSSubScriptLoader.loadSubScript()
with non-chrome urls or chrome urls whose scheme/host part contain
uppercase characters
418645 Visible Region Notify message does not work when scrolling client
window
419350 [ia64] build failure using gcc 4.3
419846 Non-chrome XUL documents can load chrome scripts from the
fastload file
421622 XMLHttpRequest from chrome content clears Referer header
421689 Mozilla won't build with XCode 3.1
421715 canvas.2dcontext.putImageData(array[undefined]) causes a crash [@
JS_GetProperty]
422118 Crash reading malformed zip [@nsZipArchive::BuildFileList]
423042 js.c Print should flush
423182 changes the default MOZ_ZIP_FORMAT from .tar.gz to .zip
423541 Arbitrary file upload via originalTarget and DOM Range
424291 Crash [@ nsCellMap::SetNextSibling] while trying to print
425576 Crash on login to Excite Japan Blog (exblog.jp) after updating to
Firefox 2.0.0.13 [@ js_MarkGCThing]
425594 new branch top crash [@ js_GC] maybe also crash [@
js_MarkGCThing][@js_GetGCThingFlags]
426628 Land dynamic gczeal on 1.8 branch
427185 JS Assertion from hell with gczeal 2
427216 Make tools menu popup match other applications
428606 New version of JEP (0.9.6.4), please land on trunk and branch
428669 Crash testcase for bug 425576
428672 XSS using an event handler attached to the outer window
429731 Changing new tab preference to home page in new profile results
in chrome://navigator-region/locale/region.properties
430814 Crash [@ nsStyleContext::GetStyleDisplay] while trying to print
431184 Composer badly handles XHTML documents
431489 js_DecompileCode should not print if Decompile failed
431819 IMAP/POP/SMTP/LDAP with SSL client auth, Thunderbird repeatedly
prompts for client certificate
432311 branch landing of bug#351476 (conversion of line endings in
browser/EULA)
432591 Fix for bug 428672 can be circumvented by using XUL element
433328 XSS using <script> element in unloaded document
436575 Moz apps experience unkillable hangs after installing Mac OS X
10.5.3 (loading VerifiedDownloadPlugin.plugin)
436670 default color constants should be vars in EdColorProps.js
438941 Update SeaMonkey version number on GECKO181_20080612_RELBRANCH
439735 exploitable crash at nsBlockFrame::DrainOverflowLines
440308 XSS by using XMLHttpRequest and onreadystatechange handler





More information about the users mailing list