Bug 9063

Summary: [UPDATE REQUEST 2014.1] newmoon 27.9.2
Product: [ROSA-based products] ROSA Fresh Reporter: Алзим <alzim>
Component: Packages from MainAssignee: ROSA Linux Bugs <bugs>
Status: RESOLVED FIXED QA Contact: ROSA Linux Bugs <bugs>
Severity: normal    
Priority: Normal CC: andrey.bondrov, v.potapov
Version: AllFlags: v.potapov: qa_verified+
andrey.bondrov: published+
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Platform: --- ROSA Vulnerability identifier:
RPM Package: ISO-related:
Bad POT generating: Upstream:

Description Алзим 2018-05-29 03:45:39 MSK 
Pale Moon 27.9.2

Changes/fixes:
// We changed the language strings for softblocked items so people will cry less when we do our job.
// (CVE-2018-5174) Prevent potential SmartScreen bypass on Windows 10.
// (CVE-2018-5173) Fixed an issue in the Downloads panel improperly rendering some Unicode characters, allowing for the file name to be spoofed. This could be used to obscure the file extension of potentially executable files from user view in the panel.
// (CVE-2018-5177) Fixed a vulnerability in the XSLT component leading to a buffer overflow and crash if it occurs.
// (CVE-2018-5159) Fixed an integer overflow vulnerability in the Skia library resulting in possible out-of-bounds writes.
// (CVE-2018-5154) Fixed a use-after-free vulnerability while enumerating attributes during SVG animations with clip paths.
// (CVE-2018-5178) Fixed a buffer overflow during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable extension in order to occur. 
// Fixed several stability issues (crashes) and memory safety hazards.
Comment 2 Vladimir Potapov 2018-06-01 16:56:16 MSK 
The update is sent to expanded testing
*****************************************
Comment 3 Vladimir Potapov 2018-06-04 18:37:56 MSK 
newmoon-27.9.2-1
https://abf.io/build_lists/2927790
https://abf.io/build_lists/2927791

newmoon-l10n-27.9.2-1
https://abf.io/build_lists/2927794
https://abf.io/build_lists/2927795
****************************** Advisory *************************
Updated to 27.9.2
*****************************************************************
QA Verified