DELTA 383985 0 21254 SVN#W"CSve~GbX5(x^]QAn0<+V=86 `EjoTU8o DMl8~_'RՒ3ޙ\oXV% ZжH6:#]=sGy{|O'ԦE_[v#c}bUQ黈>a3e]?iy94A*Q|DHȕXa':w|#|iopf4?:%Dh/PPPDiCa%rxPtXyҰK(=a}0Y%xq ˁSnQELI,FO\@$|c2!:2oVܺ*>?؆!P@N?8 Ux^R0 =_a i;!Xа?Z8pYZIpIV^NKk*zѴ/_MGWU˲N#KxT7SpL\,nu9d@㏏#G|PR6 %*(̎L>!D#1(n)[SBnCIPY΅ K"@ָhey"6Ѫ O義o6vI}>|Gj9P틌l/Y|oRSx* Xx^n0 S=WCSZah1,{Fm6Jrܼ}za '=ցtw'g$Vk.f fr=Ҥ!hC@z@%]Gl6P?&f}c;%#O&4m/B8dL|wb]V(M]R~yLRRJL.93nڈעJTm(yt7.wa$ݦ WN)pT 3ۧǟ0ƠmJd#>=coՅx Xg/m]4ō)L"3fT %|%x\UyP<nx^Qj@='_18N\0IiPF#kIlԯJ if͛u3x޷]T.,LҜ~‚^Gukuuegi=>l@v5-۪]1 ̿s-g Lç&P_2.MlB!\i0`B=_L,R*srPcQVբG-#=u d6o&8RXx.q PއzRx޾I|i~-9/lw i4Tid` {At^iqd]}6ǷkdKRVIW T'eJʛV(/wT !f+=hNG>bQ@hCxҙ"!V2[3XhZk; 324.23 thunderbird 24.2MFSA 2013-116 JPEG information leak

MFSA 2013-105 Application Installation doorhanger persists on navigation

MFSA 2013-106 Character encoding cross-origin XSS attack

MFSA 2013-107 Sandbox restrictions not applied to nested object elements

bT䵻 *VHP gXqlמl8"9Xd{1h]*kcؖy.~,;5dQM,<>A$asml'q{\_gbK-yu h;G3Y Ȼ.|lSXjO7#- #|e] exFmXEŮ,Gp7fG2;<fg5 JQ.!tB1P'F9|2% r@13%4sr@K1O gZV}.r"yø,kk uZh\/ӯd5sH8X7Vs/BE] 7`?]`A=%:iWI`H`$߶&A|  #;"J?^weQ0IW0_.9f6d"> Subversionsubversion 1.7.01.7.9 1.0.01.6.2Subversion team reports:

CVE-2013-0836 CVE-2013-0837 CVE-2013-08383-01-10 2013-01-11

[147499] Critical CVE-2012-5108: Race condition in audio device handling. Credit to Atte Kettunen of OUSPG.

[148692] Medium CVE-2012-5109: OOB read in ICU regex. Credit to Arthur Gerkis.

[151449] Medium CVE-2012-5110: Out-of-bounds read in compositor. Credit to Gool^uc4Q 2x^QMk0=o~KlÛ dӖJ)>&,I68a/mћfچl\{M>D0{\hHAt[|y@[ڼv h[&puhUEֈ5iH#E0#X w,NhiJ @0 b"sΓŠ(]iw j~^ ָR6ZrPGVMJT(A̓ZmLjTq ѩmwԌc"i1/G׺t;c]vU׸n]UնV=ntO%IC>!v׮>pR, L#_ oț;.2(%ۺ)J7[cow9Lх+]He^_ٱE>_N)!.K}ٳ+(T|$v h:u-x^QKk1>'bH.aW^'<.^,zȒ*ͮYIDi<&&GL!iOAV MQ'zmcݨ|]*pOz^8./F jԱ^?Z(U  ,Bܢg`[HC|'&ky=F0gwJvRGV:FTyd'X̫}&:S'!{kop2͠ #_x;_E [_F2XJ8@Lґ4e(HX,׹L./$oU\382YX8_Ϋzq ˆsaV!JϦFУfoCVE-2011-0226 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-0226 2011-07-19 2011-08-11

Critical vulnerabilities have been identified in Adobe Flash Player 10.3Ѡ{N! %x^N@)@(4ZHQ9jx=Y} h)XƥTQ_~]|XG,BG9G0,/P31SAmXzw}!qN6 *( 9 -&իwb]{arszGo +oО9d dd eu?Ka LPTu gNq vΓ, Rҁݬ7 2үU 'qGnGxi 8x^n0 Sۊf @^zڡz,Ȓ!6,)c )_1͏vh3eU~??=Cr&1AGC4;CZm+^I<9͍8{,A wF+O0O>PƒߠS`K_E M67/$K}LuPd'4.8ReC |d.M =X99s,bA4Jp\8BH$_Yƃ|ZvAv1h56۪23o-xԲ,:_$%XITB-^-gVzJ O_wt rZ&ΔڕWkXs՚9O9C$>tNwJp [x^R]0|%l9qMj8G{P(\"mY2uJNrǂ ;ٙYbh |,Š][ܲZȾݢ^`} n7/OP[0YnAyG$w>4j Jf^mZO S[Fa^&CK91OqCϥoK<0Zzt)G6Dn- ALi.B IQb:x'R/?>C):#䪖(ݾibl ׎Q|N7vEHֽZeE)ťsuy8:_-R*i?-ö~P* Ԯ.(4X/Zz_ ՀmRxa&oENGT?k)bY{0v8#G"'"rwG|8X#jEurl> 2009-04-08 2009-05-15

Some vulnerabilities have been reported in MoinMoin, which can be exploited by malicious people to conduct cross-site scripting attacks.-M:nw[%qʦq؆>4>_CFӾ[*" ZC33S-LbAdYŖ R1Pkg`fo"j+Bh:1 " U @8䒲6F<ӫU :7N2 s7n|E܆H~Ep``]{/ ,žLtZp[^nhؼoN5u0{Pޯ|~#ٓJ+O6Ⱥ0;Y63 Xu6&ֳjy2X}|^@ x^OO0 )|úv0j 8 &`W/u7KiR9i|znOn9vY $|XϏz[](M4pnzpcUS٣YT'ఢ޲9P[_'vzh-DBi5F CW+(5G-Ί6cFX?-LzkοZ7?6̅ۑ=. 2PQeiHee&aL,.N ƭ'qpX@){ RÆJ+ԙ_OZMx5Fܰf: 1l5F-EofP2qqОx|-.}! UaJXT>J@S:px^EM _1꥗|lJ{$qOxxxhC|aOg*c8 @AM e>My `., \+9 \Y\4ꅍ|JT_A"UauɥF2 0claK](dkh5WƵc鄳DkR;oҮy Ҿͨ̅Ntxly?|H"08#S'dèfn{'U,Qe:Q`<&Z.&Vaau֣(Gf- j}N]7 v]wUc[!(19,?T_큃1B Bx^m͎0 S{%kc,tzho=hYEKz{7=DXCbdU[Hﭕ"DUV=@aU r%+`$AT4bPT iZ,`o]pul *OZ%v81[+Z1l#]Hx#Q겞fl8+HG #m"lsA~hGR,yC*5}Hݾ/bIWJr2܍}/`:ї>xt<ʎL])b^Ut=ԫ>st{aӵBh@on)+靁6SVpHym>k/}_h˷. I9OEFa=JNf]~L?) 'x^Oo0 ˧ rJ50`,Ы,3VEr):n$n{|˹<o ̴|*AؿvNj5Ѹa7h2Nvf6F>H8Qu"E~Iu :ú5F$xEem0{$+m4k-p{a!ip%Hc\2b,Ky ߨ$UIzƁ g-fԒ~FwiAI\բ9!$:aH*F>%_A0ZOa.cRoІAv:n6H,Ƿ8B*mx^N0S4t9$ L]NRHx{[6bI~O{LEtSk`R̟P#h0x[Ky"bo۰&-)-uPWv8m?¡q9u9 6W u&w>09<ޖ<}ק,vZvJGV?u v"h4Ԥ-;Q+t"`W߉Ο6`QW6- sWC,Xеaxgr@}q ?ݾVٴ34[d x^An0EsD R)BhQU)e~LilҮ-=.7'%I6?+ *4`z3KG`4(Êjدb*®s=˓Mgx- FA a dO-AkMmAG! 6^F3KOCt-X|P',n0l# {ibd'dkS' ?p-h\0*5c _AZЯ.Nb"B܀FW0+͖,Oq,ʖ'8leqX_I溁 s sx^Rn0 =_AҤmە" "KN7d|i>>(4I)-h @UtOTa&SiJN'u @aomr~bsyLcc@/%f~ ZLTqϑIeeL"|`37Zdؖc~DBm"J%_>LKdvUlM[9;a#˧{= _7w0r-B%TN.>kq7#wүC6OZ& fGjn>t4̑}P%ۇPӲ!CtHA?j 2x^MQn08djʔ$6V@QtЎYVb9}cqLj ּ ):K5rp5a{"+X>'N_EUE}+|YyO<`ƄfVvB>4끎NhJ>1]VM:L/bգ荇>q)ސwQ)z\d}UU(7e[l6F.EY2Pf__(vc!\!kO .<NOR?#w?;R.x^mRAr0 <;.RhtIsHHBLX)Kn{(/$/B^s i&AsPB4# SJblCi^\&cck;[:h[NI3n6)|0z~ ^>羿JL|y`5|^DCDc(PXw.& +vS)$MFH~1d"W SR%>.du!gje/Z&3+4؎[ҿF0D y WҀx H;Mj//[l ?Ai+΃ ^ˑhZO8Ɨ.u9|m݀&P4ނǖE& \ 5'@U }oB,#NuxFY"AnBJYĖ'7"Vb;ُȘ+;3{똼8=/J,T G-9JWưe^ٙܭ^KydlJьa F.Qc9;tT),uiYXՆS Y^9ҬD,#X Jl-6 {+v ?߁>@Ozv?f .x^UAo@HԗXR! fe6$R%$쾏,) oz~)w?8sÐaNXNUD! *أb,ydA$6E9o P|mZw(etBCc059 Ԉd^4҄ 0^Ѹ@=^v-;=w`%-+S\C|Tuc&}LAz! rEZטáxcҟB w&<9\hyr)y(>,=wcaVbfuE+/:vpoBMLHqlmX|:j'TI\v:HPH5H|lE5jXt4I0 'g`xl]N?\1^y:

When a remote server provides a large "content-length" header value, Gaim will attempt to allocate a buffer to store the content, however this allocation attempt will cause Gaim to crash if the length exceeds the amount of possible memory. This happens when reading profile information on some protocols. It also happens when smiley themes are installed via drag and dropȀb%?v| fx^n0 S˲8M @v+(n('i2DSPyk^Gv)~<>HN:8NrOISY=,_~~Vuu ޴^[4v-YPqi.-љ~tBGՀ%-r^AdJGgP;E O'#=Q{B<% %n*ѢZn\}`wyG xGPl02㬫}4_Sd㘾7̅? ˔.|2''v1." ;08eC~T›Π|o"p!D?Q@R<0v}h|x^EPn =;_1z Icw[?0Ql/8!-l'ZƂ89 ցP,HԸ+OxAA&= 219\23#އ]e!`SC#J$rv3alST9urtb?9}IO(XpIUn7Z>LPΏeڇk#,U]NcӔ8ZآFb9$u&z3&9;GW{T/YBlSf@!H,Nճ`1WV!bE0cvA%-n1.R]!Ff}]nƆ