Fedora 13 Update: mozilla-noscript-

updates at fedoraproject.org updates at fedoraproject.org
Sun Feb 28 14:44:30 UTC 2010

Fedora Update Notification
2010-02-28 14:42:21

Name        : mozilla-noscript
Product     : Fedora 13
Version     :
Release     : 1.fc13
URL         : http://noscript.net/
Summary     : JavaScript white list extension for Mozilla Firefox
Description :
The NoScript Firefox extension provides extra protection for Firefox.
It allows JavaScript, Java, Flash and other plug-ins to be executed only by
trusted web sites of your choice (e.g. your online bank) and additionally
provides Anti-XSS protection.

Update Information:

Changes since    [+] new feature, [x] bug fix, [-] removed feature,
[=] repackaging or cosmetic change    v
=================================================================  + Updated ABE
grammar to use new AddressMatcher syntactic sugar  + Alert about ABE syntax
errors when option dialog gets focused after a    ruleset editing (thanks al_9x
for suggestion)      v
=================================================================  + .x.y
AddressMatcher syntactic sugar, matching both x.y and *.x.y (thanks    al_9x for
suggestion)  + InjectionChecker speed and accuracy improvements  x Fixed top-
level site not being correctly positioned and highlighted in    permissions menu
sometimes (thanks nagan for report)  x Fixed post-XSS "Unsafe reload" not
working properly sometimes    v
=================================================================  x Fixed a
second level InjectionChecker bypass, requiring an open redirect    which
accepts and uses unfiltered data: URIs. Responsible disclosure by    the
SecuriTeam Secure Disclosure (SSD) project  x Fixed reload on permission change
being triggered on the nearest 10 tabs    only  x Fixed permanent address entry
being added to the whitelist if domain is    already allowed upon bookmarklet
execution (thanks Bobabo for report)  x Better UI behavior for URLs with non-
standard ports (thanks al_9x for    report)  x Updated nb-NO localization    v  =================================================================  x
Fixed XSS checks skipped on some reloads (thanks Alejandro Rusell for    report)
x Improved content placeholder management  x Mobile version bump    v
=================================================================  x Fixed
uneeded tab reload issue related to untrusted subdomains (thanks    al_9x for
reporting)  x Optimized reload checks for the "hundreds of tabs" case, in order
to    prevent UI locking  x Improved XSS checks on file uploads, should not hang
even on gigabytes  x Trunk compatibility version bump

This update can be installed with the "yum" update program.  Use 
su -c 'yum update mozilla-noscript' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

More information about the package-announce mailing list