[mozilla-https-everywhere] update to upstream 2.0.2

Russell William Golden niveusluna at fedoraproject.org
Fri Apr 20 18:24:46 UTC 2012 

commit b9745c0b980690fd51c8b75a0d15e6fb97704266
Author: Russell Golden <niveusluna at centos6.(none)>
Date:   Fri Apr 20 13:24:33 2012 -0500

    update to upstream 2.0.2

 .gitignore                    |    1 +
 mozilla-https-everywhere.spec |   24 +++++++++++++++++++++++-
 sources                       |    1 +
 3 files changed, 25 insertions(+), 1 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index bbea042..db715f8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,3 +4,4 @@
 /https-everywhere-1.2.1.xpi
 /https-everywhere-1.2.2.xpi
 /https-everywhere-2.0.1.xpi
+/https-everywhere-2.0.2.xpi
diff --git a/mozilla-https-everywhere.spec b/mozilla-https-everywhere.spec
index 5ec3cef..76a4928 100644
--- a/mozilla-https-everywhere.spec
+++ b/mozilla-https-everywhere.spec
@@ -8,7 +8,7 @@
 %global seamonkey_inst_dir %{moz_extensions}/%{seamonkey_app_id}
 
 Name:           mozilla-https-everywhere
-Version:        2.0.1
+Version:        2.0.2
 Release:        1%{?dist}
 Summary:        HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey
 
@@ -144,6 +144,28 @@ rm -rf %{buildroot}
 
 
 %changelog
+* Fri Apr 20 2012 Russell Golden <niveusluna at niveusluna.org> - 2.0.2-1
+- Fix a weird wrong DOM-origin bug that occurred while redirects were in
+  --  progress (this might have security implications, although we are unsure
+  --  if it was exploitable).
+  --  https://trac.torproject.org/projects/tor/ticket/5477
+- By default, use https://google.co.cctld instead of
+  --  encrypted.google.com
+- Add an optional ruleset to use https://www.google.com
+  -- instead of encrypted.google.com, too
+- Ruleset fixes: Debian, Kohls, Malwarebytes, Yandex, Wikipedia, Mises.org,
+  -- OpenDNS, Wizards of the Coast, Lenovo, Barnes and Noble
+  --  https://trac.torproject.org/projects/tor/ticket/5509
+  --  https://trac.torproject.org/projects/tor/ticket/5491
+  --  https://trac.torproject.org/projects/tor/ticket/5303
+- Stumble across more horrible security holes in the Verizon website:
+  --  https://mail1.eff.org/pipermail/https-everywhere-rules/2012-February/001003.html
+- Disable the Gentoo ruleset on non-CAcert platforms
+- Disable buggy rulesets: IBM, Scribd, Wunderground :( :( :(
+  --  https://trac.torproject.org/projects/tor/ticket/5344
+  --  https://trac.torproject.org/projects/tor/ticket/5435
+  --  https://trac.torproject.org/projects/tor/ticket/5630
+
 * Wed Feb 29 2012 Russell Golden <niveusluna at niveusluna.org> - 2.0.1-1
 - Sync to upstream 2.0.x branch
 - Too many changes to all list here. None affect the end user experience.
diff --git a/sources b/sources
index d329bf0..719ec75 100644
--- a/sources
+++ b/sources
@@ -3,3 +3,4 @@ c39416a445b3709c0c0f6ded2be37eb9  https-everywhere-1.2.xpi
 8ae87aefaa5fb64aefc7cbd38526fde7  https-everywhere-1.2.1.xpi
 24709c1460322a9a063f3ce191fbd72b  https-everywhere-1.2.2.xpi
 05921026cda5038d1a4f27d2cf8a083d  https-everywhere-2.0.1.xpi
+34591e14e4a82561a1a98df5313fb84f  https-everywhere-2.0.2.xpi

More information about the scm-commits mailing list