[mozilla-https-everywhere] update to upstream 2.0.2
Russell William Golden
niveusluna at fedoraproject.org
Fri Apr 20 18:24:46 UTC 2012
commit b9745c0b980690fd51c8b75a0d15e6fb97704266
Author: Russell Golden <niveusluna at centos6.(none)>
Date: Fri Apr 20 13:24:33 2012 -0500
update to upstream 2.0.2
.gitignore | 1 +
mozilla-https-everywhere.spec | 24 +++++++++++++++++++++++-
sources | 1 +
3 files changed, 25 insertions(+), 1 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index bbea042..db715f8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,3 +4,4 @@
/https-everywhere-1.2.1.xpi
/https-everywhere-1.2.2.xpi
/https-everywhere-2.0.1.xpi
+/https-everywhere-2.0.2.xpi
diff --git a/mozilla-https-everywhere.spec b/mozilla-https-everywhere.spec
index 5ec3cef..76a4928 100644
--- a/mozilla-https-everywhere.spec
+++ b/mozilla-https-everywhere.spec
@@ -8,7 +8,7 @@
%global seamonkey_inst_dir %{moz_extensions}/%{seamonkey_app_id}
Name: mozilla-https-everywhere
-Version: 2.0.1
+Version: 2.0.2
Release: 1%{?dist}
Summary: HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey
@@ -144,6 +144,28 @@ rm -rf %{buildroot}
%changelog
+* Fri Apr 20 2012 Russell Golden <niveusluna at niveusluna.org> - 2.0.2-1
+- Fix a weird wrong DOM-origin bug that occurred while redirects were in
+ -- progress (this might have security implications, although we are unsure
+ -- if it was exploitable).
+ -- https://trac.torproject.org/projects/tor/ticket/5477
+- By default, use https://google.co.cctld instead of
+ -- encrypted.google.com
+- Add an optional ruleset to use https://www.google.com
+ -- instead of encrypted.google.com, too
+- Ruleset fixes: Debian, Kohls, Malwarebytes, Yandex, Wikipedia, Mises.org,
+ -- OpenDNS, Wizards of the Coast, Lenovo, Barnes and Noble
+ -- https://trac.torproject.org/projects/tor/ticket/5509
+ -- https://trac.torproject.org/projects/tor/ticket/5491
+ -- https://trac.torproject.org/projects/tor/ticket/5303
+- Stumble across more horrible security holes in the Verizon website:
+ -- https://mail1.eff.org/pipermail/https-everywhere-rules/2012-February/001003.html
+- Disable the Gentoo ruleset on non-CAcert platforms
+- Disable buggy rulesets: IBM, Scribd, Wunderground :( :( :(
+ -- https://trac.torproject.org/projects/tor/ticket/5344
+ -- https://trac.torproject.org/projects/tor/ticket/5435
+ -- https://trac.torproject.org/projects/tor/ticket/5630
+
* Wed Feb 29 2012 Russell Golden <niveusluna at niveusluna.org> - 2.0.1-1
- Sync to upstream 2.0.x branch
- Too many changes to all list here. None affect the end user experience.
diff --git a/sources b/sources
index d329bf0..719ec75 100644
--- a/sources
+++ b/sources
@@ -3,3 +3,4 @@ c39416a445b3709c0c0f6ded2be37eb9 https-everywhere-1.2.xpi
8ae87aefaa5fb64aefc7cbd38526fde7 https-everywhere-1.2.1.xpi
24709c1460322a9a063f3ce191fbd72b https-everywhere-1.2.2.xpi
05921026cda5038d1a4f27d2cf8a083d https-everywhere-2.0.1.xpi
+34591e14e4a82561a1a98df5313fb84f https-everywhere-2.0.2.xpi
More information about the scm-commits
mailing list