pkg/30900: pullup mozilla 1.7.10 to pkgsrc-2005Q2?

To: pkg-manager%netbsd.org@localhost, gnats-admin%netbsd.org@localhost, pkgsrc-bugs%netbsd.org@localhost
Subject: pkg/30900: pullup mozilla 1.7.10 to pkgsrc-2005Q2?
From: ghen%telenet.be@localhost
Date: Wed, 3 Aug 2005 09:59:00 +0000 (UTC)

>Number:         30900
>Category:       pkg
>Synopsis:       pullup mozilla 1.7.10 to pkgsrc-2005Q2?
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Wed Aug 03 09:59:00 +0000 2005
>Originator:     Geert Hendrickx
>Release:        
>Organization:
>Environment:
>Description:
The pkgsrc-2005Q2 version of mozilla & mozilla-gtk2 is marked vulnerable: 

Package mozilla-gtk2-1.7.8 has a http-frame-spoof vulnerability, see 
http://secunia.com/advisories/15601/
Package mozilla-gtk2-1.7.8 has a dialog-spoofing vulnerability, see 
http://secunia.com/advisories/15489/

The version in pkgsrc-HEAD (1.7.10) is fixed, so shouldn't this update be 
pulled up to pkgsrc-2005Q2?  
>How-To-Repeat:

>Fix:
Updates to be pulled up are: 

in www/mozilla: 
  Makefile       1.146
  PLIST          1.17
  buildlink3.mk  1.12

in www/mozilla-gtk2:
  Makefile       1.24
  PLIST          1.7
  buildlink3.mk  1.10

All these apply directly to the pkgsrc-2005Q2 version.

Prev by Date: pkg/30899: RealPlayer icons bust
Next by Date: pkg/30902: archivers/unrar solaris x86 gcc
Previous by Thread: pkg/30899: RealPlayer icons bust
Next by Thread: pkg/30902: archivers/unrar solaris x86 gcc
Indexes:

Home | Main Index | Thread Index | Old Index