Subject: PR/33333 CVS commit: [pkgsrc-2006Q1] pkgsrc/www
To: None <,,,>
From: Lubomir Sedlacik <>
List: pkgsrc-bugs
Date: 04/25/2006 11:05:03
The following reply was made to PR pkg/33333; it has been noted by GNATS.

From: Lubomir Sedlacik <>
Subject: PR/33333 CVS commit: [pkgsrc-2006Q1] pkgsrc/www
Date: Tue, 25 Apr 2006 11:01:27 +0000 (UTC)

 Module Name:	pkgsrc
 Committed By:	salo
 Date:		Tue Apr 25 11:01:27 UTC 2006
 Modified Files:
 	pkgsrc/www/mozilla [pkgsrc-2006Q1]: DESCR Makefile
 	pkgsrc/www/mozilla-gtk2 [pkgsrc-2006Q1]: DESCR Makefile
 Added Files:
 	pkgsrc/www/mozilla/patches [pkgsrc-2006Q1]: patch-cn
 Log Message:
 Pullup ticket 1450 - requested by veego
 security update for mozilla
 Revisions pulled up:
 - pkgsrc/www/mozilla/DESCR			1.3, 1.4
 - pkgsrc/www/mozilla/Makefile			1.158
 - pkgsrc/www/mozilla/		1.20
 - pkgsrc/www/mozilla/distinfo			1.89
 - pkgsrc/www/mozilla-gtk2/DESCR			1.3, 1.4
 - pkgsrc/www/mozilla/patches/patch-cn		1.1
 - pkgsrc/www/mozilla-gtk2/Makefile		1.37
 - pkgsrc/www/mozilla-gtk2/		1.18
    Module Name:		pkgsrc
    Committed By:	veego
    Date:		Mon Apr 24 16:52:58 UTC 2006
    Modified Files:
    	pkgsrc/www/mozilla: Makefile distinfo
    	pkgsrc/www/mozilla-gtk2: Makefile
    Added Files:
    	pkgsrc/www/mozilla/patches: patch-cn
    Log Message:
    Update "mozilla" packages to version 1.7.13. Changes since 1.7.12:
    - stability fixes
    - security fixes
     - MFSA 2006-27 Table Rebuilding Code Execution Vulnerability
     - MFSA 2006-25 Privilege escalation through Print Preview
     - MFSA 2006-24 Privilege escalation using crypto.generateCRMFRequest
     - MFSA 2006-23 File stealing by changing input type
     - MFSA 2006-22 CSS Letter-Spacing Heap Overflow Vulnerability
     - MFSA 2006-21 JavaScript execution in mail when forwarding in-line
     - MFSA 2006-19 Cross-site scripting using
     - MFSA 2006-18 Mozilla Firefox Tag Order Vulnerability
     - MFSA 2006-17 cross-site scripting through window.controllers
     - MFSA 2006-16 Accessing XBL compilation scope via
     - MFSA 2006-15 Privilege escalation using a JavaScript function's cloned
     - MFSA 2006-14 Privilege escalation via XBL.method.eval
     - MFSA 2006-13 Downloading executables with "Save Image As..."
     - MFSA 2006-12 Secure-site spoof (requires security warning dialog)
     - MFSA 2006-11 Crashes with evidence of memory corruption (rv:1.8)
     - MFSA 2006-10 JavaScript garbage-collection hazard audit
     - MFSA 2006-09 Cross-site JavaScript injection using event handlers
     - MFSA 2006-05 Localstore.rdf XML injection through XULDocument.persist()
     - MFSA 2006-03 Long document title causes startup denial of Service
     - MFSA 2006-01 JavaScript garbage-collection hazards
    - additional patch to fix pr#33333
    Shin'ichiro TAYA told me that i can do this update.
    Module Name:		pkgsrc
    Committed By:	ghen
    Date:		Mon Apr 24 18:48:12 UTC 2006
    Modified Files:
    	pkgsrc/www/mozilla: DESCR
    	pkgsrc/www/mozilla-gtk2: DESCR
    Log Message:
    Module Name:	pkgsrc
    Committed By:	ghen
    Date:		Mon Apr 24 18:52:25 UTC 2006
    Modified Files:
    	pkgsrc/www/mozilla: DESCR
    	pkgsrc/www/mozilla-gtk2: DESCR
    Log Message:
    As the 1.7.13 release marked the end-of-life of the Mozilla Suite
    product line, users of the Mozilla Suite are adviced to switch over to
    Firefox (www/firefox) and Thunderbird (mail/thunderbird).  For those who
    still like the Suite, there is Seamonkey (pkgsrc/www/seamonkey), a
    community-driven project to continue the Mozilla Suite.
    For more information, see the Mozilla Suite 1.7.x Product Sunset
 To generate a diff of this commit:
 cvs rdiff -r1.2 -r1.2.20.1 pkgsrc/www/mozilla/DESCR
 cvs rdiff -r1.156 -r1.156.2.1 pkgsrc/www/mozilla/Makefile
 cvs rdiff -r1.17 -r1.17.2.1 pkgsrc/www/mozilla/
 cvs rdiff -r1.88 -r1.88.4.1 pkgsrc/www/mozilla/distinfo
 cvs rdiff -r1.2 -r1.2.8.1 pkgsrc/www/mozilla-gtk2/DESCR
 cvs rdiff -r1.35 -r1.35.2.1 pkgsrc/www/mozilla-gtk2/Makefile
 cvs rdiff -r1.15 -r1.15.2.1 pkgsrc/www/mozilla-gtk2/
 cvs rdiff -r0 -r1.1.2.1 pkgsrc/www/mozilla/patches/patch-cn
 Please note that diffs are not public domain; they are subject to the
 copyright notices on the relevant files.