[pkgsrc/pkgsrc-2005Q1]: pkgsrc/www/mozilla-bin Pullup ticket 378 - requested ...

[snj <snj%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/09fe5f734fbe
branches:  pkgsrc-2005Q1
changeset: 490847:09fe5f734fbe
user:      snj <snj%pkgsrc.org@localhost>
date:      Tue Mar 22 19:05:17 2005 +0000

description:
Pullup ticket 378 - requested by Matthias Scheler
security fix for mozilla-bin

Revisions pulled up:
- pkgsrc/www/mozilla-bin/Makefile       1.21
- pkgsrc/www/mozilla-bin/distinfo       1.13


    Module Name:        pkgsrc
    Committed By:       tron
    Date:               Tue Mar 22 09:57:55 UTC 2005

    Modified Files:
            pkgsrc/www/mozilla-bin: Makefile distinfo

    Log Message:
    Update "mozilla-bin" package to version 1.7.6. Besides various bug fixes
    the following security issuses were fixed:

    MFSA 2005-29 Internationalized Domain Name (IDN) homograph spoofing
    MFSA 2005-28 Unsafe /tmp/plugtmp directory exploitable to erase user's files
    MFSA 2005-27 Plugins can be used to load privileged content
    MFSA 2005-26 Cross-site scripting by dropping javascript: link on tab
    MFSA 2005-25 Image drag and drop executable spoofing
    MFSA 2005-24 HTTP auth prompt tab spoofing
    MFSA 2005-23 Download dialog source spoofing
    MFSA 2005-21 Overwrite arbitrary files downloading .lnk twice
    MFSA 2005-20 XSLT can include stylesheets from arbitrary hosts
    MFSA 2005-18 Memory overwrite in string library
    MFSA 2005-17 Install source spoofing with user:pass@host
    MFSA 2005-16 Spoofing download and security dialogs with overlapping windows
    MFSA 2005-15 Heap overflow possible in UTF8 to Unicode conversion
    MFSA 2005-14 SSL "secure site" indicator spoofing
    MFSA 2005-13 Window Injection Spoofing

    Support for Solaris SPARC and x86 is not available due to lack of a
    precompiled binary at this point of time.

diffstat:

 www/mozilla-bin/Makefile |  4 ++--
 www/mozilla-bin/distinfo |  8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diffs (26 lines):

diff -r 7a793833d033 -r 09fe5f734fbe www/mozilla-bin/Makefile
--- a/www/mozilla-bin/Makefile  Tue Mar 22 18:50:45 2005 +0000
+++ b/www/mozilla-bin/Makefile  Tue Mar 22 19:05:17 2005 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.20 2004/12/21 10:03:45 tron Exp $
+# $NetBSD: Makefile,v 1.20.2.1 2005/03/22 19:05:17 snj Exp $
 
 MOZILLA=       mozilla
-MOZ_VER=       1.7.5
+MOZ_VER=       1.7.6
 
 COMMENT=       Full featured gecko-based browser (binary pkg)
 
diff -r 7a793833d033 -r 09fe5f734fbe www/mozilla-bin/distinfo
--- a/www/mozilla-bin/distinfo  Tue Mar 22 18:50:45 2005 +0000
+++ b/www/mozilla-bin/distinfo  Tue Mar 22 19:05:17 2005 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.12 2005/02/24 14:08:33 wiz Exp $
+$NetBSD: distinfo,v 1.12.2.1 2005/03/22 19:05:17 snj Exp $
 
-SHA1 (mozilla-i686-pc-linux-gnu-1.7.5.tar.gz) = 6d64f6859c0e29008cea928d5146de0f5d15989f
-RMD160 (mozilla-i686-pc-linux-gnu-1.7.5.tar.gz) = 9fa88997bbac343bd648bde75efc4dc02a17ddff
-Size (mozilla-i686-pc-linux-gnu-1.7.5.tar.gz) = 13868110 bytes
+SHA1 (mozilla-i686-pc-linux-gnu-1.7.6.tar.gz) = 3bc3276e13b4d8a4174aaf88aec6b740a9a1ae1e
+RMD160 (mozilla-i686-pc-linux-gnu-1.7.6.tar.gz) = 56a5e914cfc49be3bd697c8a1123a58831d563a8
+Size (mozilla-i686-pc-linux-gnu-1.7.5.tar.gz) = 13889017 bytes