CVS commit: pkgsrc/www/firefox60

["Ryo ONODERA" <ryoon%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   ryoon
Date:           Sat Dec 28 05:48:06 UTC 2019

Modified Files:
        pkgsrc/www/firefox60: Makefile distinfo mozilla-common.mk
Added Files:
        pkgsrc/www/firefox60/files: atom_macro.rs bindings.rs
            pseudo_element_definition.rs structs.rs
        pkgsrc/www/firefox60/patches:
            patch-third__party_rust_cssparser_src_parser.rs

Log Message:
Update to 60.9.0

* Fix build with rust-1.39.0

Changelog:
#CVE-2019-11746: Use-after-free while manipulating video
#CVE-2019-11744: XSS by breaking out of title and textarea elements using innerHTML
#CVE-2019-11742: Same-origin policy violation with SVG filters and canvas to steal cross-origin images
#CVE-2019-11753: Privilege escalation with Mozilla Maintenance Service in custom Firefox installation location
#CVE-2019-11752: Use-after-free while extracting a key value in IndexedDB
#CVE-2019-9812: Sandbox escape through Firefox Sync
#CVE-2019-11743: Cross-origin access to unload event attributes
#CVE-2019-11740: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9


To generate a diff of this commit:
cvs rdiff -u -r1.34 -r1.35 pkgsrc/www/firefox60/Makefile
cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/firefox60/distinfo
cvs rdiff -u -r1.7 -r1.8 pkgsrc/www/firefox60/mozilla-common.mk
cvs rdiff -u -r0 -r1.1 pkgsrc/www/firefox60/files/atom_macro.rs \
    pkgsrc/www/firefox60/files/bindings.rs \
    pkgsrc/www/firefox60/files/pseudo_element_definition.rs \
    pkgsrc/www/firefox60/files/structs.rs
cvs rdiff -u -r0 -r1.1 \
    pkgsrc/www/firefox60/patches/patch-third__party_rust_cssparser_src_parser.rs

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffs are larger than 1MB and have been omitted