pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/www/firefox
Module Name: pkgsrc
Committed By: ryoon
Date: Sat Apr 6 08:53:35 UTC 2024
Modified Files:
pkgsrc/www/firefox: Makefile distinfo mozilla-common.mk
pkgsrc/www/firefox/files: node-wrapper.sh
pkgsrc/www/firefox/patches: patch-browser_app_profile_firefox.js
patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build
Removed Files:
pkgsrc/www/firefox/patches: patch-js_src_zydis_Zycore_Defines.h
patch-third__party_libwebrtc_modules_video__capture_video__capture__factory.cc
patch-toolkit_modules_subprocess_subprocess__shared__unix.js
Log Message:
www/firefox: Update to 124.0.1
Changelog:
124.0.2:
Fixed
* Fixed an issue where users with a large amount of bookmarks would be unable
to restore a bookmarks backup. (Bug 1884308)
* Fixed an issue that would cause open Firefox windows to go blank or crash
during video playback on sites such as Netflix. (Bug 1883932)
* Fixed a crash that affected Linux AArch64 builds.(Bug 1866396)
* Fixed an issue where some users experienced difficulties loading webpages
due to changes made to the default AppArmor configuration shipping in
Ubuntu 24.04. (Bug 1884347)
124.0.1:
Fixed
* Security fixes.
Mozilla Foundation Security Advisory 2024-15
#CVE-2024-29943: Out-of-bounds access via Range Analysis bypass
#CVE-2024-29944: Privileged JavaScript Execution via Event Handlers
124.0:
New
* Caret browsing mode now also works in the PDF viewer. (Learn more)
* In Firefox View, open tabs can now be sorted by either recent activity or
tab order. Recent activity is the default setting.
* Firefox now populates the Windows taskbar jump list more efficiently, which
should allow for a smoother overall browsing experience.
* Firefox on Mac now uses the macOS fullscreen API for all types of
fullscreen windows. This should better match the expected macOS user
experience for fullscreen spaces, menubar and the Dock.
* As of Firefox 124, Qwant's availability has been expanded to all languages
in the France region along with Belgium, Italy, Netherlands, Spain, and
Switzerland.
Fixed
* Various security fixes.
Mozilla Foundation Security Advisory 2024-12
#CVE-2024-2605: Windows Error Reporter could be used as a Sandbox escape vector
#CVE-2024-2606: Mishandling of WASM register values
#CVE-2024-2607: JIT code failed to save return registers on Armv7-A
#CVE-2024-2608: Integer overflow could have led to out of bounds write
#CVE-2023-5388: NSS susceptible to timing attack against RSA decryption
#CVE-2024-2609: Permission prompt input delay could expire when not in focus
#CVE-2024-2610: Improper handling of html and body tags enabled CSP nonce
#CVE-2024-2611: Clickjacking vulnerability could have led to a user
accidentally granting permissions
#CVE-2024-2612: Self referencing object could have potentially led to a
use-after-free
#CVE-2024-2613: Improper handling of QUIC ACK frame data could have led to OOM
#CVE-2024-2614: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and
Thunderbird 115.9
#CVE-2024-2615: Memory safety bugs fixed in Firefox 124
To generate a diff of this commit:
cvs rdiff -u -r1.593 -r1.594 pkgsrc/www/firefox/Makefile
cvs rdiff -u -r1.525 -r1.526 pkgsrc/www/firefox/distinfo
cvs rdiff -u -r1.275 -r1.276 pkgsrc/www/firefox/mozilla-common.mk
cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/firefox/files/node-wrapper.sh
cvs rdiff -u -r1.22 -r1.23 \
pkgsrc/www/firefox/patches/patch-browser_app_profile_firefox.js
cvs rdiff -u -r1.1 -r0 \
pkgsrc/www/firefox/patches/patch-js_src_zydis_Zycore_Defines.h \
pkgsrc/www/firefox/patches/patch-third__party_libwebrtc_modules_video__capture_video__capture__factory.cc
cvs rdiff -u -r1.3 -r1.4 \
pkgsrc/www/firefox/patches/patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build
cvs rdiff -u -r1.4 -r0 \
pkgsrc/www/firefox/patches/patch-toolkit_modules_subprocess_subprocess__shared__unix.js
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/www/firefox/Makefile
diff -u pkgsrc/www/firefox/Makefile:1.593 pkgsrc/www/firefox/Makefile:1.594
--- pkgsrc/www/firefox/Makefile:1.593 Sat Apr 6 08:06:52 2024
+++ pkgsrc/www/firefox/Makefile Sat Apr 6 08:53:34 2024
@@ -1,18 +1,17 @@
-# $NetBSD: Makefile,v 1.593 2024/04/06 08:06:52 wiz Exp $
+# $NetBSD: Makefile,v 1.594 2024/04/06 08:53:34 ryoon Exp $
FIREFOX_VER= ${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
-MOZ_BRANCH= 123.0
-MOZ_BRANCH_MINOR= .1
+MOZ_BRANCH= 124.0
+MOZ_BRANCH_MINOR= .2
DISTNAME= firefox-${FIREFOX_VER}.source
PKGNAME= ${DISTNAME:S/.source//:S/b/beta/:S/esr//}
-PKGREVISION= 2
CATEGORIES= www
MASTER_SITES+= ${MASTER_SITE_MOZILLA:=firefox/releases/${FIREFOX_VER}/source/}
MASTER_SITES+= ${MASTER_SITE_MOZILLA_ALL:=firefox/releases/${FIREFOX_VER}/source/}
EXTRACT_SUFX= .tar.xz
-NODEJSKIT= nodejs-output-122.0.1.tgz
+NODEJSKIT= nodejs-output-124.0.tgz
DISTFILES= ${DEFAULT_DISTFILES} ${NODEJSKIT}
SITES.${NODEJSKIT}= ${MASTER_SITE_LOCAL}
Index: pkgsrc/www/firefox/distinfo
diff -u pkgsrc/www/firefox/distinfo:1.525 pkgsrc/www/firefox/distinfo:1.526
--- pkgsrc/www/firefox/distinfo:1.525 Sat Mar 30 11:48:34 2024
+++ pkgsrc/www/firefox/distinfo Sat Apr 6 08:53:34 2024
@@ -1,12 +1,12 @@
-$NetBSD: distinfo,v 1.525 2024/03/30 11:48:34 maya Exp $
+$NetBSD: distinfo,v 1.526 2024/04/06 08:53:34 ryoon Exp $
-BLAKE2s (firefox-123.0.1.source.tar.xz) = d242b65c21b81833e912cda955aed4512f438850f493aa727c8383116043ae59
-SHA512 (firefox-123.0.1.source.tar.xz) = e9af61c1ca800edd16ab7a0d24c9a36bbb34813ed0a11ff62389aa38fa83deba394bca5d95cdaad55ad29ffa3c0e5d3dd15ac1099f7fa3649f4b6c835b7498c2
-Size (firefox-123.0.1.source.tar.xz) = 545230176 bytes
-BLAKE2s (nodejs-output-122.0.1.tgz) = 87906492d5f5fcd8e8dac2e5295df84add754fd400db17bb6555957147f09b41
-SHA512 (nodejs-output-122.0.1.tgz) = 93c3540f83007afd8f1e8c422776c31265a6f66532a81b988452db500c2ada1059ebf70b5c071d99ec4dad3f34f0ccc47f7ab8eab8e7e77c0972b3d7d8ec970a
-Size (nodejs-output-122.0.1.tgz) = 223805 bytes
-SHA1 (patch-browser_app_profile_firefox.js) = a0a3d429f9eb5e0c95a94efed407a18e5e12328d
+BLAKE2s (firefox-124.0.2.source.tar.xz) = 93de7e9a7291f5761b2a660218ac3fffbe5692072593057f7b57e38e2adad3fc
+SHA512 (firefox-124.0.2.source.tar.xz) = 8cf340de6e34812f8ae3363265859a263330af770d981c3dd1ca1e7e0cfe513604d3e68184d4aa1446569aefbdf359d561fbc200faf19a5ed020a1709d9ef10e
+Size (firefox-124.0.2.source.tar.xz) = 555223648 bytes
+BLAKE2s (nodejs-output-124.0.tgz) = b644e93be28b5c4f32e3a7188825b7ee82de1414277201b1c531dc035d79a0e6
+SHA512 (nodejs-output-124.0.tgz) = ca6c5168e33bcee45e32eb4d541beb8c92e2821e0d40cf56c910515b6636cd43a27e0bd255e6663441df29912e6b93b71c8b47f5c958265e93cc870d241fb7a0
+Size (nodejs-output-124.0.tgz) = 223660 bytes
+SHA1 (patch-browser_app_profile_firefox.js) = bc719edef37d18655ba79b030270438ee166fdaf
SHA1 (patch-build_moz.configure_rust.configure) = 25ddfacd29cebbc6db005dbe61a2a7446d480678
SHA1 (patch-config_gcc-stl-wrapper.template.h) = 9d1f15ff487efa9202114d19ed5668b4e7aa032a
SHA1 (patch-config_makefiles_rust.mk) = 788ab8fed45625bc5552c56a3ab05b5ed7d49a8f
@@ -23,24 +23,22 @@ SHA1 (patch-ipc_glue_GeckoChildProcessHo
SHA1 (patch-js-src-jit-arm64-vixl-MozCpu-vixl.cpp) = d90fca47d79551fd74214d47f8184670b901b792
SHA1 (patch-js_src_jit_FlushICache.cpp) = d1e611eaf7d7be22abfac6b39fbcd99df3570e47
SHA1 (patch-js_src_util_NativeStack.cpp) = a0a16d8d8d78d3cc3f4d2a508586f1a7821f7dba
-SHA1 (patch-js_src_zydis_Zycore_Defines.h) = 7f996505e8e2dcd3303d437f3c82b280f0de07e4
SHA1 (patch-media_ffvpx_libavutil_arm_bswap.h) = de58daa0fd23d4fec50426602b65c9ea5862558a
SHA1 (patch-media_libpng_pngpriv.h) = c8084332560017cd7c9b519b61d125fa28af0dbc
SHA1 (patch-media_libtheora_lib_info.c) = f6dbf536d73859a1ff78304c2e9f6a6f74dac01f
SHA1 (patch-modules_fdlibm_src_math__private.h) = e20b6c23011d7123cbbd64a500eb8ce8c426620e
+SHA1 (patch-netwerk_protocol_http_nsHttpHandler.cpp) = 8e1d9a0746b637f5f4259e448e72172cfb08b23f
SHA1 (patch-nsprpub_pr_src_pthreads_ptsynch.c) = b0d1f6a6e0eb852b0fd0238ad3f8ed3166c60a50
SHA1 (patch-security_nss_lib_freebl_mpi_mpi.c) = a7cd867916524770609d1c307a65b315b88456f4
SHA1 (patch-third__party_js_cfworker_build.sh) = 46cdf97b99cf01080f290ae8d9a33b5f869fc3e4
-SHA1 (patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build) = abf4cb114f5b879f047b6e6a55bc4760266e5ed8
+SHA1 (patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build) = d0454784eb72be49162f619579e060a0de3c480f
SHA1 (patch-third__party_libwebrtc_modules_desktop__capture_linux_wayland_egl__dmabuf.cc) = 455be625b5de2f6f1f4b2dbb6c8cb33ca16c2583
SHA1 (patch-third__party_libwebrtc_modules_video__capture_linux_device__info__v4l2.cc) = 4cb0e1c88dc83370024ed1aac7f75445b9f98df8
SHA1 (patch-third__party_libwebrtc_modules_video__capture_linux_video__capture__v4l2.cc) = 8111952a107eb2cd665525ddd0e27c79eee3c1cd
-SHA1 (patch-third__party_libwebrtc_modules_video__capture_video__capture__factory.cc) = 442a18a947bed338225e00967e8cd23f61378c8a
SHA1 (patch-third__party_libwebrtc_system__wrappers_source_cpu__features__linux.cc) = b90e22b50879f7adcc1da3a993f52c0701b720f8
SHA1 (patch-third__party_sqlite3_src_moz.build) = b26856a4b87aa12211575d9982f62dc899474b52
SHA1 (patch-third__party_wasm2c_src_prebuilt_wasm2c__source__includes.cc) = 99d0db944f0c2d0c623460991efd423d9127c988
SHA1 (patch-toolkit_components_terminator_nsTerminator.cpp) = e905e38ef1b88d764c695c019f15609350c1c43b
-SHA1 (patch-toolkit_modules_subprocess_subprocess__shared__unix.js) = 445902ec9750622357001f07f0c5f49276a2b6f6
SHA1 (patch-toolkit_moz.configure) = 1306e7ac3c3939886aff38a58dd3162e6517409b
SHA1 (patch-toolkit_mozapps_installer_packager.mk) = 706635b76a7b525794aba95e95544f09e18bb662
SHA1 (patch-xpcom_base_nscore.h) = 1ac4d34d3c9e80bc1ac966c6c84cb320bc0fa1ec
Index: pkgsrc/www/firefox/mozilla-common.mk
diff -u pkgsrc/www/firefox/mozilla-common.mk:1.275 pkgsrc/www/firefox/mozilla-common.mk:1.276
--- pkgsrc/www/firefox/mozilla-common.mk:1.275 Thu Feb 22 17:42:34 2024
+++ pkgsrc/www/firefox/mozilla-common.mk Sat Apr 6 08:53:34 2024
@@ -1,4 +1,4 @@
-# $NetBSD: mozilla-common.mk,v 1.275 2024/02/22 17:42:34 tsutsui Exp $
+# $NetBSD: mozilla-common.mk,v 1.276 2024/04/06 08:53:34 ryoon Exp $
#
# common Makefile fragment for mozilla packages based on gecko 2.0.
#
@@ -90,6 +90,7 @@ CONFIGURE_ARGS+= --enable-system-pixman
CONFIGURE_ARGS+= --with-system-libvpx
CONFIGURE_ARGS+= --enable-system-ffi
CONFIGURE_ARGS+= --with-system-icu
+CONFIGURE_ARGS+= --with-intl-api
CONFIGURE_ARGS+= --with-system-nss
CONFIGURE_ARGS+= --with-system-nspr
#CONFIGURE_ARGS+= --with-system-jpeg
@@ -208,6 +209,7 @@ PLIST.ffvpx= yes # see media/ffvpx/ffvpx
# See ${WRKSRC}/security/sandbox/mac/Sandbox.mm: On Darwin, sandboxing
# support is only available when the toolkit is cairo-cocoa.
CONFIGURE_ARGS.Darwin+= --disable-sandbox
+CONFIGURE_ARGS.NetBSD+= --disable-sandbox
# Makefiles sometimes call "rm -f" without more arguments. Kludge around ...
.PHONY: create-rm-wrapper
@@ -231,7 +233,7 @@ BUILDLINK_API_DEPENDS.libevent+= libeven
BUILDLINK_API_DEPENDS.nspr+= nspr>=4.34
.include "../../devel/nspr/buildlink3.mk"
.include "../../textproc/icu/buildlink3.mk"
-BUILDLINK_API_DEPENDS.nss+= nss>=3.97
+BUILDLINK_API_DEPENDS.nss+= nss>=3.98
.include "../../devel/nss/buildlink3.mk"
.include "../../devel/zlib/buildlink3.mk"
#.include "../../mk/jpeg.buildlink3.mk"
Index: pkgsrc/www/firefox/files/node-wrapper.sh
diff -u pkgsrc/www/firefox/files/node-wrapper.sh:1.15 pkgsrc/www/firefox/files/node-wrapper.sh:1.16
--- pkgsrc/www/firefox/files/node-wrapper.sh:1.15 Thu Feb 8 15:54:21 2024
+++ pkgsrc/www/firefox/files/node-wrapper.sh Sat Apr 6 08:53:35 2024
@@ -1,6 +1,6 @@
#! /bin/sh
-VERS=v21.6.1
+VERS=v21.7.0
if [ "$1" = "-v" ] || [ "$1" = "--version" ]; then
printf "${VERS}\n"
Index: pkgsrc/www/firefox/patches/patch-browser_app_profile_firefox.js
diff -u pkgsrc/www/firefox/patches/patch-browser_app_profile_firefox.js:1.22 pkgsrc/www/firefox/patches/patch-browser_app_profile_firefox.js:1.23
--- pkgsrc/www/firefox/patches/patch-browser_app_profile_firefox.js:1.22 Fri Nov 3 10:20:03 2023
+++ pkgsrc/www/firefox/patches/patch-browser_app_profile_firefox.js Sat Apr 6 08:53:35 2024
@@ -1,11 +1,11 @@
-$NetBSD: patch-browser_app_profile_firefox.js,v 1.22 2023/11/03 10:20:03 ryoon Exp $
+$NetBSD: patch-browser_app_profile_firefox.js,v 1.23 2024/04/06 08:53:35 ryoon Exp $
This patch modifies default Firefox settings - see the comments above
each one.
---- browser/app/profile/firefox.js.orig 2023-08-17 21:21:27.000000000 +0000
+--- browser/app/profile/firefox.js.orig 2024-03-08 13:19:26.000000000 +0000
+++ browser/app/profile/firefox.js
-@@ -2340,6 +2340,36 @@ pref("app.normandy.onsync_skew_sec", 600
+@@ -2461,6 +2461,39 @@ pref("app.normandy.onsync_skew_sec", 600
pref("toolkit.coverage.enabled", false);
pref("toolkit.coverage.endpoint.base", "https://coverage.mozilla.org";);
@@ -33,6 +33,9 @@ each one.
+// Avoid runtime error from WebGL for NetBSD systems
+pref("webgl.out-of-process", false);
+
++// Avoid unfunctional video and audio codecs
++pref("media.allow-audio-non-utility", true);
++
+// On NetBSD, many web applications (e.g. Telegram, Mastodon, Twitter)
+// will freeze until the service worker is restarted in about:serviceworkers.
+// This is a workaround that makes most of these sites function.
Index: pkgsrc/www/firefox/patches/patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build
diff -u pkgsrc/www/firefox/patches/patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build:1.3
pkgsrc/www/firefox/patches/patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build:1.4
--- pkgsrc/www/firefox/patches/patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build:1.3 Wed Jan 31 15:54:52 2024
+++ pkgsrc/www/firefox/patches/patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build Sat Apr 6 08:53:35 2024
@@ -1,11 +1,11 @@
-$NetBSD: patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build,v 1.3 2024/01/31 15:54:52 ryoon Exp $
+$NetBSD: patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build,v 1.4 2024/04/06 08:53:35 ryoon Exp $
* Disable Wayland desktop capture for non-Linux platforms.
Fix segfault under X11.
---- third_party/libwebrtc/modules/desktop_capture/desktop_capture_gn/moz.build.orig 2024-01-18 00:18:56.996002780 +0000
+--- third_party/libwebrtc/modules/desktop_capture/desktop_capture_gn/moz.build.orig 2024-03-11 10:11:56.287869888 +0000
+++ third_party/libwebrtc/modules/desktop_capture/desktop_capture_gn/moz.build
-@@ -420,7 +420,7 @@ if CONFIG["MOZ_DEBUG"] == "1" and CONFIG
+@@ -392,7 +392,7 @@ if CONFIG["MOZ_DEBUG"] == "1" and CONFIG
DEFINES["_HAS_ITERATOR_DEBUGGING"] = "0"
@@ -14,8 +14,8 @@ $NetBSD: patch-third__party_libwebrtc_mo
DEFINES["WEBRTC_USE_PIPEWIRE"] = True
DEFINES["_GNU_SOURCE"] = True
-@@ -449,7 +449,7 @@ if CONFIG["TARGET_CPU"] == "aarch64" and
- "/third_party/libwebrtc/modules/desktop_capture/linux/wayland/shared_screencast_stream.cc"
+@@ -449,7 +449,7 @@ if CONFIG["OS_TARGET"] == "Linux" and CO
+ "/third_party/libwebrtc/modules/desktop_capture/linux/x11/x_window_property.cc"
]
-if CONFIG["TARGET_CPU"] == "x86" and (CONFIG["OS_TARGET"] == "Linux" or CONFIG["OS_TARGET"] == "NetBSD" or CONFIG["OS_TARGET"] == "OpenBSD" or CONFIG["OS_TARGET"] == "FreeBSD"):
Home |
Main Index |
Thread Index |
Old Index