tech-pkg archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: Need help improving the security of Mozilla packages
On Wed, Nov 11, 2020 at 10:37:45PM +0000, nia wrote:
> Hi,
>
> There's patches in pkgsrc that make Firefox PaX-MPROTECT safe on NetBSD
> for three versions now, www/firefox, www/firefox78, and www/firefox52.
> There is also a patch for lang/mozjs68.
>
> The following packages still need to be fixed. Building and testing all
> of them will take me a long time alone:
>
> - lang/mozjs60
> - mail/thunderbird52 (based on www/firefox52)
> - mail/thunderbird68 (based on www/firefox68)
> - mail/thunderbird (based on www/firefox78)
> - security/tor-browser (based on www/firefox78)
> - www/cliqz
> - www/seamonkey
>
> If you want to help, it should be easy to copy the patches from
> the most appropriate Firefox version into these packages. You need
> the following:
>
> - patch-js_src_vm_ArrayBufferObject.cpp
> - patch-js_src_jit_ProcessExecutableMemory.cpp
>
> After the patches are applied, you should be able to remove
> NOT_PAX_MPROTECT_SAFE from the package, and bump the revision.
>
> Thanks! (this message is BCCed to the maintainers of said packages)
Oh, and www/firefox68 also needs fixing (this version is kept for
compatibility with NetBSD 8.x).
Home |
Main Index |
Thread Index |
Old Index