pkgsrc-Bugs archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
PR/56955 CVS commit: [pkgsrc-2023Q4] pkgsrc/www
The following reply was made to PR pkg/56955; it has been noted by GNATS.
From: "Benny Siegert" <bsiegert%netbsd.org@localhost>
To: gnats-bugs%gnats.NetBSD.org@localhost
Cc:
Subject: PR/56955 CVS commit: [pkgsrc-2023Q4] pkgsrc/www
Date: Sun, 31 Mar 2024 15:14:41 +0000
Module Name: pkgsrc
Committed By: bsiegert
Date: Sun Mar 31 15:14:40 UTC 2024
Modified Files:
pkgsrc/www/firefox115 [pkgsrc-2023Q4]: Makefile distinfo
mozilla-common.mk
pkgsrc/www/firefox115-l10n [pkgsrc-2023Q4]: Makefile distinfo
pkgsrc/www/firefox115/files [pkgsrc-2023Q4]: replace-moz.build.awk
Log Message:
Pullup ticket #6840 - requested by gutteridge
www/firefox115: security fix
www/firefox115-l10n: dependent update
Revisions pulled up:
- www/firefox115-l10n/Makefile 1.4-1.6
- www/firefox115-l10n/distinfo 1.4-1.6
- www/firefox115/Makefile 1.11-1.13,1.16-1.17
- www/firefox115/distinfo 1.4-1.6
- www/firefox115/files/replace-moz.build.awk 1.2
- www/firefox115/mozilla-common.mk 1.5-1.6
---
Module Name: pkgsrc
Committed By: he
Date: Fri Dec 29 17:29:14 UTC 2023
Modified Files:
pkgsrc/www/firefox115: Makefile mozilla-common.mk
Log Message:
firefox115: on i386, use -mstackrealign also in CFLAGS.
Patterned after recent change to firefox: force stack
re-alignment so that you don't get a segfault when doing
movdqa %xmm7,(%esp) and %esp is not 16-byte aligned.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: leot
Date: Mon Jan 8 17:39:44 UTC 2024
Modified Files:
pkgsrc/www/firefox115: Makefile
pkgsrc/www/firefox115/files: replace-moz.build.awk
Log Message:
firefox115: Re-enable screen/tab capture
Sync replace-moz.build.awk with firefox{102,} so that X11 desktop
capture works.
(Re)Fix PR pkg/56955.
(While here define PKGREVISION only once.)
PKGREVISION++
---
Module Name: pkgsrc
Committed By: ryoon
Date: Wed Jan 10 15:38:44 UTC 2024
Modified Files:
pkgsrc/www/firefox115: Makefile distinfo mozilla-common.mk
Log Message:
firefox115: Update to 115.6.0
Changelog:
115.6.0:
* Security fixes.
Mozilla Foundation Security Advisory 2023-54
#CVE-2023-6856: Heap-buffer-overflow affecting WebGL
DrawElementsInstanced
method with Mesa VM driver
#CVE-2023-6865: Potential exposure of uninitialized data in
EncryptingOutputStream
#CVE-2023-6857: Symlinks may resolve to smaller than expected buffers
#CVE-2023-6858: Heap buffer overflow in nsTextFragment
#CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer
#CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of
texture
validation
#CVE-2023-6867: Clickjacking permission prompts using the popup
transition
#CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void)
in
headless mode
#CVE-2023-6862: Use-after-free in nsDNSService
#CVE-2023-6863: Undefined behavior in ShutdownObserver()
#CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR
115.6, and
Thunderbird 115.6
---
Module Name: pkgsrc
Committed By: ryoon
Date: Wed Jan 31 16:18:33 UTC 2024
Modified Files:
pkgsrc/www/firefox115: Makefile distinfo
Log Message:
firefox115: Update to 115.7.0
Changelog:
115.7.0:
Mozilla Foundation Security Advisory 2024-02
#CVE-2024-0741: Out of bounds write in ANGLE
#CVE-2024-0742: Failure to update user input timestamp
#CVE-2024-0746: Crash when listing printers on Linux
#CVE-2024-0747: Bypass of Content Security Policy when directive
unsafe-inline
was set
#CVE-2024-0749: Phishing site popup could show local origin in address
bar
#CVE-2024-0750: Potential permissions request bypass via clickjacking
#CVE-2024-0751: Privilege escalation through devtools
#CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper
domain
#CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR
115.7, and
Thunderbird 115.7
---
Module Name: pkgsrc
Committed By: gutteridge
Date: Mon Mar 25 00:35:50 UTC 2024
Modified Files:
pkgsrc/www/firefox115: Makefile distinfo
Log Message:
firefox115: update to 115.9.1
Note there are references to use of Python 3.12 as a build tool now
being supported, but this has not been tested in pkgsrc as it stands.
(This has been tested on NetBSD 9.3_STABLE with pkgsrc defaults.)
115.9.1
Fixes for mfsa2024-16, also known as CVE-2024-29944
115.9.0
Fixes for mfsa2024-13, also known as:
CVE-2024-0743, CVE-2024-2607, CVE-2024-2608, CVE-2024-2616,
CVE-2023-5388, CVE-2024-2610, CVE-2024-2611, CVE-2024-2612,
CVE-2024-2614
115.8.0
Fixes for mfsa2024-06, also known as:
CVE-2024-1546, CVE-2024-1547, CVE-2024-1548, CVE-2024-1549,
CVE-2024-1550, CVE-2024-1551, CVE-2024-1552, CVE-2024-1553
---
Module Name: pkgsrc
Committed By: ryoon
Date: Wed Jan 10 15:39:18 UTC 2024
Modified Files:
pkgsrc/www/firefox115-l10n: Makefile distinfo
Log Message:
firefox115-l10n: Update to 115.6.0
* Sync with www/firefox115-115.6.0.
---
Module Name: pkgsrc
Committed By: ryoon
Date: Wed Jan 31 16:19:07 UTC 2024
Modified Files:
pkgsrc/www/firefox115-l10n: Makefile distinfo
Log Message:
firefox115: Update to 115.7.0
* Sync with www/firefox115-115.7.0.
---
Module Name: pkgsrc
Committed By: gutteridge
Date: Tue Mar 26 13:54:13 UTC 2024
Modified Files:
pkgsrc/www/firefox115-l10n: Makefile distinfo
Log Message:
firefox115-l10n: update to 115.9.1
To generate a diff of this commit:
cvs rdiff -u -r1.10 -r1.10.2.1 pkgsrc/www/firefox115/Makefile
cvs rdiff -u -r1.3 -r1.3.2.1 pkgsrc/www/firefox115/distinfo
cvs rdiff -u -r1.4 -r1.4.2.1 pkgsrc/www/firefox115/mozilla-common.mk
cvs rdiff -u -r1.3 -r1.3.2.1 pkgsrc/www/firefox115-l10n/Makefile \
pkgsrc/www/firefox115-l10n/distinfo
cvs rdiff -u -r1.1 -r1.1.4.1 \
pkgsrc/www/firefox115/files/replace-moz.build.awk
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Home |
Main Index |
Thread Index |
Old Index