Subject: CVS commit: pkgsrc/www/firefox-gtk2-bin
To: None <pkgsrc-changes@NetBSD.org>
From: Matthias Scheler <tron@netbsd.org>
List: pkgsrc-changes
Date: 04/16/2005 12:47:22
Module Name:	pkgsrc
Committed By:	tron
Date:		Sat Apr 16 12:47:22 UTC 2005

Modified Files:
	pkgsrc/www/firefox-gtk2-bin: Makefile distinfo

Log Message:
Update "firefox-gtk2-bin" package to version 1.0.3. The new version fixes
the following security issues:

MFSA 2005-33 Javascript "lambda" replace exposes memory contents
MFSA 2005-34 javascript: PLUGINSPAGE code execution
MFSA 2005-35 Showing blocked javascript: popup uses wrong privilege context
MFSA 2005-36 Cross-site scripting through global scope pollution
MFSA 2005-37 Code execution through javascript: favicons
MFSA 2005-38 Search plugin cross-site scripting
MFSA 2005-39 Arbitrary code execution from Firefox sidebar panel II
MFSA 2005-40 Missing Install object instance checks
MFSA 2005-41 Privilege escalation via DOM property overrides


To generate a diff of this commit:
cvs rdiff -r1.8 -r1.9 pkgsrc/www/firefox-gtk2-bin/Makefile
cvs rdiff -r1.9 -r1.10 pkgsrc/www/firefox-gtk2-bin/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.