pkgsrc-changes: CVS commit: [pkgsrc-2005Q1] pkgsrc/www

Subject: CVS commit: [pkgsrc-2005Q1] pkgsrc/www
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 04/22/2005 07:22:34

Module Name:	pkgsrc
Committed By:	snj
Date:		Fri Apr 22 07:22:34 UTC 2005

Modified Files:
	pkgsrc/www/mozilla [pkgsrc-2005Q1]: Makefile buildlink3.mk distinfo
	pkgsrc/www/mozilla-gtk2 [pkgsrc-2005Q1]: Makefile buildlink3.mk
Removed Files:
	pkgsrc/www/mozilla/patches [pkgsrc-2005Q1]: patch-bugzilla288688

Log Message:
Pullup ticket 460 - requested by Shin'ichiro TAYA
security fix for mozilla and mozilla-gtk2

Revisions pulled up:
- pkgsrc/www/mozilla/Makefile				1.144
- pkgsrc/www/mozilla/buildlink3.mk			1.10
- pkgsrc/www/mozilla/distinfo				1.75
- pkgsrc/www/mozilla-gtk2/Makefile			1.21
- pkgsrc/www/mozilla-gtk2/buildlink3.mk			1.8
- pkgsrc/www/mozilla/patches/patch-bugzilla288688	removed

    Module Name:    pkgsrc
    Committed By:   taya
    Date:           Tue Apr 19 15:15:30 UTC 2005

    Modified Files:
            pkgsrc/www/mozilla: Makefile buildlink3.mk distinfo
            pkgsrc/www/mozilla-gtk2: Makefile buildlink3.mk
    Removed Files:
            pkgsrc/www/mozilla/patches: patch-bugzilla288688

    Log Message:
    Update mozilla & mozilla-gtk2 to 1.7.7

    This is a security fix release.
    Fixed vulnerabilities are follows:

    MFSA 2005-33  Javascript "lambda" replace exposes memory contents
    MFSA 2005-35 Showing blocked javascript: popup uses wrong privilege context
    MFSA 2005-36 Cross-site scripting through global scope pollution
    MFSA 2005-37 Code execution through javascript: favicons
    MFSA 2005-38 Search plugin cross-site scripting
    MFSA 2005-40 Missing Install object instance checks
    MFSA 2005-41 Privilege escalation via DOM property overrides


To generate a diff of this commit:
cvs rdiff -r1.141.2.2 -r1.141.2.3 pkgsrc/www/mozilla/Makefile
cvs rdiff -r1.7.2.1 -r1.7.2.2 pkgsrc/www/mozilla/buildlink3.mk
cvs rdiff -r1.72.2.2 -r1.72.2.3 pkgsrc/www/mozilla/distinfo
cvs rdiff -r1.16.2.2 -r1.16.2.3 pkgsrc/www/mozilla-gtk2/Makefile
cvs rdiff -r1.5.2.1 -r1.5.2.2 pkgsrc/www/mozilla-gtk2/buildlink3.mk
cvs rdiff -r1.1.2.1 -r0 pkgsrc/www/mozilla/patches/patch-bugzilla288688

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.