pkgsrc-changes: CVS commit: pkgsrc/www

Subject: CVS commit: pkgsrc/www
To: None <pkgsrc-changes@NetBSD.org>
From: Shin'ichiro TAYA <taya@netbsd.org>
List: pkgsrc-changes
Date: 07/14/2005 16:38:42

Module Name:	pkgsrc
Committed By:	taya
Date:		Thu Jul 14 16:38:42 UTC 2005

Modified Files:
	pkgsrc/www/firefox: Makefile-firefox.common PLIST distinfo
	pkgsrc/www/firefox-gtk1: PLIST

Log Message:
Update firefox & firefox-gtk1 to 1.0.5.

Firefox 1.0.5 is a security update.
Fixed vulnerabilities are:

2005-56  Code execution through shared function objects
MFSA 2005-55 XHTML node spoofing
MFSA 2005-54 Javascript prompt origin spoofing
MFSA 2005-53 Standalone applications can run arbitrary code through the browser
MFSA 2005-52 Same origin violation: frame calling top.focus()
MFSA 2005-51 The return of frame-injection spoofing
MFSA 2005-50 Possibly exploitable crash in InstallVersion.compareTo()
MFSA 2005-49 Script injection from Firefox sidebar panel using data:
MFSA 2005-48 Same-origin violation with InstallTrigger callback
MFSA 2005-47 Code execution via "Set as Wallpaper"
MFSA 2005-46 XBL scripts ran even when Javascript disabled
MFSA 2005-45 Content-generated event vulnerabilities


To generate a diff of this commit:
cvs rdiff -r1.18 -r1.19 pkgsrc/www/firefox/Makefile-firefox.common
cvs rdiff -r1.15 -r1.16 pkgsrc/www/firefox/PLIST
cvs rdiff -r1.33 -r1.34 pkgsrc/www/firefox/distinfo
cvs rdiff -r1.4 -r1.5 pkgsrc/www/firefox-gtk1/PLIST

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.