pkgsrc-changes: CVS commit: [pkgsrc-2005Q2] pkgsrc/www

Subject: CVS commit: [pkgsrc-2005Q2] pkgsrc/www
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 07/21/2005 02:49:04
Module Name:	pkgsrc
Committed By:	snj
Date:		Thu Jul 21 02:49:04 UTC 2005

Modified Files:
	pkgsrc/www/firefox [pkgsrc-2005Q2]: Makefile-firefox.common PLIST
	    buildlink3.mk distinfo
	pkgsrc/www/firefox-gtk1 [pkgsrc-2005Q2]: PLIST buildlink3.mk

Log Message:
Pullup ticket 613 - requested by Shin'ichiro TAYA
security update for firefox and firefox-gtk1

Revisions pulled up:
- pkgsrc/www/firefox/Makefile-firefox.common	1.19, 1.20
- pkgsrc/www/firefox/PLIST			1.16
- pkgsrc/www/firefox/distinfo			1.34, 1.35
- pkgsrc/www/firefox-gtk1/PLIST			1.5
- pkgsrc/www/firefox/buildlink3.mk		1.6
- pkgsrc/www/firefox-gtk1/buildlink3.mk		1.5

    Module Name:  pkgsrc
    Committed By: taya
    Date:         Thu Jul 14 16:38:42 UTC 2005

    Modified Files:
          pkgsrc/www/firefox: Makefile-firefox.common PLIST distinfo
          pkgsrc/www/firefox-gtk1: PLIST

    Log Message:
    Update firefox & firefox-gtk1 to 1.0.5.

    Firefox 1.0.5 is a security update.
    Fixed vulnerabilities are:

    2005-56  Code execution through shared function objects
    MFSA 2005-55 XHTML node spoofing
    MFSA 2005-54 Javascript prompt origin spoofing
    MFSA 2005-53 Standalone applications can run arbitrary code through the
                 browser
    MFSA 2005-52 Same origin violation: frame calling top.focus()
    MFSA 2005-51 The return of frame-injection spoofing
    MFSA 2005-50 Possibly exploitable crash in InstallVersion.compareTo()
    MFSA 2005-49 Script injection from Firefox sidebar panel using data:
    MFSA 2005-48 Same-origin violation with InstallTrigger callback
    MFSA 2005-47 Code execution via "Set as Wallpaper"
    MFSA 2005-46 XBL scripts ran even when Javascript disabled
    MFSA 2005-45 Content-generated event vulnerabilities
----
    Module Name:  pkgsrc
    Committed By: taya
    Date:         Wed Jul 20 23:33:30 UTC 2005

    Modified Files:
         pkgsrc/www/firefox: Makefile-firefox.common buildlink3.mk distinfo
         pkgsrc/www/firefox-gtk1: buildlink3.mk

    Log Message:
    update firefox & firefox-gtk1 to 1.0.6

    Firefox 1.0.6 is a stability update. We recommend that users upgrade
    to this latest version.

    Here's what's new in Firefox 1.0.6:

         * Restore API compatibility for extensions and web applications
         that did not work in Firefox 1.0.5.


To generate a diff of this commit:
cvs rdiff -r1.18 -r1.18.2.1 pkgsrc/www/firefox/Makefile-firefox.common
cvs rdiff -r1.15 -r1.15.2.1 pkgsrc/www/firefox/PLIST
cvs rdiff -r1.5 -r1.5.2.1 pkgsrc/www/firefox/buildlink3.mk
cvs rdiff -r1.32 -r1.32.2.1 pkgsrc/www/firefox/distinfo
cvs rdiff -r1.4 -r1.4.2.1 pkgsrc/www/firefox-gtk1/PLIST \
    pkgsrc/www/firefox-gtk1/buildlink3.mk

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.