---
- branch: MAIN
  date: Tue Nov  3 23:39:08 UTC 2015
  files:
  - new: '1.8'
    old: '1.7'
    path: pkgsrc/www/firefox38/Makefile
    pathrev: pkgsrc/www/firefox38/Makefile@1.8
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/www/firefox38/distinfo
    pathrev: pkgsrc/www/firefox38/distinfo@1.7
    type: modified
  id: 20151103T233908Z.a3e40116cdc0f655e37ad58edfbe886616d6fe1b
  log: |
    Update to 38.4.0

    Changelog:
    Fixed in Firefox ESR 38.4

        2015-133 NSS and NSPR memory corruption issues
        2015-132 Mixed content WebSocket policy bypass through workers
        2015-131 Vulnerabilities found through code inspection
        2015-130 JavaScript garbage collection crash with Java applet
        2015-128 Memory corruption in libjar through zip files
        2015-127 CORS preflight is bypassed when non-standard Content-Type headers are received
        2015-123 Buffer overflow during image interactions in canvas
        2015-122 Trailing whitespace in IP address hostnames can bypass same-origin policy
        2015-116 Miscellaneous memory safety hazards (rv:42.0 / rv:38.4)
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/www/firefox38'
  unixtime: '1446593948'
  user: ryoon