---
- branch: MAIN
  date: Sun Mar 26 03:53:34 UTC 2017
  files:
  - new: '1.22'
    old: '1.21'
    path: pkgsrc/www/firefox45/Makefile
    pathrev: pkgsrc/www/firefox45/Makefile@1.22
    type: modified
  - new: '1.13'
    old: '1.12'
    path: pkgsrc/www/firefox45/distinfo
    pathrev: pkgsrc/www/firefox45/distinfo@1.13
    type: modified
  - new: '1.6'
    old: '1.5'
    path: pkgsrc/www/firefox45/mozilla-common.mk
    pathrev: pkgsrc/www/firefox45/mozilla-common.mk@1.6
    type: modified
  - new: '1.2'
    old: '1.1'
    path: pkgsrc/www/firefox45/patches/patch-ipc_chromium_src_base_message__pump__libevent.cc
    pathrev: pkgsrc/www/firefox45/patches/patch-ipc_chromium_src_base_message__pump__libevent.cc@1.2
    type: modified
  id: 20170326T035334Z.2152f3c10255ec6a92c2b428c8879ead44c6dd2e
  log: |
    Update to 45.8.0

    Changelog:
     #CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP
     #CVE-2017-5401: Memory Corruption when handling ErrorResult
     #CVE-2017-5402: Use-after-free working with events in FontFace objects
     #CVE-2017-5404: Use-after-free working with ranges in selections
     #CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters
     #CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping
     #CVE-2017-5409: File deletion via callback parameter in Mozilla Windows Updater and Maintenance Service
     #CVE-2017-5408: Cross-origin reading of video captions in violation of CORS
     #CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports
     #CVE-2017-5398: Memory safety bugs fixed in Firefox 52 and Firefox ESR 45.8
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/www/firefox45'
  unixtime: '1490500414'
  user: ryoon