---
- branch: MAIN
  date: Tue Sep  6 09:16:42 UTC 2022
  files:
  - new: '1.6'
    old: '1.5'
    path: pkgsrc/www/firefox102/Makefile
    pathrev: pkgsrc/www/firefox102/Makefile@1.6
    type: modified
  - new: '1.4'
    old: '1.3'
    path: pkgsrc/www/firefox102/distinfo
    pathrev: pkgsrc/www/firefox102/distinfo@1.4
    type: modified
  - new: '1.4'
    old: '1.3'
    path: pkgsrc/www/firefox102-l10n/Makefile
    pathrev: pkgsrc/www/firefox102-l10n/Makefile@1.4
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/www/firefox102-l10n/distinfo
    pathrev: pkgsrc/www/firefox102-l10n/distinfo@1.3
    type: modified
  id: 20220906T091642Z.5b882b21bc8f2076730d3c990ea36e487fa10ed7
  log: |
    firefox102: Update to 102.2.0

                      Mozilla Foundation Security Advisory 2022-34

    Security Vulnerabilities fixed in Firefox ESR 102.2

        #CVE-2022-38472: Address bar spoofing via XSLT error handling

        #CVE-2022-38473: Cross-origin XSLT Documents would have inherited the
        parent's permissions

        #CVE-2022-38476: Data race and potential use-after-free in PK11_ChangePW

        #CVE-2022-38477: Memory safety bugs fixed in Firefox 104 and Firefox ESR
        102.2

        #CVE-2022-38478: Memory safety bugs fixed in Firefox 104, Firefox ESR 102.2,
        and Firefox ESR 91.13
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/www'
  unixtime: '1662455802'
  user: nia