--- - branch: pkgsrc-2023Q4 date: Sun Mar 31 15:14:40 UTC 2024 files: - new: 1.10.2.1 old: '1.10' path: pkgsrc/www/firefox115/Makefile pathrev: pkgsrc/www/firefox115/Makefile@1.10.2.1 type: modified - new: 1.3.2.1 old: '1.3' path: pkgsrc/www/firefox115/distinfo pathrev: pkgsrc/www/firefox115/distinfo@1.3.2.1 type: modified - new: 1.4.2.1 old: '1.4' path: pkgsrc/www/firefox115/mozilla-common.mk pathrev: pkgsrc/www/firefox115/mozilla-common.mk@1.4.2.1 type: modified - new: 1.3.2.1 old: '1.3' path: pkgsrc/www/firefox115-l10n/Makefile pathrev: pkgsrc/www/firefox115-l10n/Makefile@1.3.2.1 type: modified - new: 1.3.2.1 old: '1.3' path: pkgsrc/www/firefox115-l10n/distinfo pathrev: pkgsrc/www/firefox115-l10n/distinfo@1.3.2.1 type: modified - new: 1.1.4.1 old: '1.1' path: pkgsrc/www/firefox115/files/replace-moz.build.awk pathrev: pkgsrc/www/firefox115/files/replace-moz.build.awk@1.1.4.1 type: modified id: 20240331T151440Z.f7ee4a2d71b52f5deb431450913ee9bedf2d522d log: | Pullup ticket #6840 - requested by gutteridge www/firefox115: security fix www/firefox115-l10n: dependent update Revisions pulled up: - www/firefox115-l10n/Makefile 1.4-1.6 - www/firefox115-l10n/distinfo 1.4-1.6 - www/firefox115/Makefile 1.11-1.13,1.16-1.17 - www/firefox115/distinfo 1.4-1.6 - www/firefox115/files/replace-moz.build.awk 1.2 - www/firefox115/mozilla-common.mk 1.5-1.6 --- Module Name: pkgsrc Committed By: he Date: Fri Dec 29 17:29:14 UTC 2023 Modified Files: pkgsrc/www/firefox115: Makefile mozilla-common.mk Log Message: firefox115: on i386, use -mstackrealign also in CFLAGS. Patterned after recent change to firefox: force stack re-alignment so that you don't get a segfault when doing movdqa %xmm7,(%esp) and %esp is not 16-byte aligned. Bump PKGREVISION. --- Module Name: pkgsrc Committed By: leot Date: Mon Jan 8 17:39:44 UTC 2024 Modified Files: pkgsrc/www/firefox115: Makefile pkgsrc/www/firefox115/files: replace-moz.build.awk Log Message: firefox115: Re-enable screen/tab capture Sync replace-moz.build.awk with firefox{102,} so that X11 desktop capture works. (Re)Fix PR pkg/56955. (While here define PKGREVISION only once.) PKGREVISION++ --- Module Name: pkgsrc Committed By: ryoon Date: Wed Jan 10 15:38:44 UTC 2024 Modified Files: pkgsrc/www/firefox115: Makefile distinfo mozilla-common.mk Log Message: firefox115: Update to 115.6.0 Changelog: 115.6.0: * Security fixes. Mozilla Foundation Security Advisory 2023-54 #CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver #CVE-2023-6865: Potential exposure of uninitialized data in EncryptingOutputStream #CVE-2023-6857: Symlinks may resolve to smaller than expected buffers #CVE-2023-6858: Heap buffer overflow in nsTextFragment #CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer #CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture validation #CVE-2023-6867: Clickjacking permission prompts using the popup transition #CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in headless mode #CVE-2023-6862: Use-after-free in nsDNSService #CVE-2023-6863: Undefined behavior in ShutdownObserver() #CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6 --- Module Name: pkgsrc Committed By: ryoon Date: Wed Jan 31 16:18:33 UTC 2024 Modified Files: pkgsrc/www/firefox115: Makefile distinfo Log Message: firefox115: Update to 115.7.0 Changelog: 115.7.0: Mozilla Foundation Security Advisory 2024-02 #CVE-2024-0741: Out of bounds write in ANGLE #CVE-2024-0742: Failure to update user input timestamp #CVE-2024-0746: Crash when listing printers on Linux #CVE-2024-0747: Bypass of Content Security Policy when directive unsafe-inline was set #CVE-2024-0749: Phishing site popup could show local origin in address bar #CVE-2024-0750: Potential permissions request bypass via clickjacking #CVE-2024-0751: Privilege escalation through devtools #CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper domain #CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7 --- Module Name: pkgsrc Committed By: gutteridge Date: Mon Mar 25 00:35:50 UTC 2024 Modified Files: pkgsrc/www/firefox115: Makefile distinfo Log Message: firefox115: update to 115.9.1 Note there are references to use of Python 3.12 as a build tool now being supported, but this has not been tested in pkgsrc as it stands. (This has been tested on NetBSD 9.3_STABLE with pkgsrc defaults.) 115.9.1 Fixes for mfsa2024-16, also known as CVE-2024-29944 115.9.0 Fixes for mfsa2024-13, also known as: CVE-2024-0743, CVE-2024-2607, CVE-2024-2608, CVE-2024-2616, CVE-2023-5388, CVE-2024-2610, CVE-2024-2611, CVE-2024-2612, CVE-2024-2614 115.8.0 Fixes for mfsa2024-06, also known as: CVE-2024-1546, CVE-2024-1547, CVE-2024-1548, CVE-2024-1549, CVE-2024-1550, CVE-2024-1551, CVE-2024-1552, CVE-2024-1553 --- Module Name: pkgsrc Committed By: ryoon Date: Wed Jan 10 15:39:18 UTC 2024 Modified Files: pkgsrc/www/firefox115-l10n: Makefile distinfo Log Message: firefox115-l10n: Update to 115.6.0 * Sync with www/firefox115-115.6.0. --- Module Name: pkgsrc Committed By: ryoon Date: Wed Jan 31 16:19:07 UTC 2024 Modified Files: pkgsrc/www/firefox115-l10n: Makefile distinfo Log Message: firefox115: Update to 115.7.0 * Sync with www/firefox115-115.7.0. --- Module Name: pkgsrc Committed By: gutteridge Date: Tue Mar 26 13:54:13 UTC 2024 Modified Files: pkgsrc/www/firefox115-l10n: Makefile distinfo Log Message: firefox115-l10n: update to 115.9.1 module: pkgsrc subject: 'CVS commit: [pkgsrc-2023Q4] pkgsrc/www' unixtime: '1711898080' user: bsiegert