From: Geert Hendrickx <ghen@netbsd.org>
Subject: CVS commit: pkgsrc/www
To: pkgsrc-changes@NetBSD.org
Reply-To: ghen@netbsd.org
Message-Id: <20081217170552.C9167175D0@cvs.netbsd.org>
Date: Wed, 17 Dec 2008 17:05:52 +0000 (UTC)
Sender: pkgsrc-changes-owner@NetBSD.org
Precedence: list


Module Name:	pkgsrc
Committed By:	ghen
Date:		Wed Dec 17 17:05:52 UTC 2008

Modified Files:
	pkgsrc/www/firefox: Makefile-firefox.common distinfo
	pkgsrc/www/firefox-bin: Makefile distinfo

Log Message:
Update firefox, firefox-bin and firefox-gtk1 to 2.0.0.19.

Security fixes in this version:

MFSA 2008-69 XSS vulnerabilities in SessionStore
MFSA 2008-68 XSS and JavaScript privilege escalation
MFSA 2008-67 Escaped null characters ignored by CSS parser
MFSA 2008-66 Errors parsing URLs with leading whitespace and control characters
MFSA 2008-65 Cross-domain data theft via script redirect error message
MFSA 2008-64 XMLHttpRequest 302 response disclosure
MFSA 2008-62 Additional XSS attack vectors in feed preview
MFSA 2008-61 Information stealing via loadBindingDocument
MFSA 2008-60 Crashes with evidence of memory corruption (rv:1.9.0.5/1.8.1.19)

For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.19/releasenotes/


To generate a diff of this commit:
cvs rdiff -r1.61 -r1.62 pkgsrc/www/firefox/Makefile-firefox.common
cvs rdiff -r1.83 -r1.84 pkgsrc/www/firefox/distinfo
cvs rdiff -r1.47 -r1.48 pkgsrc/www/firefox-bin/Makefile
cvs rdiff -r1.46 -r1.47 pkgsrc/www/firefox-bin/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.